Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json)
Hash identifier: 8wT8GNUxWfnmfYZyxcIHH+2/EntOnoPpuODhxK+2Row=
Subject key identifier: 9C:7D:A0:E5:82:60:78:07:72:B2:04:5C:11:DA:D0:E3:AF:BB:1F:6B
Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c
Certificate serial: 019E1D907A267A5D8C0B464A5220B54D49C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
Manifest number: 038E
Signing time: Tue 12 May 2026 19:01:08 +0000
Manifest this update: Tue 12 May 2026 19:01:08 +0000
Manifest next update: Wed 13 May 2026 19:01:08 +0000
Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: fHgPyEJfkYI+aSEymyst2JZhHhfb7297iQc9ob2CAUE=)
2: qIEvRyug51NtPOqrvZlLTZ5-EIQ.roa (hash: BsW/+9betY20XfYjkexlN+8vCvy84YAaJnRdNAcmTYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:7a:26:7a:5d:8c:0b:46:4a:52:20:b5:4d:49:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db05360e9873825f75d671daf1624a52e985390c
Validity
Not Before: May 12 19:01:08 2026 GMT
Not After : May 13 19:01:08 2026 GMT
Subject: CN=9c7da0e58260780772b2045c11dad0e3afbb1f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:57:0f:6c:bd:08:68:64:e0:a0:9e:b8:50:41:
ca:36:0c:ee:bb:64:21:8e:ba:b2:4d:30:65:42:bc:
4f:cb:ae:09:8b:a6:59:44:21:5f:ec:e7:e7:1f:f4:
cb:de:a1:d2:8b:22:8f:a2:42:cf:73:8b:5f:2c:7b:
73:08:48:74:a9:f5:47:48:5a:b9:fc:0e:dc:14:f9:
43:11:60:62:13:6e:4a:ff:dc:22:30:55:b1:0d:1d:
2c:4e:d6:8a:e3:23:30:c0:8d:7c:6a:47:b0:2c:1d:
29:1a:0f:d8:0e:a1:13:bf:7d:10:69:0b:24:55:38:
4e:51:91:37:49:22:e8:ab:ad:2f:a0:fd:02:9a:8d:
57:b5:3a:95:be:da:b2:24:13:54:34:16:8f:2b:8b:
7a:ba:c8:77:04:da:06:d6:a6:71:d4:60:56:f9:9e:
67:b4:f1:01:c4:81:c5:e0:20:0d:49:23:97:68:72:
94:40:d2:24:07:2e:9b:38:77:87:93:2e:02:76:b7:
f9:94:3c:a4:c0:16:ef:91:98:0b:0a:b7:28:38:0f:
f9:da:cd:60:63:ba:b1:2b:fa:db:ec:40:75:d8:89:
56:55:44:22:c3:7e:a5:64:1a:34:49:00:82:e0:6e:
99:8a:b1:b0:8c:f4:82:df:9c:7d:f8:1f:23:f4:ef:
fc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7D:A0:E5:82:60:78:07:72:B2:04:5C:11:DA:D0:E3:AF:BB:1F:6B
X509v3 Authority Key Identifier:
keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:6c:bb:9c:93:22:1a:a2:e1:84:5e:63:e5:4a:51:e0:4c:1d:
5d:fa:cc:af:62:28:d4:ef:34:95:35:24:3e:01:20:0c:71:72:
d5:e4:3d:68:a6:f8:65:2a:39:4b:5c:65:7f:4c:19:1f:d9:b3:
17:3e:10:48:4d:e0:d8:49:1e:7c:aa:a5:0a:3a:dd:8a:56:e2:
1c:bc:f5:d3:b7:d1:49:60:94:4b:89:27:f9:0e:2e:46:cd:f1:
06:b5:37:ea:a7:0b:e6:06:60:e1:e9:09:c5:8a:90:1c:05:36:
e2:68:71:87:42:6d:d5:af:09:70:fd:c2:98:f4:8a:cd:87:40:
3a:2d:05:a7:66:05:68:9a:24:f7:02:d9:c4:f9:0c:39:9f:96:
88:ee:df:ab:0a:f2:2d:44:44:8e:cd:2a:81:09:aa:65:b0:77:
45:46:7b:86:a1:ea:97:a1:fd:33:46:c9:4a:84:96:17:84:9a:
16:ad:34:3b:84:a3:f7:73:2a:b0:95:e6:d1:8e:f0:50:c0:e6:
14:26:2c:0c:d1:90:9b:70:3f:82:43:5e:30:42:49:97:c5:28:
17:4d:b5:57:cf:34:2b:39:27:f9:af:79:f9:fc:cb:9b:af:7b:
49:e9:75:ac:15:99:b7:94:86:2d:b0:96:06:f9:ff:42:f2:ea:
20:55:91:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:54:21 2026 by rpki-client