Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft
File: 2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft (raw, json)
Hash identifier: J+qxe2IaMWXw5db7F05h5RdO+T7GTKcxcHyovzFpapE=
Subject key identifier: C3:3B:9E:91:AD:88:34:B3:72:03:DA:BA:2E:3C:72:A6:3F:96:C8:76
Authority key identifier: DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52
Certificate issuer: /CN=db140e069b31f2b84c5dbd213ed46773b0633e52
Certificate serial: 019E1D911B1672C5BE436B11C5BDDFC9FA3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft
Manifest number: 0108
Signing time: Tue 12 May 2026 19:01:49 +0000
Manifest this update: Tue 12 May 2026 19:01:49 +0000
Manifest next update: Wed 13 May 2026 19:01:49 +0000
Files and hashes: 1: 2xQOBpsx8rhMXb0hPtRnc7BjPlI.crl (hash: OCVsaEOteiiLBOEiwQKfUbOclJMIyOtTgKdrLG2g/UY=)
2: QZpcoFZ-mTdXgaU_KSl2tUqS-WA.roa (hash: kKgOgir5OcWMeFMyd0QfuGiJS19k1i7Dnvnix7dS1ZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:1b:16:72:c5:be:43:6b:11:c5:bd:df:c9:fa:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db140e069b31f2b84c5dbd213ed46773b0633e52
Validity
Not Before: May 12 19:01:49 2026 GMT
Not After : May 13 19:01:49 2026 GMT
Subject: CN=c33b9e91ad8834b37203daba2e3c72a63f96c876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4b:fc:ae:e5:a4:86:64:c5:d0:29:26:c4:b1:
f5:85:06:73:56:00:1b:8c:a4:c7:e5:c3:b2:5f:53:
e5:cf:78:03:91:aa:e5:19:7d:d1:c4:fe:47:d9:55:
bc:8a:bf:af:17:fc:64:e1:e3:1d:02:84:f4:58:d4:
65:68:13:12:74:7c:fe:2d:ca:ca:e1:42:de:d7:ed:
ef:00:87:f3:89:58:6b:9f:5a:fd:f8:e9:95:3c:32:
c1:6e:ec:31:63:fe:9a:7f:6f:95:30:eb:f9:3d:3d:
ba:30:44:01:0a:53:82:d7:c4:0e:bc:30:44:2e:1f:
dc:df:a5:9a:69:97:b4:04:5d:e7:2c:c7:f4:41:49:
85:d0:ab:cb:fd:10:9a:74:ad:0f:da:32:3e:21:b6:
77:75:1c:d3:ea:9a:89:92:45:01:b8:d3:c7:c6:5b:
cc:5c:a7:ed:3a:bd:3f:7c:e8:a3:f7:da:b5:17:63:
91:74:d1:b4:9d:59:94:46:b2:cc:41:f4:83:73:e1:
ee:cd:05:0a:5f:b3:8c:42:5b:51:70:c9:ea:02:f1:
30:ba:76:52:15:d3:99:09:3a:4c:d2:f0:10:0c:fe:
a6:d1:e8:53:39:7f:78:d1:3b:18:63:25:08:2b:e8:
58:3e:c5:b0:f9:0a:02:d0:2c:c6:c4:d8:1b:ae:fa:
1c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3B:9E:91:AD:88:34:B3:72:03:DA:BA:2E:3C:72:A6:3F:96:C8:76
X509v3 Authority Key Identifier:
keyid:DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:5c:01:b9:c2:fc:43:73:f1:ae:c6:c8:67:a1:24:19:79:9c:
61:f9:3d:22:1e:04:e6:2e:7d:55:80:87:26:95:58:79:69:81:
d9:fe:f1:99:f3:a4:42:51:51:be:8b:c4:00:86:68:31:1d:e8:
8d:5f:19:13:2f:e9:95:81:22:02:cd:c9:95:25:6c:1e:a6:a1:
cb:a4:ee:b5:94:d3:ea:0b:a4:87:1b:f2:93:e5:b5:4f:44:ed:
ee:d5:22:20:17:84:a4:8d:6a:00:39:82:9c:da:85:1c:68:6f:
2f:15:7e:ca:59:88:29:a9:e3:5f:a7:02:5d:fa:3a:84:7f:72:
fd:95:d2:dc:a3:7e:40:f9:ed:6c:e5:1e:fc:3a:55:01:e1:5e:
37:a1:2b:ea:82:90:b8:54:b9:76:89:5c:90:0c:ba:a1:ab:25:
fc:b0:bd:da:86:52:9d:a1:aa:ef:db:b5:ad:b5:a2:a6:40:0e:
70:5c:c9:ea:49:cc:e7:86:51:f1:5a:d1:f7:29:f0:ec:20:6a:
27:20:43:61:32:58:02:6d:36:0c:8e:66:e2:7e:1f:b6:18:71:
87:42:8e:3b:f4:53:67:94:84:4a:3d:de:8e:88:73:2c:32:2c:
1c:8f:1a:27:f9:ca:5f:77:11:31:2b:33:18:85:3b:73:a8:7c:
45:6b:6c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:32 2026 by rpki-client