Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
File: 2iTzVyHKMag-L26TfhdAjm57LGE.mft (raw, json)
Hash identifier: wbpqn94ip3yXlmbnmXI9Ciu7X2K47k/aYx1QKY3lvFY=
Subject key identifier: 90:37:9F:E5:1E:ED:29:A7:3F:3F:B9:C0:F2:B9:60:F0:5A:3E:DD:27
Authority key identifier: DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
Certificate issuer: /CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Certificate serial: 019E1CB52301E0E7D99C142C6120DBD38FDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
Manifest number: 190B
Signing time: Tue 12 May 2026 15:01:33 +0000
Manifest this update: Tue 12 May 2026 15:01:33 +0000
Manifest next update: Wed 13 May 2026 15:01:33 +0000
Files and hashes: 1: 2iTzVyHKMag-L26TfhdAjm57LGE.crl (hash: V84czuXAXCfQsXYKrP4aIdenOz4aVnjEt6Q+H36ARi0=)
2: EMYZWM6m9RpWCTQk3MWhN1mZ9-0.roa (hash: c9D6HF2YxGeHbf3oxM7nmQWg4IZpAm/i+q7H/DzFs4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:23:01:e0:e7:d9:9c:14:2c:61:20:db:d3:8f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Validity
Not Before: May 12 15:01:33 2026 GMT
Not After : May 13 15:01:33 2026 GMT
Subject: CN=90379fe51eed29a73f3fb9c0f2b960f05a3edd27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:50:92:b6:5c:0c:42:77:1b:40:23:a7:5e:a9:
48:5b:ca:ca:b8:28:e3:c9:4f:c7:ac:9c:e3:1d:a7:
4d:bd:e6:b3:27:1a:63:e7:0c:1a:bb:93:40:b9:ef:
ac:2a:7d:fe:d0:29:6c:e7:fb:e7:d9:a8:aa:11:98:
bc:53:ee:a0:80:30:af:86:2d:0d:c1:f5:7d:f3:a5:
3e:b8:34:08:2c:20:e1:a0:90:48:a9:f2:5a:bf:c0:
28:44:27:32:0e:87:62:f3:15:5f:00:1a:ec:b2:83:
83:69:78:43:82:32:9d:5d:d7:5f:8a:b8:2d:06:21:
a3:ed:49:42:16:66:62:ed:12:7c:ee:9d:42:aa:6f:
44:c1:c6:f6:d9:0d:c4:60:7e:26:5e:e7:bd:b8:70:
5a:7a:f7:3b:ad:a4:61:f0:d2:83:95:31:74:7d:4f:
ba:f0:a6:cb:34:02:29:f6:85:71:ae:4e:a8:19:ba:
37:c1:5f:d2:6f:0f:8f:38:8d:93:ef:85:de:99:d6:
e1:43:4e:a4:05:a9:84:72:5f:82:b7:6e:3b:40:c7:
9e:eb:22:2f:5c:dd:57:ae:f6:cd:f6:8e:71:de:0b:
8c:7d:50:5c:73:3d:06:b6:81:83:f9:42:31:d9:8a:
5f:15:6c:75:cd:f0:f8:68:31:5e:96:ec:3a:9e:94:
7a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:37:9F:E5:1E:ED:29:A7:3F:3F:B9:C0:F2:B9:60:F0:5A:3E:DD:27
X509v3 Authority Key Identifier:
keyid:DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:9a:79:c3:10:36:41:f1:ab:19:f0:27:ca:21:44:eb:22:ae:
86:d6:3d:b7:21:0c:84:58:f1:ea:99:15:05:ba:0d:36:41:95:
f5:49:e6:a2:0d:3b:9d:2a:0b:97:9a:fe:c3:95:20:37:c3:73:
66:99:7f:d7:f6:c0:89:f7:f6:08:69:82:a4:44:3e:a9:fa:53:
fb:03:43:2e:2b:cb:09:0d:40:7f:2c:a6:d2:cf:f6:a6:1d:32:
2e:5a:33:78:b3:32:c2:78:6b:26:fe:8a:67:53:54:50:58:52:
3c:72:0d:01:3b:80:96:4e:9d:07:9e:65:cd:1e:f8:e8:d0:e6:
18:a9:19:c3:4c:e8:c2:6e:18:88:f3:19:28:b5:28:c9:22:5f:
b6:ee:97:ff:14:3d:cc:ae:b5:26:b0:62:b0:cb:82:f4:c9:cb:
5e:15:bf:22:85:46:bf:ac:94:b3:3d:fc:f0:94:5c:b6:b7:4e:
f4:82:f8:c0:bb:a0:17:e0:a2:76:b1:39:f5:98:07:28:f1:cf:
08:ea:82:6e:6d:6f:22:86:2e:4e:b4:90:d1:c3:d4:b5:66:6d:
94:21:28:f5:d6:0d:be:06:d7:7b:f6:83:99:1c:c6:7e:dc:8f:
3f:0f:7b:8b:a4:81:69:25:ac:c2:a6:5d:fa:b6:5f:2e:df:d4:
36:a9:f1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:57:09 2026 by rpki-client