Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
File: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft (raw, json)
Hash identifier: tabdPwUUuiCmResLhSNGq+47sZS/3/ZHxti2TzNnUQU=
Subject key identifier: 3E:4D:CD:45:9E:F7:FB:B0:32:6B:5E:CF:6C:0D:D0:0D:AE:2E:2C:5E
Authority key identifier: D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
Certificate issuer: /CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Certificate serial: 019E1D5951006D38066DE9AE6FB2D7D4F157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
Manifest number: 03A2
Signing time: Tue 12 May 2026 18:00:53 +0000
Manifest this update: Tue 12 May 2026 18:00:53 +0000
Manifest next update: Wed 13 May 2026 18:00:53 +0000
Files and hashes: 1: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl (hash: CcIYsTQYlYmOofG2VHLcXdXJJ3xmAheSidDi3P00SmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:51:00:6d:38:06:6d:e9:ae:6f:b2:d7:d4:f1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Validity
Not Before: May 12 18:00:53 2026 GMT
Not After : May 13 18:00:53 2026 GMT
Subject: CN=3e4dcd459ef7fbb0326b5ecf6c0dd00dae2e2c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:ee:7f:38:8d:09:ad:76:80:12:b9:bf:d6:
a5:f4:1e:26:32:3f:fa:fd:b5:d9:96:02:ac:13:18:
85:b5:6a:33:4f:0c:5c:9b:c3:a6:cc:c6:07:5f:b1:
95:f6:e0:9c:aa:0a:90:78:a5:83:c3:68:73:95:52:
2b:c5:34:2b:89:e1:0e:3c:9a:8e:ac:c4:5c:0d:7c:
47:d5:f1:f1:c9:d3:27:ce:c4:32:f0:24:b8:8b:1a:
11:29:fb:ff:7b:7b:c8:f1:31:1c:d8:c3:29:50:b3:
3b:cc:dd:66:d0:ee:e3:e4:a6:0f:d0:7e:e1:52:7e:
af:b2:35:57:c3:ff:72:b7:ee:29:de:65:d6:17:fd:
25:6b:27:78:a3:4a:66:22:d9:73:b1:6c:cb:e9:99:
d3:a3:c3:e2:79:3d:73:66:b6:ba:69:a3:c9:6d:00:
8c:4f:2c:b6:2d:9f:75:88:14:a3:c3:a3:a9:b5:82:
62:e5:96:e0:05:b8:c9:44:d5:dd:bd:2c:ce:2d:c5:
78:a6:02:b3:a0:f1:cd:1d:68:d4:ca:f3:b3:60:ed:
6b:43:9b:cc:81:e8:bf:2a:c9:ee:47:e3:2a:f8:4f:
d2:5a:d0:df:c2:a3:b0:c6:ef:15:f4:00:b5:99:62:
d4:d7:24:5f:00:2d:28:44:ef:11:d7:3a:f3:f8:34:
73:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4D:CD:45:9E:F7:FB:B0:32:6B:5E:CF:6C:0D:D0:0D:AE:2E:2C:5E
X509v3 Authority Key Identifier:
keyid:D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:60:d8:fb:c6:eb:6a:3f:7b:d2:6b:fa:30:2b:fa:fa:ed:67:
2c:8e:e4:82:c7:09:0d:06:df:c7:f0:38:40:45:a2:3e:d9:65:
5a:8b:ee:e5:80:70:35:1c:57:2e:3d:2d:90:3c:a7:21:55:cb:
e0:a8:ae:55:b4:f3:7f:15:0c:1f:13:f2:59:3a:b9:f0:6d:c9:
c7:f0:17:53:40:87:79:6f:41:ae:76:63:da:e8:cb:f4:85:41:
10:b4:80:b6:76:f1:3d:f5:46:d2:55:c2:d2:da:91:c7:83:eb:
2c:99:7d:ec:63:3c:ae:fb:6e:7f:3b:cd:2c:4f:3b:98:85:7e:
a0:9c:58:00:a8:da:96:21:0c:df:4c:c2:b9:3e:58:ce:34:87:
c1:da:af:53:29:77:81:09:2d:62:19:63:e6:f3:f6:9d:a6:28:
4a:72:b4:2a:ce:b5:73:69:0f:9d:95:6b:bc:a3:45:a5:66:77:
03:30:a2:a9:ff:bf:71:bb:a5:ec:f7:7a:51:6b:56:90:95:fa:
96:9f:a0:9b:67:b4:b0:83:9c:05:de:f0:5b:e6:32:ed:b6:d3:
11:b6:65:13:46:7b:56:79:f6:28:12:69:ba:72:b4:c2:78:c7:
9b:7e:32:05:4a:75:07:19:12:39:15:56:2f:3c:33:9a:2f:8a:
18:3a:75:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:23:33 2026 by rpki-client