Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: 5y2A/PaTtBKoz3UG0uRQ1Z74IAFn/XrRxwPJlGzHz18=
Subject key identifier: DA:E1:4D:68:76:86:5B:2D:4F:91:05:02:D0:71:E3:BA:B8:73:75:AE
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019CA9B40CFE9DE36F26AA53DFE51E220EEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 166A
Signing time: Sun 01 Mar 2026 14:01:15 +0000
Manifest this update: Sun 01 Mar 2026 14:01:15 +0000
Manifest next update: Mon 02 Mar 2026 14:01:15 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: 6ZnolU41BRv33Ow3T19G20YiuS2e+Uh9MfDvl4oRTlA=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b4:0c:fe:9d:e3:6f:26:aa:53:df:e5:1e:22:0e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Mar 1 14:01:15 2026 GMT
Not After : Mar 2 14:01:15 2026 GMT
Subject: CN=dae14d6876865b2d4f910502d071e3bab87375ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:75:7f:e7:89:96:d4:d3:ca:76:4d:66:c3:b3:
ea:4f:e0:a3:a2:5f:ad:0a:ad:1f:7b:2a:3c:4e:b4:
76:73:88:bf:b0:23:b7:1b:34:de:ae:5a:fd:a2:bf:
06:5b:c4:58:11:1b:2b:52:72:b3:2c:2e:a8:92:4f:
4b:22:f0:05:12:3f:9d:bc:0f:64:b1:89:76:52:09:
6b:89:03:af:1c:5b:61:bc:f4:7e:5c:e7:e2:43:20:
0d:c3:34:2e:cf:d2:77:70:5c:d5:42:e7:1d:f2:e6:
68:6f:4e:a9:af:6d:69:a6:8c:30:51:23:1b:e4:3e:
8d:f7:d1:50:9e:a9:c3:65:75:45:3e:97:4a:cc:a4:
c2:20:6a:eb:84:b5:bd:38:e2:dc:f3:24:d5:d4:c2:
81:2f:66:30:5e:8e:fb:6e:9d:6f:ae:9e:03:2a:b7:
37:0e:e3:9b:40:e5:d8:ea:fd:5b:85:6e:d2:59:63:
0d:fd:3d:37:09:48:52:1e:0f:8a:06:a7:90:55:18:
c4:ac:45:71:95:c2:07:15:79:d2:83:8c:88:4c:35:
99:86:f9:ac:e8:51:2b:d6:e9:0f:3f:2f:6c:63:24:
ad:c2:09:5c:4c:a8:2a:66:03:32:2f:50:9d:f4:74:
fa:a9:93:a9:ee:6e:85:7d:0b:3c:62:74:1c:25:26:
0b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E1:4D:68:76:86:5B:2D:4F:91:05:02:D0:71:E3:BA:B8:73:75:AE
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:87:43:4e:d0:28:81:2d:d2:3e:50:0e:c3:cf:05:f6:1a:9d:
5f:3f:43:a4:22:99:b4:23:af:b2:95:fe:f9:a5:9d:f7:1b:8d:
8e:25:c1:c0:73:e7:cf:89:96:76:a8:67:8f:be:f9:e4:62:cb:
4e:53:01:01:6d:b2:b2:59:4d:62:9e:84:ff:92:b5:df:d7:4c:
f2:2c:33:12:ae:45:f2:89:2b:2c:5d:20:90:9c:d2:23:a2:d7:
27:fe:a3:d8:4b:da:e1:ae:8e:14:fd:3c:d0:77:6c:29:47:5e:
e8:51:16:b6:92:4b:14:d1:ff:fb:96:0b:8f:50:03:a8:5a:84:
95:d8:6b:ab:45:3c:c4:6d:e5:d2:58:de:24:a7:a2:6f:86:aa:
8e:df:6a:65:99:0d:b9:c5:1a:84:13:ec:d3:bc:51:bf:9e:a0:
77:d5:2f:8b:83:0b:f8:6c:44:94:44:18:81:5b:35:62:35:f9:
9f:99:df:dd:a2:10:c1:37:06:fa:ec:01:fb:a7:b7:e7:66:78:
3f:8c:34:f1:17:b7:25:50:08:73:57:d3:07:4e:90:da:74:39:
a2:78:65:a4:10:42:3a:5e:fc:69:d1:5f:ea:23:35:95:28:97:
74:97:47:ee:6a:2a:b2:8c:bd:91:3f:91:6e:1e:20:fa:e7:e3:
c7:dc:a3:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyptAz+neNvJqpT3+UeIg7sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZmI5NmVhM2FmNTFjNTMyZDdlOGZlOGM5NDM3NmY1MWUx
ZWE0MDIwHhcNMjYwMzAxMTQwMTE1WhcNMjYwMzAyMTQwMTE1WjAzMTEwLwYDVQQD
EyhkYWUxNGQ2ODc2ODY1YjJkNGY5MTA1MDJkMDcxZTNiYWI4NzM3NWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgHV/54mW1NPKdk1mw7PqT+Cjol+t
Cq0feyo8TrR2c4i/sCO3GzTerlr9or8GW8RYERsrUnKzLC6okk9LIvAFEj+dvA9k
sYl2UglriQOvHFthvPR+XOfiQyANwzQuz9J3cFzVQucd8uZob06pr21ppowwUSMb
5D6N99FQnqnDZXVFPpdKzKTCIGrrhLW9OOLc8yTV1MKBL2YwXo77bp1vrp4DKrc3
DuObQOXY6v1bhW7SWWMN/T03CUhSHg+KBqeQVRjErEVxlcIHFXnSg4yITDWZhvms
6FEr1ukPPy9sYyStwglcTKgqZgMyL1Cd9HT6qZOp7m6FfQs8YnQcJSYL8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNrhTWh2hlstT5EFAtBx47q4c3WuMB8GA1UdIwQY
MBaAFNj7luo69RxTLX6P6MlDdvUeHqQCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzIt
OGViODVlMzI4M2UyLzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzItOGViODVlMzI4M2Uy
LzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPIdDTtAo
gS3SPlAOw88F9hqdXz9DpCKZtCOvspX++aWd9xuNjiXBwHPnz4mWdqhnj7755GLL
TlMBAW2ysllNYp6E/5K139dM8iwzEq5F8okrLF0gkJzSI6LXJ/6j2Eva4a6OFP08
0HdsKUde6FEWtpJLFNH/+5YLj1ADqFqEldhrq0U8xG3l0ljeJKeib4aqjt9qZZkN
ucUahBPs07xRv56gd9Uvi4ML+GxElEQYgVs1YjX5n5nf3aIQwTcG+uwB+6e352Z4
P4w08Re3JVAIc1fTB06Q2nQ5onhlpBBCOl78adFf6iM1lSiXdJdH7moqsoy9kT+R
bh4g+ufjx9yj5A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:50:43 2026 by rpki-client