Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
File: 2lPr-vXBh42KIqk44XMqigdxTzU.mft (raw, json)
Hash identifier: 8iptZhvRQI3YwHls/TPzHYeW5Qfu00NJxo6+g+k2bi0=
Subject key identifier: 0A:41:73:0A:82:15:9D:F3:7F:67:B0:37:08:30:9E:F6:B9:02:19:60
Authority key identifier: DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
Certificate issuer: /CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Certificate serial: 019E1D91186E17825FDBF65E63647C18DFB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
Manifest number: 1902
Signing time: Tue 12 May 2026 19:01:48 +0000
Manifest this update: Tue 12 May 2026 19:01:48 +0000
Manifest next update: Wed 13 May 2026 19:01:48 +0000
Files and hashes: 1: 2lPr-vXBh42KIqk44XMqigdxTzU.crl (hash: bGxY5WvvuJOuhg0JGoVQ996ZNUPBa3BZ/6xOVIMoA2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:18:6e:17:82:5f:db:f6:5e:63:64:7c:18:df:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Validity
Not Before: May 12 19:01:48 2026 GMT
Not After : May 13 19:01:48 2026 GMT
Subject: CN=0a41730a82159df37f67b03708309ef6b9021960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:6c:b9:3e:21:a5:3a:5a:bb:80:5d:f0:8a:
f7:a4:21:0b:a9:ce:5b:6d:3b:05:a2:f4:64:82:ff:
98:ad:e1:85:a4:f0:fa:1b:29:67:2f:3e:5c:6a:a3:
71:fa:35:bb:82:b1:38:2b:15:0a:d7:06:6a:72:fd:
e7:db:0f:02:a1:3a:36:9c:00:78:4c:f7:1d:aa:37:
cc:20:77:fe:11:0f:c4:e5:b6:8b:52:c5:97:ab:7a:
7b:1a:4a:ac:17:fd:1f:f3:ac:16:e1:bd:7c:bd:14:
28:9f:a0:3c:50:8d:20:07:8d:36:f6:59:01:2f:0d:
fc:7b:9a:78:a5:0d:f3:7c:6d:e3:5d:5f:50:8d:a2:
4c:f3:78:04:61:d5:d4:7e:cb:09:b2:0c:17:d1:72:
17:8e:87:7e:2e:ab:3c:67:83:fd:aa:92:7d:d6:7c:
ac:4b:ac:13:7b:b5:c5:92:7c:93:82:9b:ca:ef:ee:
b6:14:88:1a:44:9d:92:3f:46:5c:13:8a:3f:25:e8:
15:5d:dc:9f:cb:e6:84:a2:c6:fc:8d:06:3c:03:f2:
16:e6:38:f2:de:ba:8d:af:a7:f0:ce:e8:6d:bd:6c:
c9:41:49:44:3f:6d:42:aa:b2:62:ba:6c:7c:3b:1e:
43:b1:a5:dd:6b:d2:80:91:49:4a:f5:7e:a6:ca:ee:
1d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:41:73:0A:82:15:9D:F3:7F:67:B0:37:08:30:9E:F6:B9:02:19:60
X509v3 Authority Key Identifier:
keyid:DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:89:f8:8f:fb:4f:8c:bc:9e:9f:f5:b3:73:f7:70:07:b8:80:
03:e8:2d:bf:86:f5:07:b8:6e:7c:ec:05:bd:d5:4e:e1:0d:00:
09:02:3e:79:b9:36:51:0f:27:36:10:9a:ea:3d:bf:83:a3:71:
eb:fb:1c:cd:25:06:5a:0b:9d:67:09:e4:66:96:fe:d2:61:0e:
24:3c:5f:bb:e7:10:89:31:aa:3d:0b:b6:bf:9e:2b:89:da:34:
0a:f4:f4:f8:41:04:f4:fb:4b:70:67:ad:9c:2f:92:96:3e:82:
6b:6a:f5:5c:9c:92:c7:1d:90:25:65:ed:c0:08:53:51:aa:b3:
0a:dc:2b:52:fe:92:33:07:5a:86:cf:2a:48:ad:b1:12:5d:6d:
7b:1b:c5:c0:16:cb:b8:77:e4:68:d8:87:00:6a:9b:9c:3e:20:
68:07:ea:cc:a2:2c:0b:a3:dc:27:7c:fa:47:29:e5:15:9d:a8:
a6:8d:3d:3d:39:69:d9:e2:2f:b4:29:07:6e:90:17:6b:91:a6:
35:ae:c7:ee:31:d7:22:ba:17:21:27:6a:17:20:b9:d2:ae:11:
10:28:95:5c:a4:39:38:f2:c5:f7:da:1a:70:cd:21:d0:da:6b:
0c:60:98:7f:a1:01:93:4a:a7:e8:a9:53:b4:44:a3:19:a5:6d:
a5:c7:47:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkRhuF4Jf2/ZeY2R8GN+yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNTNlYmZhZjVjMTg3OGQ4YTIyYTkzOGUxNzMyYThhMDc3
MTRmMzUwHhcNMjYwNTEyMTkwMTQ4WhcNMjYwNTEzMTkwMTQ4WjAzMTEwLwYDVQQD
EygwYTQxNzMwYTgyMTU5ZGYzN2Y2N2IwMzcwODMwOWVmNmI5MDIxOTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2dsuT4hpTpau4Bd8Ir3pCELqc5b
bTsFovRkgv+YreGFpPD6GylnLz5caqNx+jW7grE4KxUK1wZqcv3n2w8CoTo2nAB4
TPcdqjfMIHf+EQ/E5baLUsWXq3p7GkqsF/0f86wW4b18vRQon6A8UI0gB4029lkB
Lw38e5p4pQ3zfG3jXV9QjaJM83gEYdXUfssJsgwX0XIXjod+Lqs8Z4P9qpJ91nys
S6wTe7XFknyTgpvK7+62FIgaRJ2SP0ZcE4o/JegVXdyfy+aEosb8jQY8A/IW5jjy
3rqNr6fwzuhtvWzJQUlEP21CqrJiumx8Ox5DsaXda9KAkUlK9X6myu4dtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFApBcwqCFZ3zf2ewNwgwnva5AhlgMB8GA1UdIwQY
MBaAFNpT6/r1wYeNiiKpOOFzKooHcU81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgt
OTNjOWU2YjA5M2JjLzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgtOTNjOWU2YjA5M2Jj
LzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeYn4j/tP
jLyen/Wzc/dwB7iAA+gtv4b1B7hufOwFvdVO4Q0ACQI+ebk2UQ8nNhCa6j2/g6Nx
6/sczSUGWgudZwnkZpb+0mEOJDxfu+cQiTGqPQu2v54rido0CvT0+EEE9PtLcGet
nC+Slj6Ca2r1XJySxx2QJWXtwAhTUaqzCtwrUv6SMwdahs8qSK2xEl1texvFwBbL
uHfkaNiHAGqbnD4gaAfqzKIsC6PcJ3z6RynlFZ2opo09PTlp2eIvtCkHbpAXa5Gm
Na7H7jHXIroXISdqFyC50q4RECiVXKQ5OPLF99oacM0h0NprDGCYf6EBk0qn6KlT
tESjGaVtpcdHRQ==
-----END CERTIFICATE-----
Generated at Wed May 13 05:11:03 2026 by rpki-client