Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: f+EVvBrJcHXauem9wwhpfJP8DlGpoxFfdVfkZGhy8gY=
Subject key identifier: DB:59:31:06:1A:DD:F7:6F:CB:50:63:94:C3:A6:DF:28:C9:99:E9:2B
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 019E1C4751036451DE00D3860DA8D3379165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 1903
Signing time: Tue 12 May 2026 13:01:36 +0000
Manifest this update: Tue 12 May 2026 13:01:36 +0000
Manifest next update: Wed 13 May 2026 13:01:36 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: 0R/0NHrZ3wAGXAWfN6qT9UXDmX3keKcQ1rh8Higs6To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:51:03:64:51:de:00:d3:86:0d:a8:d3:37:91:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: May 12 13:01:36 2026 GMT
Not After : May 13 13:01:36 2026 GMT
Subject: CN=db5931061addf76fcb506394c3a6df28c999e92b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:56:63:a2:24:f6:90:76:ff:b5:4a:cf:2d:f2:
87:46:39:e0:a2:85:57:12:b8:4e:78:9a:a5:2f:4c:
64:18:bf:a3:81:93:49:f6:d1:a4:2b:42:04:e1:d3:
5f:70:9a:c2:f1:5b:b5:f0:70:58:8d:cb:04:ec:64:
87:81:eb:bd:8c:07:52:01:8e:44:0b:07:ae:38:ac:
5a:cf:0e:bb:aa:69:7b:19:1c:d7:43:13:e2:dd:0e:
49:27:92:74:f8:35:70:e5:94:17:d5:0a:3a:aa:05:
7b:4a:e7:b0:74:99:a3:f8:6d:cf:f5:47:25:83:f1:
01:e3:aa:b7:fd:08:88:8d:79:55:b4:bd:82:74:8a:
5d:08:a4:6d:cc:e8:3c:ac:69:bc:63:89:06:f2:82:
74:02:2b:fd:4b:7b:59:ef:79:ed:8f:b6:9e:61:69:
39:91:10:59:76:df:23:78:08:06:78:97:d4:c2:fc:
1d:34:25:b5:22:87:b3:fc:4a:7e:e9:31:d8:8d:e5:
33:4c:9a:ba:ff:78:fe:69:cc:5e:ce:80:af:4e:e0:
50:33:dd:93:30:82:f6:e3:08:d5:cf:73:b9:7b:bd:
91:93:6d:ce:3d:19:87:b6:17:99:f5:87:17:6c:23:
d5:77:d3:88:89:f9:29:69:a4:92:64:16:97:84:a0:
e2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:59:31:06:1A:DD:F7:6F:CB:50:63:94:C3:A6:DF:28:C9:99:E9:2B
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3a:ca:a2:76:01:17:2d:82:ac:35:51:59:b1:7b:2a:a7:5e:
ee:71:2e:1b:a5:54:89:52:51:5b:48:96:2d:ae:09:e8:6e:d2:
a6:6f:40:89:65:33:a1:92:c8:2a:54:be:6a:06:bf:00:94:bd:
db:bf:12:47:f0:c7:12:75:69:5a:9c:84:73:d1:bb:b3:05:02:
81:a2:3e:52:9c:2d:3c:c3:e4:d4:8b:96:78:dc:2a:34:6c:51:
a0:73:ae:47:fd:d0:9e:24:45:4e:62:5b:bd:2a:c7:5f:af:c5:
f1:af:d5:d1:0b:bc:99:9a:d5:12:21:85:a2:46:c5:9f:62:83:
1b:6b:16:18:41:84:dc:ff:eb:24:12:bf:49:5c:6e:26:e0:07:
ae:dc:63:2c:ba:b5:6e:c9:75:ef:8f:0a:8d:3b:6a:7c:d9:6d:
42:90:b1:ed:ac:b8:79:d5:55:7b:6f:8d:85:1c:72:e7:9b:ad:
55:97:26:93:6b:93:d9:e1:f4:7d:c6:6d:3f:72:50:86:d1:8f:
43:7e:43:08:9e:60:f6:84:07:8e:ca:df:02:1a:a2:9d:eb:fa:
3a:c5:6b:92:8b:70:19:64:4c:d0:ad:5b:be:80:ad:65:d3:0c:
9f:0e:8e:83:8e:61:c8:0f:f8:1b:43:2e:38:9d:ca:5a:2d:fd:
33:23:7b:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cR1EDZFHeANOGDajTN5FlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNWVkZTY1ZWZlZGVlZGY4YzhhMDRiMjQ1YTNhNWRmNjNh
NjllODQwHhcNMjYwNTEyMTMwMTM2WhcNMjYwNTEzMTMwMTM2WjAzMTEwLwYDVQQD
EyhkYjU5MzEwNjFhZGRmNzZmY2I1MDYzOTRjM2E2ZGYyOGM5OTllOTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVZjoiT2kHb/tUrPLfKHRjngooVX
ErhOeJqlL0xkGL+jgZNJ9tGkK0IE4dNfcJrC8Vu18HBYjcsE7GSHgeu9jAdSAY5E
CweuOKxazw67qml7GRzXQxPi3Q5JJ5J0+DVw5ZQX1Qo6qgV7SuewdJmj+G3P9Ucl
g/EB46q3/QiIjXlVtL2CdIpdCKRtzOg8rGm8Y4kG8oJ0Aiv9S3tZ73ntj7aeYWk5
kRBZdt8jeAgGeJfUwvwdNCW1Ioez/Ep+6THYjeUzTJq6/3j+acxezoCvTuBQM92T
MIL24wjVz3O5e72Rk23OPRmHtheZ9YcXbCPVd9OIifkpaaSSZBaXhKDiKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNtZMQYa3fdvy1BjlMOm3yjJmekrMB8GA1UdIwQY
MBaAFNpe3mXv7e7fjIoEskWjpd9jpp6EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWIt
YWZmNTBlNGEwZTMzLzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWItYWZmNTBlNGEwZTMz
LzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDrKonYB
Fy2CrDVRWbF7Kqde7nEuG6VUiVJRW0iWLa4J6G7Spm9AiWUzoZLIKlS+aga/AJS9
278SR/DHEnVpWpyEc9G7swUCgaI+UpwtPMPk1IuWeNwqNGxRoHOuR/3QniRFTmJb
vSrHX6/F8a/V0Qu8mZrVEiGFokbFn2KDG2sWGEGE3P/rJBK/SVxuJuAHrtxjLLq1
bsl1748KjTtqfNltQpCx7ay4edVVe2+NhRxy55utVZcmk2uT2eH0fcZtP3JQhtGP
Q35DCJ5g9oQHjsrfAhqinev6OsVrkotwGWRM0K1bvoCtZdMMnw6Og45hyA/4G0Mu
OJ3KWi39MyN7Uw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:54:44 2026 by rpki-client