Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: Htc2k8hcIiOPyUYyYcpyMrNfez2L7NFkgpBXQLOG7cY=
Subject key identifier: B8:41:D8:3F:69:CF:A9:62:90:AC:61:6E:27:AE:33:69:F3:BA:56:88
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019CAB349D33294F6954AC7044C327764E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 21:01:17 +0000
Manifest this update: Sun 01 Mar 2026 21:01:17 +0000
Manifest next update: Mon 02 Mar 2026 21:01:17 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: vByFbQjzeRcv2SXmXSCwfaeTAO2EPS4LsRhM5De2daM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:9d:33:29:4f:69:54:ac:70:44:c3:27:76:4e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Mar 1 21:01:17 2026 GMT
Not After : Mar 2 21:01:17 2026 GMT
Subject: CN=b841d83f69cfa96290ac616e27ae3369f3ba5688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6f:bc:83:12:7f:54:8a:e3:cf:23:ee:64:84:
61:00:9b:b8:f9:ce:2e:64:1a:d7:64:93:4f:b5:8f:
3c:e6:c2:44:d6:74:cd:79:fd:fc:f1:a2:6f:42:36:
fb:3c:2b:ee:0c:05:ce:d2:44:4a:dc:2e:05:6c:a2:
a5:2f:f5:cf:21:e8:f5:b3:fa:a8:f1:24:fc:da:0b:
4f:68:75:2d:88:3b:28:db:3c:04:74:75:5f:65:71:
77:19:86:0f:3c:1a:11:13:a0:e1:45:46:46:d9:93:
ca:bb:a2:ab:1c:a9:f4:ef:59:25:44:73:d8:08:e1:
37:88:46:40:64:0f:5d:d2:ac:c4:ca:5b:ce:94:49:
34:15:bb:ec:c6:9b:09:af:1d:e6:4d:4e:55:65:79:
9d:2e:00:8e:33:f3:66:31:da:62:38:fb:84:a9:4d:
ea:34:c7:0e:3d:62:f3:27:41:e8:2d:8f:89:f3:d5:
67:2f:bd:7c:f3:2c:b3:51:1f:2b:d2:c1:d4:bb:c2:
51:6e:b6:b9:3c:b4:d3:d5:e6:18:65:74:16:13:ee:
cc:4c:18:59:ea:2e:a8:73:75:8b:7c:3c:10:ca:1b:
7b:40:cb:8d:82:16:b7:c4:e2:c5:b9:c3:b0:3a:cf:
7d:70:10:8d:00:ca:95:55:cd:77:ac:2c:cb:d7:20:
39:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:D8:3F:69:CF:A9:62:90:AC:61:6E:27:AE:33:69:F3:BA:56:88
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:47:c0:66:a6:1f:6f:49:c6:75:ae:4b:bb:1b:c4:27:6d:79:
20:00:5f:86:b6:de:8b:20:32:5f:88:14:a3:68:d5:69:c3:00:
e7:62:66:5d:86:19:62:ac:33:aa:00:0c:3d:b2:3b:9e:c1:1c:
d9:96:81:e1:0a:1d:e0:7e:12:e1:bf:4e:9b:c7:51:19:f1:71:
48:1b:e3:8f:21:64:7e:2e:4a:94:76:e4:85:8f:74:e7:5b:51:
24:bc:fe:74:1f:c0:c4:eb:c0:91:a4:4c:83:d6:9a:50:52:de:
5e:0c:e1:95:96:45:c4:71:70:51:9e:4c:ab:99:da:d0:56:54:
dc:4b:e9:4d:47:79:2c:53:a6:2f:b9:92:ab:f1:8c:32:c7:a8:
20:d2:c1:67:30:a8:ba:30:f0:db:2c:7a:1b:fe:f2:f3:11:3d:
e4:06:30:e1:cc:dd:85:d1:dc:71:a0:f4:1e:9c:fd:0e:80:8d:
8e:bf:51:e3:79:69:0e:ef:99:e9:82:e8:c5:7e:35:a4:51:b8:
7e:db:b7:59:ca:8a:8e:f0:fd:ec:52:d0:91:b5:85:4b:01:24:
0e:b9:47:85:55:9a:ca:20:c5:6f:4b:7e:09:8a:ba:a2:13:d5:
18:c7:91:e5:21:79:28:4a:f5:0a:7f:c7:ec:bd:7b:14:fb:d4:
25:30:58:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:37:57 2026 by rpki-client