Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier: bv269ZWqXCCwvzTJb2qIblHz03pgIQQAzOrueVTKFlQ=
Subject key identifier: 46:EF:D0:D2:13:69:B7:25:46:D2:F0:AB:74:AE:8E:65:C1:47:7D:32
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial: 019E1D2297553D54E0F7057DBAD6D6EE3E11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number: 10CF
Signing time: Tue 12 May 2026 17:01:06 +0000
Manifest this update: Tue 12 May 2026 17:01:06 +0000
Manifest next update: Wed 13 May 2026 17:01:06 +0000
Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: Nw76RFftEzAwKLzJXPkYqOU69pufkiXpILgc+J9BiBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:97:55:3d:54:e0:f7:05:7d:ba:d6:d6:ee:3e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
Validity
Not Before: May 12 17:01:06 2026 GMT
Not After : May 13 17:01:06 2026 GMT
Subject: CN=46efd0d21369b72546d2f0ab74ae8e65c1477d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:11:66:92:86:df:ff:b0:53:3f:ee:02:13:f0:
5e:a1:e0:e1:24:23:ce:12:05:ba:7c:b2:9b:7c:68:
62:c4:6b:24:c7:0a:0f:9d:82:e6:70:83:35:91:f7:
81:69:33:60:aa:9d:80:27:e1:44:00:c7:08:f9:ab:
75:bc:a1:7d:9d:30:25:14:69:97:f7:45:8a:9d:ba:
c6:c7:d6:18:40:31:8c:0f:34:ad:0a:d9:5e:23:45:
d5:5a:1b:bc:52:15:8b:23:4e:71:ca:66:0e:62:a9:
31:da:33:18:89:65:f7:3b:3c:7d:6e:8d:31:9f:c5:
57:50:b3:e4:a4:57:25:58:47:0e:fc:10:d5:6e:3a:
0b:66:fd:e6:69:aa:70:18:06:0d:f9:2a:9e:f9:b5:
2d:c1:09:e4:da:09:fb:eb:ca:ca:3e:b7:84:c3:70:
33:80:28:3b:36:5c:32:4d:f0:fb:6b:fc:e8:a9:0a:
37:29:3e:10:2e:44:4f:24:af:e6:c2:bd:57:dc:50:
88:7a:16:0a:5b:79:38:0c:2a:97:09:74:37:e4:8d:
fc:5f:b9:75:8f:7d:d6:dc:02:ed:1f:14:63:37:79:
71:be:d8:65:64:88:8a:35:f8:8e:41:4f:61:d2:15:
d2:b4:6a:94:eb:69:cf:60:7f:ec:48:dd:a0:a0:f0:
f5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EF:D0:D2:13:69:B7:25:46:D2:F0:AB:74:AE:8E:65:C1:47:7D:32
X509v3 Authority Key Identifier:
keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:e8:4c:5c:94:52:12:a9:23:0a:d2:45:90:c5:0d:61:03:64:
09:9a:b9:76:d4:d7:b5:e3:b3:ff:af:bb:b6:12:39:ca:2c:82:
8c:3e:cb:9d:29:1d:d0:ba:56:73:04:e3:74:26:57:da:20:ab:
28:13:ce:1c:d9:c4:a7:2f:fb:72:e7:ea:4c:4e:9d:a8:f2:c8:
19:d3:0b:10:b1:18:39:69:b8:ba:87:fb:14:15:62:fd:bb:41:
a6:90:9d:12:2d:c1:fb:8e:41:0c:ea:4f:32:1d:80:27:31:55:
20:40:2f:ae:7e:8a:6a:af:18:fd:cf:97:ee:77:67:16:d0:da:
f4:04:d3:56:a4:cf:1f:13:0f:c2:d2:65:26:f2:df:26:12:39:
51:c7:15:d0:10:be:f5:5c:bf:d7:33:cf:09:56:e4:84:46:4f:
17:fd:a1:d7:cf:e4:df:5c:88:9a:80:c1:19:f9:6f:02:88:56:
ac:9e:d9:22:ac:67:d6:62:f5:2a:39:43:3a:98:2a:be:44:4e:
2b:d5:5c:e4:ee:67:f4:63:4c:43:a9:0a:87:b2:3b:4d:31:a5:
30:22:41:e8:c6:82:c5:7b:03:2f:1c:98:ef:7e:02:71:7f:6c:
26:d0:03:2a:0e:f7:e8:97:ad:e6:b6:a5:a7:18:87:22:4a:06:
cd:4c:ec:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:05 2026 by rpki-client