Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
File: 2JFWCWVvCPeijSS3xLqbY5ygsAk.mft (raw, json)
Hash identifier: Ed2rFs6lz3xBfpG351NGFEqRMVSItVWj1OZJG3WHDT0=
Subject key identifier: C2:19:EF:1F:7D:CA:E8:59:87:D1:7C:CC:65:9C:74:2E:50:38:4A:29
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 019D99D0618C67A5BAEDBED2BF140532C280
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
Manifest number: 1327
Signing time: Fri 17 Apr 2026 05:01:03 +0000
Manifest this update: Fri 17 Apr 2026 05:01:03 +0000
Manifest next update: Sat 18 Apr 2026 05:01:03 +0000
Files and hashes: 1: 2JFWCWVvCPeijSS3xLqbY5ygsAk.crl (hash: 2kdw28+xtv0D9jnw3GMT+unO/cOkq3qkUhZFoppaD0c=)
2: 6XH2Ydc6wVPa8tkpc3SeHIdYsRQ.roa (hash: KSE+FxkNnAUXtMkOMt61+w2teTVIXjXxk/ACFJUvjq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:61:8c:67:a5:ba:ed:be:d2:bf:14:05:32:c2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Apr 17 05:01:03 2026 GMT
Not After : Apr 18 05:01:03 2026 GMT
Subject: CN=c219ef1f7dcae85987d17ccc659c742e50384a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cc:81:7e:1d:8e:23:76:9e:35:ca:fa:6d:49:
da:e8:97:81:34:74:96:0d:be:db:5d:8c:c5:32:1e:
d8:d8:08:7d:e9:5a:8f:c1:10:86:fc:61:ed:03:c8:
ac:47:6e:ed:97:19:e4:cf:2f:3b:a1:b9:3a:8c:e9:
c8:b4:f1:cd:66:91:9e:94:64:8b:9f:c6:fa:4a:e3:
57:e4:a4:93:13:c2:05:56:5b:58:a8:09:1d:99:c6:
88:39:0d:80:38:3e:3f:5a:ad:8b:db:c2:3c:dc:38:
02:8b:7f:50:00:c9:48:3f:90:ac:81:39:14:16:1d:
4d:f9:50:ca:50:8d:c0:7e:e3:4b:7d:a8:da:e7:93:
1f:01:6a:7e:68:b5:a9:df:57:b7:4c:6f:a0:08:21:
08:a1:94:2f:24:57:09:87:f3:b1:38:2b:2a:4b:10:
5d:89:e8:20:34:2e:f6:4e:54:3d:03:b6:25:ca:9d:
31:8f:39:e4:cd:9d:3f:24:e1:90:23:3d:ee:d9:5f:
b1:a2:24:67:8b:a1:9f:78:8e:aa:79:6f:54:d0:e9:
34:ef:57:5f:bb:1e:f2:09:bd:91:fe:cf:46:be:33:
35:43:1b:fa:58:58:5a:3d:5c:57:da:13:78:b3:4f:
db:b5:99:5f:13:1d:b4:b4:97:b4:74:49:65:94:3b:
25:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:19:EF:1F:7D:CA:E8:59:87:D1:7C:CC:65:9C:74:2E:50:38:4A:29
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:7e:d1:88:ed:a6:b5:af:9f:88:ae:92:5d:19:01:3b:87:d2:
df:2a:48:b3:15:23:31:d6:58:3e:61:bc:30:c0:54:4b:d3:65:
4a:a0:70:8e:5b:bc:63:32:ad:82:01:6d:9e:ef:28:a3:54:e6:
c0:ec:5f:a4:10:20:5d:4e:c8:ae:ec:09:39:22:2e:6c:a9:eb:
97:93:3f:28:9c:4a:91:78:4d:8c:de:e0:10:d4:8e:41:be:d2:
01:45:f8:03:e0:20:92:01:55:50:47:24:c4:cf:9a:46:04:a2:
3e:9f:5d:2f:69:a8:bd:af:ab:81:89:88:b0:74:b5:c2:f2:b4:
09:d5:c0:18:82:14:1b:73:7c:cf:c9:20:80:c8:a3:05:79:83:
b7:c3:46:cd:8f:cb:9d:a4:f5:82:06:31:0d:4f:0d:34:7e:45:
aa:62:11:28:85:58:f1:fa:aa:b7:f6:54:5b:de:de:d7:4e:d2:
fe:f5:a6:d7:7b:82:e5:4f:f1:22:32:21:2c:94:fe:fe:78:13:
55:4b:38:2d:18:85:2d:6b:37:96:83:20:b6:d0:3e:59:55:a5:
ae:77:f5:45:9a:37:01:3a:11:74:84:ef:79:14:c0:55:30:ce:
96:c7:f4:2e:05:ac:c2:93:9b:2d:c3:8c:6f:4b:8b:f0:fb:37:
60:78:6f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:58:33 2026 by rpki-client