Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json)
Hash identifier: je2vfyzaYIED5BooRkY0EQD3ml8wN7lFoXLgazYMNHg=
Subject key identifier: 4C:1A:10:48:D5:DE:36:85:4E:B1:8D:1D:19:2C:31:8A:43:C0:1C:5C
Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6
Certificate serial: 019E1F119912918C5D45B7A5CA9850A4C33B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
Manifest number: 0304
Signing time: Wed 13 May 2026 02:01:47 +0000
Manifest this update: Wed 13 May 2026 02:01:47 +0000
Manifest next update: Thu 14 May 2026 02:01:47 +0000
Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: kW2FkZGxq8MhJWrL8X82gUkpvTGaULYtBtyCjHYhIYo=)
2: ULNyY9ornMb2XkpkkXNvWN1gP2I.roa (hash: r5UnkkjvCogYCq6Zu3PdGG9tZrgdqzPy7q2Pvmc7Y4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:99:12:91:8c:5d:45:b7:a5:ca:98:50:a4:c3:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6
Validity
Not Before: May 13 02:01:47 2026 GMT
Not After : May 14 02:01:47 2026 GMT
Subject: CN=4c1a1048d5de36854eb18d1d192c318a43c01c5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:ad:5b:65:c3:34:27:ca:ed:d8:e1:ab:ea:
89:4c:b1:7b:15:41:ca:27:6a:0d:47:8f:42:56:04:
f2:e2:ef:12:bd:d8:bd:f3:0b:35:ff:87:09:c3:f4:
74:ae:bc:ab:a7:9d:af:f1:52:c6:38:62:0c:41:eb:
19:eb:ba:12:5c:0f:61:3b:50:d8:4c:2b:41:20:33:
25:18:e2:f3:53:f6:b8:1c:90:b3:ec:7c:8d:09:ab:
8c:87:32:57:fd:26:7f:58:27:e3:8d:f0:5e:5a:85:
f3:82:0b:12:a3:8c:96:ed:ae:ae:0b:67:71:84:6d:
1d:c5:b9:c4:88:20:f8:10:9c:03:1b:42:e9:84:61:
af:ca:f3:e9:a2:7d:75:d1:ab:30:55:87:a4:92:52:
f6:8f:35:06:71:18:8c:7f:21:b4:fa:46:65:39:1a:
96:b0:fd:b1:34:ee:f2:99:15:be:e7:2b:d9:ce:e4:
c2:e2:21:2c:8d:c9:24:54:87:b3:4c:84:00:13:a6:
f1:d4:cc:68:84:ff:48:b0:e3:73:4a:6c:c2:a4:17:
07:ed:04:cf:67:c2:7a:88:b8:6a:a9:bd:53:18:9e:
1d:68:e8:57:98:a9:78:e4:b0:a4:69:2f:c4:e8:11:
e2:fe:22:7e:90:1a:f6:b8:f0:6a:58:db:bb:29:66:
0c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1A:10:48:D5:DE:36:85:4E:B1:8D:1D:19:2C:31:8A:43:C0:1C:5C
X509v3 Authority Key Identifier:
keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:c1:1f:3d:88:12:b4:46:c4:74:d2:10:26:f3:31:62:7c:46:
80:bc:0b:8e:ba:44:3f:10:21:c1:ca:1d:0f:6a:fd:76:cd:19:
b9:de:d4:28:ae:5d:50:8b:28:4f:01:21:2c:b7:73:9f:df:48:
51:8e:0c:1f:6d:ef:b6:35:f7:b7:25:f2:35:8c:0f:a3:a5:e2:
98:5d:78:a8:6a:1d:d9:5c:0a:c2:f3:77:9e:a2:d9:7c:24:6e:
23:73:05:73:ab:30:63:d6:1a:ef:13:70:42:6d:a9:27:f2:ba:
74:f6:a3:95:4b:e2:a4:d4:b5:61:a5:4d:60:c9:83:45:be:91:
d3:fe:21:0a:a8:61:64:61:3e:86:17:a5:c0:b9:1b:3d:0e:f0:
00:5d:d3:54:5a:0a:70:15:7d:73:8e:9c:47:7f:ea:0d:d3:21:
27:7c:19:b9:3e:bd:a1:ee:69:1b:c2:09:31:30:2a:70:46:99:
b3:d9:39:7f:fb:4a:79:ae:64:68:1a:73:fd:a9:7f:50:4e:77:
b6:3d:c0:eb:3e:55:1a:4f:2b:a3:d0:38:b7:fa:c7:75:0f:2c:
11:c0:27:ae:a9:62:27:f5:c7:48:8b:1b:98:09:b2:42:2f:c2:
2d:db:10:da:26:b1:3d:ae:a6:39:2b:02:47:f5:ca:e6:12:3c:
55:c3:b3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:26:58 2026 by rpki-client