Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: d26DOhBK6lLjErWitnLU67KbPsk8CbSsTPf6PIvlnZ8=
Subject key identifier: 5D:F8:08:84:A5:41:47:DC:C2:E1:D9:68:08:A8:42:37:24:31:44:14
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019E1CEB7CEE19083D9EC34DF8900C484066
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 0666
Signing time: Tue 12 May 2026 16:00:55 +0000
Manifest this update: Tue 12 May 2026 16:00:55 +0000
Manifest next update: Wed 13 May 2026 16:00:55 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: PJq4ZKVZs/6j1/2EgnMlWlLc7QdQjU1XfDckx1i4jsU=)
2: so3uet9HxmTT1e6-Xaeu7Xu47R4.roa (hash: YS3OlsV7nqbX92XpohfbsDi48e2F2cYz3EHfcdxmOmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:7c:ee:19:08:3d:9e:c3:4d:f8:90:0c:48:40:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: May 12 16:00:55 2026 GMT
Not After : May 13 16:00:55 2026 GMT
Subject: CN=5df80884a54147dcc2e1d96808a8423724314414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c7:d7:e2:db:db:0c:6b:82:28:c4:ff:47:bf:
90:e3:93:fd:4b:bc:55:47:d1:f5:c4:5e:bb:ea:6e:
a2:7c:2a:fc:94:f4:bb:75:26:50:f5:5d:a5:ab:9c:
be:4e:44:d3:11:ad:65:bb:ab:e4:29:d5:29:f6:df:
bb:82:4a:90:bf:ac:03:4a:c8:43:ea:fe:b3:57:42:
47:32:bc:74:2a:12:5a:7b:ac:d3:ab:45:fe:17:59:
aa:1e:20:88:b4:e2:3f:e8:d5:ed:f0:be:9e:e2:c5:
04:dd:63:ae:4b:82:e0:17:ce:cd:1d:79:7f:74:0a:
d2:8c:51:8a:79:78:48:31:cd:8f:b9:3d:02:f3:64:
99:e4:99:f3:4c:1f:63:59:cd:02:ab:9c:e7:1d:8a:
0f:df:93:d4:6b:d0:2b:b9:08:13:e4:73:69:cb:b9:
95:ee:e7:e8:df:96:41:b1:91:bb:94:3d:c8:02:e4:
93:07:7f:75:76:1d:e2:f2:5a:47:a5:da:1d:40:4a:
3f:b8:b1:0e:08:92:76:da:22:f2:a8:14:f2:03:fb:
fd:39:ad:84:41:54:6d:8e:17:62:c6:30:96:a7:f6:
64:6e:89:21:2f:4f:ed:6f:9b:62:e7:31:a3:4c:b0:
96:e0:b0:57:ee:57:a0:eb:7e:3b:9a:aa:5a:6d:18:
4c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F8:08:84:A5:41:47:DC:C2:E1:D9:68:08:A8:42:37:24:31:44:14
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ba:b4:b8:cf:e3:bf:87:35:b2:be:a7:b3:6c:58:7e:fc:78:
64:d2:8b:92:c1:9f:85:a6:ba:43:61:da:cf:90:c6:ff:68:d8:
c0:35:f4:c6:04:bd:ad:97:22:50:42:af:db:16:d5:da:45:09:
ea:31:ae:a5:ec:e8:3c:7e:8c:2b:e5:aa:d8:d9:4c:31:f3:8e:
ab:5c:49:ec:b7:27:5a:fe:fd:6e:c2:22:25:80:72:8c:0f:65:
5d:ad:3e:82:89:cf:65:0b:35:a2:9f:8f:d4:5d:a6:22:11:83:
9d:d8:3d:60:e9:98:29:d1:d3:85:cd:a9:51:a3:88:2e:ee:83:
1b:cf:8d:b6:05:ca:ad:5e:cf:eb:e2:ee:f8:f6:2b:98:b8:2c:
28:84:78:52:9c:4c:ef:62:2f:51:dd:3c:88:12:58:50:5e:33:
21:b2:c5:1f:cc:6e:b5:76:74:99:fe:c8:48:f7:24:b3:2d:97:
d2:89:8e:93:8a:f2:d7:2e:9a:01:ce:d3:93:d6:06:d6:75:54:
9a:ec:ab:a4:94:2f:26:d1:37:6a:28:93:e4:13:10:ec:54:8e:
6e:2a:df:55:3a:8a:1d:72:17:17:7b:5b:21:a0:d7:58:3b:cf:
73:85:6e:74:18:47:5d:f6:63:7f:a4:c6:80:5b:73:18:23:16:
2d:c7:bb:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:50 2026 by rpki-client