Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
File: 2fhm-wqoOicaDLfckDAYjInSPl0.mft (raw, json)
Hash identifier: 6RhcGZG5CPjQ5SkxBCWgs5ti80kh5umlT3ePWujsKRE=
Subject key identifier: D0:C4:CE:DD:2B:54:DF:1E:1C:12:77:E1:D5:41:DD:C4:D0:F1:48:E0
Authority key identifier: D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
Certificate issuer: /CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Certificate serial: 019E1CEB830D93364C88701253197255B545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 16:00:56 +0000
Manifest this update: Tue 12 May 2026 16:00:56 +0000
Manifest next update: Wed 13 May 2026 16:00:56 +0000
Files and hashes: 1: 2fhm-wqoOicaDLfckDAYjInSPl0.crl (hash: bPAEfbcBOPw2y47Q8TaA/s64J/qq+ttd9/F5KULpIQ0=)
2: 7CuuMu75v2ke5Xdx3b9qKN7n4Y4.roa (hash: 4EY3GSH/tIrLwl1yZXfEtQ+XZsJnpbfMvJM5DC8DJrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:83:0d:93:36:4c:88:70:12:53:19:72:55:b5:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Validity
Not Before: May 12 16:00:56 2026 GMT
Not After : May 13 16:00:56 2026 GMT
Subject: CN=d0c4cedd2b54df1e1c1277e1d541ddc4d0f148e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:9a:df:94:56:f7:e9:78:1e:28:8a:b8:d0:
52:56:a0:ba:83:33:93:46:22:43:63:37:ae:68:5b:
c7:8e:68:42:6d:3b:28:c0:c9:66:2e:1c:da:03:a1:
0e:ff:c4:4c:79:d3:b6:9e:34:9f:75:77:cf:e2:3c:
dc:8b:02:99:9e:1d:f0:70:2f:76:ca:a2:7a:26:5c:
95:ba:2e:e7:0c:b0:fe:cc:43:91:a3:92:3d:4e:20:
56:17:a6:e1:b1:37:c9:09:19:7a:ba:9a:c9:76:6c:
9b:58:79:57:d7:02:43:4d:93:84:7f:c6:52:46:04:
68:88:f3:b5:d5:a6:84:33:98:1f:f7:33:57:21:e6:
74:d3:36:d9:e7:84:96:67:3c:60:a5:e4:8f:f5:dd:
59:74:90:07:10:13:1b:7f:8d:b3:54:a3:71:30:38:
8c:34:76:ef:ba:fa:e5:33:a8:c3:7b:96:62:0c:bb:
43:f2:a4:c2:e3:36:5f:cd:92:f5:1d:72:a1:6b:a8:
f8:69:b7:2a:ed:03:8e:e3:9d:ff:b4:6d:e1:9f:1b:
cb:f0:fc:8b:e0:24:ad:ad:0f:db:0e:9e:ed:d5:61:
29:f2:f6:fa:d8:94:51:e9:24:e5:c8:4b:0f:ef:95:
31:1f:35:de:d2:f0:8d:23:ad:b0:38:86:8e:e2:0f:
29:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C4:CE:DD:2B:54:DF:1E:1C:12:77:E1:D5:41:DD:C4:D0:F1:48:E0
X509v3 Authority Key Identifier:
keyid:D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:5c:0e:70:f1:05:e4:64:da:21:8f:ea:90:82:93:2f:63:cc:
36:68:b2:31:27:9c:6e:b6:a7:4a:7a:fa:92:15:3c:51:24:7e:
9e:8d:f5:2b:ea:ed:81:5f:e8:90:e3:24:7a:52:bd:4a:c9:c6:
3f:c1:00:0d:af:90:86:32:34:dd:66:e6:77:7c:40:3d:9a:93:
7c:9f:5c:84:08:88:2c:19:62:75:d4:b5:6e:f8:de:3f:51:c9:
8d:2b:91:fe:2e:83:f4:63:83:84:64:fb:19:98:a2:46:9a:43:
8b:de:ef:ae:c0:15:27:1f:34:86:b7:6e:82:ac:14:76:49:fd:
16:c5:fe:59:79:31:38:f7:b8:91:c6:78:54:a2:17:2a:7e:69:
98:88:1a:b9:aa:60:99:a7:f7:f8:d2:05:bd:31:21:9c:10:6d:
df:ff:47:ed:58:f9:44:60:22:a9:67:7b:bf:26:8c:a8:64:f0:
1b:b1:26:19:e4:0e:3a:20:89:4c:db:cf:e3:2f:59:81:b0:af:
48:93:ba:32:3a:88:6f:f6:00:ad:12:03:2a:f1:f6:58:cc:8f:
f7:07:07:b2:41:8b:18:ab:70:90:d1:a3:ee:67:f8:06:7a:f8:
c6:6b:d0:4d:77:e3:6d:82:3d:fc:16:1f:ee:16:66:44:7c:0d:
65:49:58:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:15 2026 by rpki-client