Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: fEEnamcbg6xZTCOG27gqHxRkkWlfeyzm98njdp54i3o=
Subject key identifier: 1F:BC:F0:0C:82:4F:41:74:B8:BC:8D:56:F3:1B:1C:94:D1:C4:3A:66
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 019E1BD904A137D2B97BC4DF2B93EBE5EF3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 1027
Signing time: Tue 12 May 2026 11:01:07 +0000
Manifest this update: Tue 12 May 2026 11:01:07 +0000
Manifest next update: Wed 13 May 2026 11:01:07 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: 24g3F39fMtk1HpOfrTA350tc/ON3lQSLZUSVxIGcW+0=)
2: L2j3YbDrhxKGFha7tz1-c-vN-uQ.roa (hash: iDoMcXtz4bozdB/C54gk9t9e+mReC2IXbtgvzCL2Yp0=)
3: UIBjpglW4YWleiz-oKKmcURIxwc.roa (hash: ErWPaj7tYXmjYMsLMNAAh1j4o0c+Mnbdnzjy6PRwJIk=)
4: UZsKg_QtparPPd-wVk9iuY4cLb8.roa (hash: LXCP+y+LLCN1p4aORJt/oEFqWyCdqeZadpBwWIWxu8s=)
5: i5kyr5N66ZDTA3mtxGOlJ8kVut4.roa (hash: gEKkmfmle5KluLRAtXEyZBHa6B0VwRl775bqLnntmPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d9:04:a1:37:d2:b9:7b:c4:df:2b:93:eb:e5:ef:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: May 12 11:01:07 2026 GMT
Not After : May 13 11:01:07 2026 GMT
Subject: CN=1fbcf00c824f4174b8bc8d56f31b1c94d1c43a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4f:ee:1d:be:cc:e2:39:03:79:33:2f:d1:36:
43:06:01:68:18:b9:16:7c:39:0a:a7:9f:9c:ae:83:
c8:85:d4:38:34:6b:ba:02:8f:30:2d:21:2d:35:07:
2b:9e:f1:8a:ad:4c:09:36:c2:0d:92:3e:b0:7c:81:
fb:4f:ef:57:d3:24:97:e5:7e:45:15:d1:7c:c1:71:
b0:82:b6:77:68:69:9c:ce:61:87:d3:2e:44:48:0e:
ff:c4:a6:6b:88:47:b9:34:bf:67:b3:ed:ba:2f:14:
92:59:a5:91:fa:7f:d2:ca:8b:e7:b5:4f:3b:ce:34:
33:04:8e:7d:90:ba:c7:d7:a6:9a:b7:ab:73:8d:d9:
28:fd:a1:d5:97:20:01:47:fb:71:a5:6b:18:42:4a:
e8:14:10:35:d8:12:0b:46:b3:71:a1:8a:84:9c:35:
c3:0f:9f:a6:bd:29:7b:77:4f:04:e6:34:e7:e6:a3:
5e:8b:48:63:a3:fa:cc:0b:08:00:66:ec:f4:46:42:
06:96:c6:18:7a:54:61:7c:58:bc:24:8e:57:71:d3:
8b:ca:2b:a0:5b:97:ad:2d:f1:9f:84:6d:a1:ff:a7:
fa:a3:81:18:42:ed:04:01:e9:fc:ae:2b:6a:c4:27:
5e:11:b0:c5:43:44:27:21:aa:e0:df:5c:f8:85:c0:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BC:F0:0C:82:4F:41:74:B8:BC:8D:56:F3:1B:1C:94:D1:C4:3A:66
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:18:85:c1:fc:a0:d4:3e:d1:98:2b:e0:62:5d:c7:b7:bb:f9:
ef:16:fd:9e:68:29:09:12:29:c8:ba:57:6b:ac:c0:6d:b1:75:
7d:0d:9b:15:9e:0f:63:ac:e9:a2:9b:dc:19:c8:9f:df:31:11:
1b:5e:ab:41:a4:f2:26:ad:b2:0c:c9:2c:7e:a9:d6:da:28:96:
77:41:60:c3:1a:9a:91:7e:a6:2f:06:c2:cd:14:25:d7:fa:ef:
08:dd:d9:e6:34:78:50:5c:89:b7:1b:d1:aa:87:96:ae:6f:06:
97:fe:92:8a:67:5a:40:46:1c:8a:89:a4:3a:04:cd:7f:2d:13:
8c:e1:82:26:17:33:ac:9b:f9:e0:41:c4:a1:56:61:18:1f:59:
9f:cb:ad:39:94:91:d8:e8:8e:58:6b:8f:f3:5e:c2:2a:10:9c:
17:aa:a4:b3:ec:c0:2a:14:4b:1a:a2:85:f4:aa:52:5b:25:f3:
be:68:6f:2b:48:58:c6:d2:ec:25:fe:72:3c:81:9c:2f:d1:23:
73:1a:59:80:3f:45:44:3c:81:2f:42:64:4b:0c:a9:58:6c:e3:
f5:31:63:99:64:f1:3c:24:c2:89:47:d9:48:eb:f0:10:66:f2:
41:74:66:60:4b:93:b5:f2:36:97:0e:46:2b:73:61:3e:40:f7:
b7:61:b2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:22 2026 by rpki-client