Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: 0AJCgGiVT2o6wuh24uDegfzWNT/gnHBhri/ZlCNnIwk=
Subject key identifier: 3E:0E:39:BD:0E:26:9C:05:6C:A6:2F:85:17:17:79:8F:A1:AA:05:F4
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 019CAA58604A4A2218706B91077385D7EEFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 1609
Signing time: Sun 01 Mar 2026 17:00:44 +0000
Manifest this update: Sun 01 Mar 2026 17:00:44 +0000
Manifest next update: Mon 02 Mar 2026 17:00:44 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: LLTMntHz7RlURd82YOTu68CdqTit+bRd/08wvcnt57U=)
2: hJR5NdWu4-Lv4WFC0Lu_BxFdjI8.roa (hash: N6VCG9vXtUWHshJ3njO134sBkm0kEo7esti0M/kqZCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:60:4a:4a:22:18:70:6b:91:07:73:85:d7:ee:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Mar 1 17:00:44 2026 GMT
Not After : Mar 2 17:00:44 2026 GMT
Subject: CN=3e0e39bd0e269c056ca62f851717798fa1aa05f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ba:3c:92:70:6e:aa:13:b8:81:43:da:4d:7a:
e5:44:03:34:34:25:66:06:7c:82:1b:33:ab:a9:cb:
bc:2d:40:da:dd:2d:95:a1:24:67:ae:bb:d6:63:86:
03:c1:59:46:87:28:7c:57:bb:a5:fc:d7:02:3f:38:
db:95:6f:a1:a4:8d:81:4f:f2:e1:1c:c5:56:0b:42:
e4:25:f7:77:96:2d:75:94:ce:14:5b:30:8b:f5:e2:
6d:85:83:86:73:6b:6b:91:15:65:37:d5:b0:a3:16:
36:d6:0f:3b:8b:a4:58:15:fb:6e:8d:c0:7f:b0:7e:
c2:ac:b6:10:4f:67:90:b5:e4:bb:4d:47:bd:3f:32:
14:f7:3a:3a:b3:e1:6e:84:1c:cc:1a:56:5b:04:11:
15:b1:fd:1b:02:6d:48:e6:68:ec:9e:7a:da:36:e6:
9a:16:c1:11:42:3e:de:ff:53:e7:22:06:03:ff:5c:
f3:fc:20:a2:2a:cb:f9:b4:5c:f0:41:69:b8:fc:ff:
79:71:2a:a7:7b:f8:25:a7:ee:ef:1c:12:37:8e:ee:
9c:eb:c6:8d:3b:e9:94:34:93:47:79:c0:d8:73:42:
69:ed:4b:f7:79:36:dc:8d:d6:67:fa:4a:a5:44:94:
9d:8f:54:b6:e1:c2:7a:03:9d:6d:4c:d9:0f:2e:1e:
4f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:0E:39:BD:0E:26:9C:05:6C:A6:2F:85:17:17:79:8F:A1:AA:05:F4
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:8c:4c:e8:76:5e:40:e7:1c:8e:9c:59:79:4d:fa:3a:78:cd:
cc:1c:ed:cd:00:e8:41:c0:58:93:7a:ac:9f:e1:37:24:9b:97:
88:ce:ac:e5:b2:e1:f3:75:0d:cf:50:92:b5:ba:86:ae:b4:76:
73:4d:66:fc:0b:b5:74:32:79:8f:d5:c1:1c:75:99:27:82:65:
5b:b0:a0:77:04:a0:42:0b:88:5a:ee:3c:11:8f:d1:e9:bd:93:
b2:3b:6c:9e:66:f2:44:e7:e7:f2:05:35:59:8b:c1:20:7a:96:
84:75:76:6e:27:94:3e:9f:fb:a2:14:1f:fa:d0:78:17:f1:de:
9d:56:e8:5f:11:a1:c5:98:f5:c4:96:c6:09:cd:cd:cb:ce:c7:
3d:92:a0:9e:85:25:47:0b:81:04:a0:ed:35:78:c1:d9:db:b7:
ba:4a:91:58:57:57:9a:7e:5f:e6:eb:b7:13:be:dc:22:0f:b4:
96:4f:fe:55:73:4d:4f:4b:21:b1:aa:4e:71:bd:ff:d5:12:19:
85:64:e1:a4:c1:78:4e:d2:ec:2f:c1:5c:b6:c1:10:42:d0:7e:
8d:d6:56:a3:4f:a9:18:93:50:38:6a:1b:b7:f4:00:c1:ad:24:
f8:e6:8d:12:e5:f0:1f:ac:c2:71:a8:48:e6:89:d5:e2:03:f8:
e5:b7:9f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:15:11 2026 by rpki-client