Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: /fBqOP8xrXWWfyTgrdYGov0rB+gLtra8VVuM1AiA694=
Subject key identifier: 36:D2:19:39:0B:34:A0:96:7C:31:C4:62:67:D9:06:05:1D:D6:DA:02
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019E1C7DAF72DF3BA3E30CAF1C682B0A1581
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1216
Signing time: Tue 12 May 2026 14:00:59 +0000
Manifest this update: Tue 12 May 2026 14:00:59 +0000
Manifest next update: Wed 13 May 2026 14:00:59 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: z9j7gG713xEoJ4ha3TWH/eg8hv6d32wqJgKLgq2pZjQ=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:af:72:df:3b:a3:e3:0c:af:1c:68:2b:0a:15:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: May 12 14:00:59 2026 GMT
Not After : May 13 14:00:59 2026 GMT
Subject: CN=36d219390b34a0967c31c46267d906051dd6da02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4b:8a:94:b0:e3:21:48:b9:aa:37:62:34:e7:
d6:5f:44:74:f3:f6:ff:f5:0c:9f:e8:cb:b7:5d:d1:
9f:5a:f3:34:10:30:bf:1d:25:2c:98:75:8a:26:37:
77:be:2d:1d:c0:bc:52:37:ee:bf:7c:23:3d:62:48:
52:4b:5e:e0:ab:9e:fa:12:8a:bf:1d:ee:ca:6e:79:
2f:2b:45:40:71:3b:46:c7:23:09:1d:dd:cd:65:e0:
8a:ba:42:90:e1:ab:80:e2:b8:68:b2:7b:58:24:5a:
77:37:d9:09:6b:03:2c:5f:9c:04:c7:97:db:7f:15:
78:9e:d7:42:cb:46:60:a7:50:f7:4d:bf:7e:5b:70:
dd:56:f1:e4:ca:87:25:81:d8:ef:2c:86:10:c4:eb:
7f:91:8d:32:ef:78:9d:08:53:eb:d2:e6:7f:61:f4:
17:41:b0:ec:68:32:69:9d:4e:ff:58:1d:25:18:b3:
fd:87:db:7d:89:b0:7c:0f:22:f7:e2:9a:f8:07:47:
15:80:33:10:32:e0:9b:ee:33:49:6b:d2:1a:73:0a:
5a:bd:be:ad:11:09:fe:ac:c5:71:05:90:44:47:2b:
ba:47:74:c9:1c:0b:f3:f5:9a:f2:bb:2f:06:9f:f1:
07:51:19:7a:35:63:8c:84:c2:12:6a:a5:23:78:63:
6e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D2:19:39:0B:34:A0:96:7C:31:C4:62:67:D9:06:05:1D:D6:DA:02
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:90:09:ab:6e:be:ed:7a:91:9a:12:e1:ef:49:da:58:c1:0f:
90:ca:90:73:9a:6a:a4:f0:f1:bc:79:d4:19:2d:85:8a:f4:ea:
d6:1c:a9:b9:de:03:27:6f:d1:3e:ea:f7:78:df:0f:3a:5b:85:
fa:6c:3b:15:27:92:a7:dc:75:71:b7:d7:82:25:3a:76:67:35:
e5:7f:3c:81:ea:52:dc:21:79:a1:3f:e5:3e:13:4d:43:b5:ad:
e1:5e:92:ea:f9:c7:ef:07:4e:9b:15:bd:df:35:73:a8:0d:30:
07:62:81:66:52:be:2b:e5:95:61:5f:c2:8f:d6:07:71:8f:d5:
aa:67:5f:25:a2:24:48:b3:92:85:e7:ce:78:12:2f:53:f8:e0:
eb:3e:33:dc:50:a0:a4:a9:15:9c:9f:e5:dd:ca:b8:65:7e:64:
a2:16:82:17:f2:4a:f9:00:ab:a3:53:4d:15:3a:a7:0d:13:cb:
b9:0e:43:51:61:3b:c0:86:3f:bb:40:97:da:33:a0:33:d8:07:
4c:c7:de:2f:07:25:67:f1:24:8a:64:56:47:d4:22:84:7a:6e:
11:a3:2e:10:fa:f7:31:ae:c2:71:7d:87:ca:73:c7:83:44:50:
e1:d3:0e:2a:9e:80:7e:3b:37:53:c0:25:40:ff:60:0d:64:c9:
32:1b:f6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:13 2026 by rpki-client