Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
File: 2TwNCKbGLnc4LoBBfocgmABMpOw.mft (raw, json)
Hash identifier: +VqyaRaMkDvm3tfTRCWXlMDbownUxlu58O+qGYpqAyM=
Subject key identifier: 24:BF:E7:01:10:94:7A:6D:52:B4:E0:A7:0C:F6:2C:35:ED:D9:1C:D4
Authority key identifier: D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
Certificate issuer: /CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Certificate serial: 019E1E6C8C5C6C998E97F3A1772E86BBC83F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
Manifest number: F0
Signing time: Tue 12 May 2026 23:01:30 +0000
Manifest this update: Tue 12 May 2026 23:01:30 +0000
Manifest next update: Wed 13 May 2026 23:01:30 +0000
Files and hashes: 1: 2TwNCKbGLnc4LoBBfocgmABMpOw.crl (hash: hMeedfBTMZEFcK99RvnobP0fDLbs687oVz87KCJ0HpA=)
2: p1uSbL-UUVgMZUo_Jd2UtMfEjhg.roa (hash: 7ew9SV6essXaEgFcCj2o+LahCeQ3dZ5MSY5zyuMRzxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:8c:5c:6c:99:8e:97:f3:a1:77:2e:86:bb:c8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Validity
Not Before: May 12 23:01:30 2026 GMT
Not After : May 13 23:01:30 2026 GMT
Subject: CN=24bfe70110947a6d52b4e0a70cf62c35edd91cd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:db:bd:06:3d:bd:10:82:ba:78:da:03:80:a0:
50:74:40:f8:f9:f1:a9:1a:c5:51:d0:10:6e:57:f2:
d2:de:30:10:81:ac:78:d2:70:bb:1d:0b:a6:d3:0c:
66:98:3c:be:b9:2c:54:4d:fb:36:2c:e0:1a:6f:4f:
cf:fa:57:c4:a9:ce:0a:66:b4:25:2e:e1:42:db:24:
88:a2:9a:65:1e:cf:b1:38:be:ab:01:37:f8:16:39:
99:8e:0b:fc:91:1b:34:09:be:1c:c8:ba:c1:90:f6:
97:88:0f:97:1f:03:9c:87:85:50:14:04:f0:f8:c2:
97:a7:77:32:ce:a7:a2:6d:70:d7:01:d1:5d:a7:31:
b1:8f:97:e3:e0:ac:f6:1f:74:58:4d:d7:4d:30:7d:
bc:32:fc:55:ec:3d:b3:ec:a5:38:a1:96:65:08:8c:
04:38:aa:35:6f:98:ce:08:e8:e9:af:ed:33:bc:82:
21:86:33:dd:38:c3:2f:3c:58:41:b8:80:5d:09:ef:
ee:52:c2:f0:2c:58:5f:9e:ae:ff:87:20:1a:19:5b:
85:97:de:2a:06:ca:c5:41:9f:d2:a9:e4:39:24:c0:
66:ad:5a:de:8b:af:8e:ea:37:03:55:c0:7f:dc:66:
bb:ed:0b:cb:d0:67:d9:2b:4e:1c:34:09:f9:63:62:
57:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:E7:01:10:94:7A:6D:52:B4:E0:A7:0C:F6:2C:35:ED:D9:1C:D4
X509v3 Authority Key Identifier:
keyid:D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:96:51:79:3b:ab:3f:e7:5b:6f:0a:51:6d:62:8e:28:d0:90:
36:98:88:19:f9:bd:7e:fd:00:64:11:5a:c2:bd:72:dc:92:5a:
ce:b8:1e:59:c9:5f:6f:4d:f4:62:c3:49:b6:c0:ef:19:2a:bc:
b5:ae:5b:87:a9:c5:8c:93:b6:3b:de:00:a3:d4:3b:fa:f5:cd:
07:da:a9:56:63:f3:0d:2b:a8:4a:e7:bc:8f:54:ae:61:cb:1c:
ec:3c:82:6f:d6:12:7d:f8:c6:8f:2d:73:5a:fe:85:f9:de:8e:
08:a5:d9:cd:6b:da:45:70:3b:87:9a:4d:de:6d:1a:fd:de:c0:
08:93:5f:c3:9a:27:f9:36:56:46:9c:a0:9a:32:6e:6d:56:fb:
00:6a:6e:4b:ca:71:46:6a:15:eb:26:5c:33:de:71:37:d5:d5:
9d:3d:e1:42:c2:45:c8:96:07:4c:fe:6f:e0:a4:70:c7:32:6a:
2c:85:5c:18:44:ac:c6:bb:4b:9e:7b:e3:14:d0:ad:78:9d:a8:
ae:e1:79:6a:3e:68:dd:e7:23:4f:1d:8d:85:42:34:81:16:e0:
8a:2c:96:8d:ac:b7:87:1e:08:b0:5f:30:8e:c1:ac:24:78:f9:
64:4c:ce:6a:39:05:34:e0:f3:1d:e7:66:b9:48:a0:0c:cc:e3:
32:5c:74:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:13:18 2026 by rpki-client