Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: 6/gO2cRRk9bH5sQMV8RW8Pe8z3o3eJui/QCx4AViA6Q=
Subject key identifier: 1B:C7:96:A1:5F:C9:C9:D9:0C:C0:BF:91:A9:3D:BF:01:D5:32:06:A9
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 019CAB6B195F0BE3F4E69D48A59C0736BE4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 142B
Signing time: Sun 01 Mar 2026 22:00:48 +0000
Manifest this update: Sun 01 Mar 2026 22:00:48 +0000
Manifest next update: Mon 02 Mar 2026 22:00:48 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: v/BWYBLWR3ipSP3pNoLHK2kYi8l7zUSkPmZP/qEbtug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:19:5f:0b:e3:f4:e6:9d:48:a5:9c:07:36:be:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Mar 1 22:00:48 2026 GMT
Not After : Mar 2 22:00:48 2026 GMT
Subject: CN=1bc796a15fc9c9d90cc0bf91a93dbf01d53206a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6b:5b:50:8b:93:e2:7c:95:cb:1d:9c:2b:28:
66:35:19:70:82:7d:12:4b:9b:bd:73:9b:99:12:48:
90:34:22:aa:89:ef:a1:aa:27:8f:f0:a6:0d:bc:3f:
34:6e:0a:3f:8b:2c:34:f1:ff:20:b3:e1:de:bf:ff:
a6:3c:0a:f4:91:46:5f:61:5a:83:8a:21:04:2b:c1:
cd:ca:39:c9:50:b9:91:ff:07:f0:1e:ef:0e:bd:2d:
00:a9:9c:45:9c:cc:14:3f:d2:19:01:38:46:4c:04:
76:49:a0:66:9c:23:0d:63:e9:63:45:68:f8:5e:31:
3f:10:ca:db:d3:bc:3e:02:b3:70:29:6b:c1:a6:c2:
f4:a2:f4:3d:23:6d:e8:73:13:d5:ac:c2:48:e6:72:
8d:d4:f1:09:42:2a:9e:7f:fc:99:d8:38:db:df:d5:
b6:08:a9:23:19:c7:db:18:a8:ca:cd:44:bc:1a:94:
38:b5:a8:5b:a2:ca:57:6a:0e:6f:df:72:1d:ec:c2:
b4:70:08:fd:7f:dc:78:0f:e1:54:57:df:b1:d3:00:
86:f8:5d:dd:fb:ba:a9:a6:83:4b:ad:a0:df:de:cf:
ba:d5:05:0c:8e:6b:ce:4e:91:65:86:ae:26:08:3e:
88:27:d2:5a:30:c3:07:6f:2c:8b:f7:10:b4:91:a8:
3d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C7:96:A1:5F:C9:C9:D9:0C:C0:BF:91:A9:3D:BF:01:D5:32:06:A9
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b6:c0:12:f1:e0:f1:75:01:85:3b:49:8d:6c:8f:61:28:09:
96:38:1f:cd:54:4a:45:59:68:b7:7f:9d:68:ff:1a:af:a0:5a:
eb:55:f6:a7:ae:2a:72:90:14:6e:f1:20:05:3f:9b:9b:98:a1:
76:3c:84:98:75:ea:8c:2d:23:ea:b9:0e:98:00:55:cb:c8:78:
84:74:a7:54:1c:7c:f0:3f:0a:a3:72:c2:ea:49:09:e5:8a:01:
ba:1e:8e:2f:6f:e6:82:d2:f1:b1:09:15:02:70:12:67:7e:be:
ae:fd:07:62:7d:71:e3:0d:aa:1f:82:70:e5:41:fc:22:a5:20:
3a:16:31:96:d4:05:03:1f:12:9e:79:83:ed:07:86:32:b1:62:
34:2a:45:9f:cc:0e:14:7c:2f:74:89:96:a2:d7:4f:37:8b:10:
b2:c6:90:05:f8:7f:4b:86:fe:87:1f:98:c1:96:ab:77:82:72:
36:a4:4a:d9:d0:81:3f:a9:a3:19:19:21:99:53:34:78:c1:41:
aa:f2:e9:c2:af:bb:c1:97:c7:ac:e0:a6:5a:6c:f7:9a:cf:1e:
de:62:19:64:75:82:ad:cd:4f:1f:1e:6d:4f:88:38:bf:51:45:
88:6d:0f:da:2f:07:dd:a5:c0:b2:b6:3c:43:09:8f:8b:f0:73:
58:97:7e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:52:19 2026 by rpki-client