Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: HM72LjHRScFERbyr/4mH7bdR9EoxrNKnzUaVHoAvhEM=
Subject key identifier: 64:CC:BB:B7:48:B8:44:A7:75:D4:DB:4A:C9:51:D1:CB:F9:C8:69:83
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019CABD986741AC09ADE1F7D65D4EB1CCDEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 04F5
Signing time: Mon 02 Mar 2026 00:01:25 +0000
Manifest this update: Mon 02 Mar 2026 00:01:25 +0000
Manifest next update: Tue 03 Mar 2026 00:01:25 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: tNxD+k2z02YwbiUAyAZGCh+yu9bEsSy4LpSJ5TKxr4E=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:86:74:1a:c0:9a:de:1f:7d:65:d4:eb:1c:cd:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Mar 2 00:01:25 2026 GMT
Not After : Mar 3 00:01:25 2026 GMT
Subject: CN=64ccbbb748b844a775d4db4ac951d1cbf9c86983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:52:8f:2b:1b:fa:4d:46:bb:eb:48:83:58:96:
9a:66:61:10:37:d6:04:54:bf:79:40:f9:78:9c:a7:
78:46:56:1f:b9:1e:96:cb:70:a5:c9:23:e4:9f:11:
b2:b3:d2:79:1f:8c:c7:8b:0d:05:b4:08:9b:92:09:
9a:e6:a8:e3:b5:0c:cd:d5:07:38:bc:ec:5b:7e:9d:
78:1e:ec:c7:d4:0c:cb:d1:21:5f:87:f2:de:08:65:
80:b4:ff:ab:85:e3:7f:2c:5d:37:3d:d9:79:e9:24:
d3:23:ae:7e:f9:1b:20:c9:50:5a:ff:a8:f0:c4:a5:
8b:64:7e:5a:f1:b9:46:a6:fd:36:e5:4a:ab:0c:0b:
a9:11:2e:14:43:58:ea:c9:8f:f1:15:b3:4d:3f:26:
36:95:36:93:94:79:40:b0:f3:a7:73:cc:66:4a:53:
21:8d:42:60:46:59:5b:d7:12:ba:d1:8d:f8:4a:7f:
95:e0:5f:a7:79:a0:25:6a:6b:ef:29:12:db:00:01:
d6:bb:79:8a:30:68:12:ee:30:c7:3a:75:19:e9:63:
e7:16:00:e3:56:ef:40:8d:13:9b:2d:60:e1:ff:c5:
d7:35:9b:e6:83:b7:97:26:7a:9e:91:86:e4:6e:03:
0a:82:48:c3:42:15:9e:5a:04:62:2c:0a:fb:f9:41:
a8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CC:BB:B7:48:B8:44:A7:75:D4:DB:4A:C9:51:D1:CB:F9:C8:69:83
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:da:2a:fd:1c:4b:e1:c4:3f:34:c0:7e:a4:f5:ac:86:33:fe:
d0:aa:da:72:aa:74:fe:bc:47:7d:e8:33:0c:df:31:62:da:29:
b9:58:b4:ab:27:8d:5c:9d:5b:fb:98:02:d1:7f:aa:c7:16:04:
c1:3c:49:f6:82:dc:22:53:38:c2:a1:fc:ae:08:06:93:9d:a3:
76:fe:cf:6f:63:31:4b:ad:11:1c:b0:63:7b:f1:6e:41:d7:fa:
9b:8c:71:76:10:5e:79:57:9e:86:7c:f1:c5:6d:5f:01:7c:69:
60:04:84:20:74:eb:21:6b:10:b2:04:a7:c6:4e:58:ce:12:63:
5b:8a:de:2d:f5:fa:1b:b1:d3:77:2a:ea:2d:d0:9e:71:fe:5a:
94:3d:c2:f8:9d:14:e0:ca:9b:66:9e:f0:4c:fa:6f:d3:e3:f8:
1b:46:02:0f:0d:69:84:6b:80:3e:e0:78:aa:6a:d7:8f:33:44:
57:76:8d:c9:ea:b1:b2:12:1b:5d:7b:01:93:89:84:f0:59:6c:
bb:1a:45:45:9f:74:15:2d:2d:78:b2:7b:61:ec:02:3c:e0:32:
4d:39:c3:da:59:23:a7:42:e6:ff:d5:2d:81:e1:ae:92:38:79:
05:6c:66:a9:d7:7d:46:66:38:93:bd:02:6e:55:28:a6:8c:be:
43:9f:26:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:39 2026 by rpki-client