Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: AUE1PtrU4WsEIKZEu02dndZRfQhvDyW5n+JyIXTU1zA=
Subject key identifier: 8D:90:80:0E:4B:FF:63:38:3A:16:B8:DD:E6:7D:0B:85:1C:BB:F7:A6
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 019E1E350E7A63CC3A26B32C83AFF407A81F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 098A
Signing time: Tue 12 May 2026 22:00:54 +0000
Manifest this update: Tue 12 May 2026 22:00:54 +0000
Manifest next update: Wed 13 May 2026 22:00:54 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: zNkz9VwTvNkaROMYCKLcVGVuEvnZGbraRgvep8Pihqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:0e:7a:63:cc:3a:26:b3:2c:83:af:f4:07:a8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: May 12 22:00:54 2026 GMT
Not After : May 13 22:00:54 2026 GMT
Subject: CN=8d90800e4bff63383a16b8dde67d0b851cbbf7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:1f:fd:5c:07:61:5c:64:15:45:7f:1d:59:
bb:a1:55:8a:27:1a:51:cb:26:92:f3:d1:6b:74:54:
9f:b9:d0:bd:31:e7:36:88:60:48:f5:7a:e3:f6:00:
23:8a:4e:95:6e:ce:f5:78:5e:5e:41:33:30:43:18:
67:f6:5c:7b:04:92:26:dc:f1:fc:2c:00:17:ad:8e:
8e:0a:db:7c:40:17:b4:b3:2a:cb:09:a4:00:07:98:
08:b8:7d:6a:4f:80:76:24:7b:4f:0c:8e:15:31:01:
a0:ff:22:c9:36:20:24:b3:6b:a6:fa:ea:48:b2:94:
47:2e:69:a4:c4:99:dd:19:07:c8:07:fc:5d:24:01:
9f:b6:17:72:3b:10:3b:77:e5:72:b6:12:37:ed:d9:
4b:54:c2:ac:6c:88:23:e7:20:cd:fe:24:b3:77:55:
1a:66:3e:e7:4c:85:87:90:5b:e7:9d:cf:a8:d8:b3:
e3:c0:b9:f7:97:fd:23:ac:f4:22:b4:67:eb:e3:4a:
43:93:60:8f:19:d4:77:67:66:15:75:8b:78:60:f4:
cc:c0:dc:0b:da:f8:8b:65:3f:c2:5e:10:28:e0:04:
a2:a3:ed:3a:b2:16:d3:38:a1:4e:96:59:12:3a:5e:
0b:20:cf:b8:ed:be:fc:92:1b:19:b2:2d:95:21:eb:
6d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:90:80:0E:4B:FF:63:38:3A:16:B8:DD:E6:7D:0B:85:1C:BB:F7:A6
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:11:d3:95:a2:46:c0:25:f0:8c:75:8d:56:79:07:a1:1f:6c:
ad:af:44:1f:fe:39:fd:ee:18:ef:7c:2a:f4:c7:63:7c:89:d3:
07:cd:ad:cd:d5:45:5c:55:c1:b8:12:53:07:de:ef:03:24:b9:
eb:9e:8b:24:f2:62:6e:88:80:63:2b:bc:cd:db:d0:08:5d:3f:
86:cf:80:5f:fd:47:b7:74:1f:54:35:5e:ab:73:89:61:2c:1e:
50:a8:e4:d1:09:6b:7c:45:d1:e9:d1:34:b6:c0:7c:6b:a5:10:
4f:7a:6d:60:91:bf:63:de:f1:20:07:6c:bc:81:ae:b4:20:aa:
f7:78:47:c6:cc:17:57:05:9d:58:9c:63:8a:4e:21:e0:32:82:
29:7e:df:1b:d1:30:0a:ac:82:d6:1c:b7:0d:78:f3:9f:b7:8d:
32:35:4b:44:05:53:f2:8f:9d:09:b8:29:e7:44:76:0d:58:e5:
e2:10:dc:52:04:a4:92:77:04:9e:2c:5d:4a:38:2b:b2:18:e1:
5a:ec:8c:1b:63:49:20:19:78:3a:f9:15:5e:89:04:ef:0b:10:
51:13:df:b7:4a:db:c4:cd:f0:0a:ad:df:b0:35:73:42:d0:6e:
f4:18:40:9e:68:7d:5d:ab:d5:1e:93:25:b3:2e:44:e0:b3:64:
23:7d:90:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:35:59 2026 by rpki-client