Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: hmeFddmWcSsQFTH2d+65r9CKIYBPVpNrDUoIlL3L/lo=
Subject key identifier: 4B:8E:9B:B9:B7:AA:71:33:44:45:A1:1F:9A:10:A2:A1:7C:A1:77:56
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 019E1CEBE89E78DFE49411FA729DAE3B320C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 16:01:22 +0000
Manifest this update: Tue 12 May 2026 16:01:22 +0000
Manifest next update: Wed 13 May 2026 16:01:22 +0000
Files and hashes: 1: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: gmV77SJ4oRYpoPWD+O+b7Iu565MLMORDxK0V9CqGDzM=)
2: xxmUvxGlUTZYlS1fzfDsE1LRkDY.roa (hash: LHuMkoFuyABxZJIkd6bMQ80Etxt39qZubcGAijE5D7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:e8:9e:78:df:e4:94:11:fa:72:9d:ae:3b:32:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: May 12 16:01:22 2026 GMT
Not After : May 13 16:01:22 2026 GMT
Subject: CN=4b8e9bb9b7aa71334445a11f9a10a2a17ca17756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:67:de:d2:86:25:7f:77:3a:a8:7f:dc:9b:86:
b1:18:ec:df:28:20:e4:30:d1:46:87:2e:cb:46:21:
f9:6f:22:c6:f4:b4:8c:f0:8a:85:74:82:01:bc:0c:
87:ae:fb:9c:13:e9:3d:19:af:71:76:64:8f:56:f6:
63:05:98:ea:57:0a:bc:04:23:c4:e2:4e:17:2f:d7:
c2:04:7b:37:26:66:93:39:f4:d6:b6:6d:8d:3c:e1:
51:a6:40:06:f3:dd:cf:a3:2a:29:8c:a1:c0:d9:a8:
11:ab:aa:9a:9a:fa:06:81:46:a2:07:f1:67:08:ee:
d5:6b:5d:b2:4f:26:72:59:53:d4:92:68:f4:a7:77:
39:05:0b:55:91:48:3d:4f:f3:be:e2:ef:da:8c:e4:
15:85:f2:35:fd:d5:60:72:4e:70:f5:69:37:16:8c:
2f:5f:ee:3c:e2:d6:d7:f2:53:c8:a0:d3:cc:3a:c4:
ea:7b:6e:3a:0a:12:16:59:fc:91:05:b3:1e:d4:d0:
f9:a0:fc:f9:c6:7a:83:e5:23:2e:86:61:8a:7c:42:
37:09:d8:c8:ec:58:6a:b9:d8:05:4e:cc:04:4e:8b:
45:f8:81:8b:6f:ba:f0:57:29:f9:14:5b:ef:d0:32:
84:8d:0e:c8:0c:ec:0e:78:d6:a5:59:d9:93:05:08:
30:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8E:9B:B9:B7:AA:71:33:44:45:A1:1F:9A:10:A2:A1:7C:A1:77:56
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:98:7d:84:f9:c3:5c:b1:15:c2:0f:07:76:dc:3a:15:21:86:
8b:a8:c9:0b:2e:6d:69:c4:34:36:0a:94:66:48:3a:d1:17:d3:
88:1f:73:77:a9:d8:58:a1:71:a7:78:28:f2:df:9c:ba:8f:53:
53:50:f4:71:55:c1:cb:1c:0a:76:7a:31:04:90:c0:7c:27:8f:
b2:e9:ae:d6:da:53:21:47:a8:5f:fc:08:85:f6:66:79:ec:ac:
22:5d:1e:f1:58:4d:8f:72:e2:73:b9:6e:3c:5c:ba:40:9f:3b:
2e:0e:df:81:e4:fe:3a:b3:51:a2:52:fe:95:05:09:c3:b9:ae:
ae:7a:0f:d4:38:91:81:8a:61:87:76:69:e3:6c:64:ea:03:85:
6c:e0:48:49:27:21:06:29:61:c1:c6:51:45:4f:44:9a:1b:6f:
f3:89:a0:cc:2c:09:11:50:f7:fa:f7:0d:5a:00:7d:d5:8e:0d:
bc:00:a5:2a:f0:57:a4:97:90:e0:6e:0e:cb:60:27:88:3c:49:
e4:fb:1e:05:d0:99:4f:2e:c3:b9:a0:87:8c:0d:70:78:b2:b0:
74:e2:73:91:ca:4c:f5:4d:41:76:00:43:2f:e0:3a:94:36:c2:
13:c0:2f:ce:64:b0:a0:ce:b0:38:fd:1f:75:1d:87:42:b9:56:
b6:d1:9c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:16:34 2026 by rpki-client