Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
File: 2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft (raw, json)
Hash identifier: 3xfjd98lBG7KXQ9Izi2+6mb1/Ahixzm8KekuMiwbiFs=
Subject key identifier: 28:7D:03:E0:A1:CF:A6:19:77:AC:B1:E8:56:02:94:7A:C6:E1:48:06
Authority key identifier: D9:08:64:7E:FB:88:21:0F:01:6B:67:56:D3:76:6E:92:95:94:4A:A3
Certificate issuer: /CN=d908647efb88210f016b6756d3766e9295944aa3
Certificate serial: 019E1CB5186A045E7337BA2F51CD399AD06F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
Manifest number: 0139
Signing time: Tue 12 May 2026 15:01:30 +0000
Manifest this update: Tue 12 May 2026 15:01:30 +0000
Manifest next update: Wed 13 May 2026 15:01:30 +0000
Files and hashes: 1: 2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl (hash: e9BX/8WfiycaoAX0RNcBpsYOGcEsWYk+3f9g7k0+UZc=)
2: rDV-HF7LJZhsd6a2pYtuqFyF2-0.roa (hash: WTgx+WW8HPCr9gNUjFMSj5I6ouN0hb4HGics98eX288=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:18:6a:04:5e:73:37:ba:2f:51:cd:39:9a:d0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908647efb88210f016b6756d3766e9295944aa3
Validity
Not Before: May 12 15:01:30 2026 GMT
Not After : May 13 15:01:30 2026 GMT
Subject: CN=287d03e0a1cfa61977acb1e85602947ac6e14806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b8:e2:c5:dd:46:c9:a8:8d:be:d8:dc:10:fb:
22:c2:22:7f:8b:da:72:b7:37:90:9c:8b:b1:86:1d:
04:40:c0:6e:6b:e1:b6:9b:32:5a:e2:0d:60:3c:09:
3a:e1:35:40:4e:98:70:a9:6b:ee:3f:a0:71:d1:4f:
01:9f:f4:a3:fa:6e:c4:2a:05:4d:9d:1a:2b:e8:02:
a9:8a:09:90:38:65:9f:c0:9e:36:4d:49:37:7f:70:
61:a9:35:bd:16:01:e7:ef:17:06:48:31:63:41:62:
2e:b4:29:b6:d9:e5:80:d7:46:c7:84:5d:5a:3f:9a:
42:0f:e7:10:b5:d2:4f:d0:87:d8:eb:4a:31:c2:27:
15:d3:35:47:28:99:b6:f3:c2:a9:1f:6c:de:41:ad:
d3:54:f2:16:12:a2:97:e9:7f:86:20:fe:ac:a9:fe:
b7:2b:fa:07:ed:c6:45:d3:27:b1:d0:cc:63:bb:7b:
06:62:2d:16:ea:6a:8a:4f:f1:06:d9:56:5a:47:8d:
aa:3e:ff:c4:c2:97:50:05:fd:34:93:4b:7d:b5:b6:
d9:ff:16:0a:2c:56:3e:fa:dc:d4:90:18:58:7c:b1:
ab:f3:ba:22:0b:9d:2b:2a:6b:b9:27:bd:05:5c:6a:
75:33:bb:f7:11:42:08:a3:d8:3f:0d:8c:69:d8:a0:
ab:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7D:03:E0:A1:CF:A6:19:77:AC:B1:E8:56:02:94:7A:C6:E1:48:06
X509v3 Authority Key Identifier:
keyid:D9:08:64:7E:FB:88:21:0F:01:6B:67:56:D3:76:6E:92:95:94:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:d7:16:f7:aa:84:1c:9c:92:5e:2a:b1:b8:b7:fc:6b:5e:4c:
b7:20:a9:c6:5d:30:8d:de:d1:9b:c3:04:43:5b:61:8e:fb:a4:
b6:e4:28:e3:7a:b7:6f:31:67:fb:3a:f2:58:36:e6:51:d7:0f:
be:41:aa:88:4c:64:b1:24:73:9e:45:8e:ba:f4:14:d1:0d:1d:
58:1a:db:a3:9c:bc:c2:1e:ab:fc:42:2d:19:a6:86:a4:75:82:
49:1c:36:bd:68:d1:f0:23:6f:dd:66:ed:c6:a6:57:8e:92:ba:
5e:95:65:72:74:13:aa:57:4d:91:00:ee:e8:49:96:94:87:fb:
6c:bd:e7:96:78:7e:7c:22:90:1e:d5:97:6f:5b:62:17:7c:0b:
f4:84:83:0f:7f:93:d1:aa:44:d8:a3:c0:b6:a1:19:3d:a6:2a:
fc:f6:54:19:e7:c9:7e:26:48:8c:bb:8f:f8:53:e1:67:62:24:
1d:03:34:c6:6f:1a:50:77:7e:0a:a5:f3:59:a7:6f:c5:24:db:
a1:a9:65:5e:07:3a:35:19:67:f4:6a:3b:22:3f:96:9d:87:42:
31:8c:89:47:e9:64:2c:99:83:01:00:90:eb:77:8c:12:7b:9f:
62:f3:fd:ee:5e:c4:3c:46:cb:7d:60:06:af:55:9c:47:64:f4:
b8:04:7e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:08:50 2026 by rpki-client