Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
File: 2AtJfVG9n0e4T2k9aH--jPbP-3U.mft (raw, json)
Hash identifier: XJWqFtdq0qjdwUxbu/WsQBwdJK0puIexM7iLzrCgZ4Y=
Subject key identifier: 2A:67:B0:44:15:ED:19:1A:AF:63:34:B7:33:B0:5C:95:91:55:67:F0
Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Certificate serial: 019CAB6B784EFD37832F7E382FC3F276B555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
Manifest number: 0956
Signing time: Sun 01 Mar 2026 22:01:12 +0000
Manifest this update: Sun 01 Mar 2026 22:01:12 +0000
Manifest next update: Mon 02 Mar 2026 22:01:12 +0000
Files and hashes: 1: 2AtJfVG9n0e4T2k9aH--jPbP-3U.crl (hash: ogcv+Al5y137io+qFx7boQKj+pc5VS1OcsXOZSE2SVo=)
2: H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa (hash: has59eIOKa6q3uHYWVg7mO28StrkkiAgF2EF9c4ggME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:78:4e:fd:37:83:2f:7e:38:2f:c3:f2:76:b5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Validity
Not Before: Mar 1 22:01:12 2026 GMT
Not After : Mar 2 22:01:12 2026 GMT
Subject: CN=2a67b04415ed191aaf6334b733b05c95915567f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a3:01:5f:a6:89:96:57:71:43:e6:0b:40:ad:
70:e8:2d:cb:d0:3d:8b:2d:8e:62:03:f9:e4:00:9e:
9e:b4:f1:f6:7a:3a:6f:09:83:f9:fa:ff:cd:3b:a9:
01:0d:0c:d3:48:97:85:05:17:bc:05:85:47:bf:35:
85:1a:a9:95:4d:0b:65:a1:e4:da:0a:98:34:a6:e3:
50:a5:4c:73:60:7d:a1:ee:01:09:70:e6:95:24:95:
e5:02:ce:49:79:0f:46:12:29:f0:43:65:a7:0e:c0:
df:c4:d2:24:c1:e2:c6:23:ea:46:7d:45:b3:98:91:
b3:d8:22:37:87:1c:fa:b0:ef:58:32:76:e9:bb:79:
d6:2e:12:94:01:f7:db:90:5a:31:a6:55:f1:83:87:
f7:7c:39:58:c9:64:f7:45:ff:5b:95:cd:c1:f6:33:
35:99:7a:98:67:29:0d:51:1c:2e:f3:7d:a0:e5:38:
81:d5:4f:04:df:1a:00:7d:a7:0b:bb:15:02:84:9e:
91:c3:7d:d3:ed:45:51:4a:1b:97:18:ab:ab:0b:be:
1d:09:59:f1:42:c6:08:17:c8:21:a1:c5:83:82:33:
54:2f:9b:e7:80:78:b7:66:32:19:8e:5d:45:0c:cd:
f1:bf:f5:e0:e5:d0:95:4a:e2:96:17:8e:09:c5:70:
60:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:67:B0:44:15:ED:19:1A:AF:63:34:B7:33:B0:5C:95:91:55:67:F0
X509v3 Authority Key Identifier:
keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a3:ff:21:cb:cd:66:29:96:85:b2:99:d9:d5:7c:87:a0:05:
93:17:53:07:03:14:98:13:2c:a3:2d:71:e1:2e:c2:56:2c:1f:
88:fc:27:13:b1:01:90:d8:41:6f:4c:5c:37:67:68:0e:38:7c:
aa:a6:f5:e6:b4:ed:4c:43:fd:2d:c1:2c:98:63:69:bb:52:bd:
52:c7:ca:46:e6:02:82:c3:c9:1d:ae:8b:07:3a:a6:1c:f3:1e:
ad:85:0e:25:71:a2:a1:25:40:90:65:c6:11:4d:0a:cf:2a:ba:
5e:c1:27:0a:36:e8:ff:95:17:92:f4:c2:67:e8:db:ab:3a:54:
d1:18:0e:6e:b4:8d:cf:3f:30:a0:b7:7a:1d:df:08:ba:62:e5:
dd:08:24:e2:3e:a4:ff:c5:dc:13:01:d8:a6:49:b5:26:f4:e3:
5f:09:34:f9:fa:e8:33:37:f0:a9:5d:e7:0f:a0:fd:ec:de:f8:
dd:e7:1e:49:c6:69:ac:7d:eb:94:94:27:5c:8a:3b:fb:bd:df:
e8:50:e9:7e:cb:7a:c0:8f:95:19:64:ea:cd:56:7f:a4:0d:d9:
50:f2:9d:9a:7c:cc:c5:a5:3e:d7:4c:8d:4d:e9:0b:47:98:2f:
cf:21:fd:fc:af:dc:07:05:e3:95:e0:6c:fb:0a:c2:2c:81:87:
52:14:91:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:03:01 2026 by rpki-client