Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
File: 2JFWCWVvCPeijSS3xLqbY5ygsAk.mft (raw, json)
Hash identifier: 7m1H1e6Hs3xBrcHc8bMUNPgXA887EvmCRDvWAxi38hI=
Subject key identifier: C1:17:E2:B6:06:00:A1:47:3D:A3:91:B0:BF:5C:72:33:0B:F4:7D:71
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 019CAA586B4B2823F511BC24D29D9A08CE2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
Manifest number: 12AB
Signing time: Sun 01 Mar 2026 17:00:47 +0000
Manifest this update: Sun 01 Mar 2026 17:00:47 +0000
Manifest next update: Mon 02 Mar 2026 17:00:47 +0000
Files and hashes: 1: 2JFWCWVvCPeijSS3xLqbY5ygsAk.crl (hash: lAehs/vqI3L4Am7tIGSNIYAGdZO78+d5SliWVThyBCs=)
2: 6XH2Ydc6wVPa8tkpc3SeHIdYsRQ.roa (hash: KSE+FxkNnAUXtMkOMt61+w2teTVIXjXxk/ACFJUvjq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:6b:4b:28:23:f5:11:bc:24:d2:9d:9a:08:ce:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Mar 1 17:00:47 2026 GMT
Not After : Mar 2 17:00:47 2026 GMT
Subject: CN=c117e2b60600a1473da391b0bf5c72330bf47d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:ab:91:37:ad:0e:fe:21:d3:cd:0c:5a:ca:
0b:08:55:d1:28:7c:db:0c:5e:5f:7a:42:4c:f5:dd:
e0:c2:a0:4e:3b:47:a8:9c:cd:23:18:80:d1:6d:00:
84:4f:c2:93:09:d5:c3:cd:66:45:61:b1:44:e4:12:
d7:60:a1:47:85:85:7e:5d:5a:81:97:a4:5e:47:c9:
b9:83:99:d1:c8:5a:21:a2:77:43:15:14:7d:de:c0:
4f:58:07:10:4a:6c:0f:df:a7:8c:a3:16:6a:1c:23:
7d:29:3a:d3:e4:01:bb:36:43:52:da:8f:00:56:1a:
53:3b:be:14:dc:00:25:c0:ef:99:a0:ac:09:8a:79:
70:2e:de:7c:9c:73:ef:2e:63:f2:7e:c0:f7:f5:0a:
6c:98:83:16:50:37:33:75:b5:34:88:d0:1c:d6:e7:
00:51:f2:63:71:47:86:e9:fb:78:70:6a:98:38:ea:
4d:8d:ef:2b:97:c2:d4:77:13:3f:23:9e:80:47:41:
2f:65:ef:ab:b4:0b:e8:dc:a4:bc:2a:ff:9d:d8:d7:
e9:85:6e:ef:1e:52:ae:9c:10:d9:ba:0b:89:3f:0a:
92:86:ae:6d:f4:57:bc:7e:c8:71:54:a5:f8:e9:43:
64:c3:ee:8c:3c:b8:15:2c:b7:e0:89:fa:95:e1:85:
ef:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:17:E2:B6:06:00:A1:47:3D:A3:91:B0:BF:5C:72:33:0B:F4:7D:71
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:5d:a4:ee:f0:7f:8d:75:9f:84:74:54:08:4d:74:72:e2:88:
21:92:8b:f2:52:74:dc:de:45:f4:f7:34:63:ca:2c:88:46:2a:
5b:5c:74:dc:61:b1:71:98:09:c4:05:97:71:8f:d3:dd:86:02:
1e:74:35:7a:22:b6:40:38:17:7b:56:0e:b5:14:86:9c:b4:21:
c5:b5:8e:ee:ed:60:05:0b:9b:5d:89:33:72:9a:55:a6:e8:bb:
64:c5:d3:35:cd:26:3e:98:c0:02:38:22:64:f9:a3:c5:87:6b:
7d:f2:6c:5c:13:ee:23:10:9e:81:bb:e1:c9:6f:80:a6:f7:54:
15:f9:13:07:e2:96:f2:60:73:b1:4b:27:5b:01:d1:eb:2f:cb:
b4:5a:d3:b4:12:68:d1:c2:6d:92:bf:75:39:e7:e0:b6:e0:31:
ab:8a:68:f2:7c:1a:75:02:71:38:a8:f8:22:4d:32:b8:d4:7a:
f7:83:46:13:56:01:aa:50:0f:76:16:9d:1f:d7:2c:63:d4:a3:
10:af:20:15:41:13:0d:17:78:5c:5c:49:1a:21:ef:e7:8f:88:
34:7b:7d:1f:97:cf:86:b1:1c:28:44:1d:1d:39:c1:08:1c:64:
ce:a4:e9:e5:63:b9:83:cb:ed:5e:f5:00:18:71:2d:62:9f:8d:
ab:6e:9a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:46 2026 by rpki-client