Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: Wf9niHnR7QhV22JQKrX5qgRGKWGP9EdywwsmZvBVayg=
Subject key identifier: 22:08:1D:BC:5F:87:7D:DD:14:AA:C6:CA:BA:AF:8D:40:26:E7:9B:34
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 019E1F10F7A8D69B378E6A07C1B10FC4EC58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 02:01:06 +0000
Manifest this update: Wed 13 May 2026 02:01:06 +0000
Manifest next update: Thu 14 May 2026 02:01:06 +0000
Files and hashes: 1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: ChsMNAWsrlg23tyqR1RA2Mlo2zo69MRUl7Eq6qHcA/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:f7:a8:d6:9b:37:8e:6a:07:c1:b1:0f:c4:ec:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: May 13 02:01:06 2026 GMT
Not After : May 14 02:01:06 2026 GMT
Subject: CN=22081dbc5f877ddd14aac6cabaaf8d4026e79b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:60:c1:7c:44:d9:f2:64:16:29:90:41:75:4d:
2e:e8:78:d5:1c:6a:b4:f2:df:1d:40:3e:23:a4:6b:
fb:30:db:e4:bc:f4:7a:ff:fc:34:cf:62:25:30:dd:
b3:5d:16:e2:32:04:25:b4:ac:70:1b:0f:fb:e4:da:
91:bf:21:a0:23:61:69:ee:e9:03:60:0f:43:b6:1a:
e3:f6:6e:58:a1:38:de:1d:32:71:3b:ee:5a:24:a3:
91:7b:65:5d:9c:bc:67:da:97:79:97:1a:b2:28:7b:
8c:9f:a4:06:01:9e:f6:a8:53:2f:e8:86:d6:05:40:
6c:28:b7:77:b2:85:44:f9:14:3d:a3:7d:6f:b3:3a:
f2:1b:a3:4a:49:be:7c:64:e6:8a:b4:8e:41:b4:b2:
3c:de:8c:f8:23:21:73:52:d5:33:7c:e4:3a:f3:ac:
cd:e5:f4:18:de:d3:a2:ec:df:8a:2a:44:a7:d6:c5:
02:65:29:16:84:da:ae:e1:ec:12:3a:0f:85:09:ab:
dd:ea:c1:d0:ff:93:19:4d:1a:04:a8:c1:b5:3a:a0:
72:04:28:8c:5d:da:70:d4:4c:5d:51:cf:9e:8b:68:
49:76:b4:63:b5:fa:42:a6:fa:87:4b:94:c7:1c:30:
cf:c4:cf:e2:60:69:f6:01:c2:b7:fc:4a:1b:0a:08:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:08:1D:BC:5F:87:7D:DD:14:AA:C6:CA:BA:AF:8D:40:26:E7:9B:34
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:75:58:84:83:36:b2:e4:07:33:29:fa:4e:c2:64:f4:5d:8c:
dd:79:b5:17:95:b2:71:8d:90:65:47:fe:40:24:12:a8:c5:7e:
7b:a7:ec:d5:d6:51:64:06:91:02:cb:c1:de:ac:99:05:cf:32:
7f:3c:34:05:79:35:ed:8a:cc:7d:0e:94:5f:8d:77:b2:a2:21:
04:fd:cc:02:bd:53:38:21:b9:a0:57:7e:00:d0:fb:9b:3c:e2:
d0:1d:26:ab:f7:6e:7e:35:21:5e:6c:f1:0b:3a:27:98:04:27:
31:0b:98:cf:1b:86:e1:16:ec:89:33:04:ad:d2:37:1d:79:b0:
b5:28:36:45:95:ff:c3:ae:78:e7:9e:4b:3c:67:59:28:0f:94:
29:db:08:0f:35:ba:83:30:36:7e:66:5f:16:e7:75:27:ed:60:
d6:ea:51:8c:e9:be:67:cb:82:6c:6b:e2:fa:d6:18:26:e3:a5:
a9:9c:19:4b:d1:c4:56:21:5f:6e:9f:0e:28:45:35:94:7c:35:
4e:ba:b5:cf:43:fb:04:dc:65:f0:f4:84:69:cf:03:c5:5a:50:
94:35:f7:18:d6:59:69:24:cd:0b:04:c9:44:39:fd:ce:79:c8:
bf:77:50:dd:67:6a:fb:f9:71:59:8c:21:53:ca:35:19:5f:b9:
ae:78:d0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:35:17 2026 by rpki-client