Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: 5TkidGKbOnBYAzkbLqBrVgD9BnGuKbLxzSQ6dehxcgc=
Subject key identifier: 13:D0:35:1F:CA:37:EA:88:2B:95:3D:A7:72:5B:FA:61:DF:4C:A0:74
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019D992B06098899C90EB8A21BE85EBA8064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1824
Signing time: Fri 17 Apr 2026 02:00:26 +0000
Manifest this update: Fri 17 Apr 2026 02:00:26 +0000
Manifest next update: Sat 18 Apr 2026 02:00:26 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: t7AcDFvDP6H1wgpA7Vad7iZRxWA+/F18iJrdH8eJFHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:06:09:88:99:c9:0e:b8:a2:1b:e8:5e:ba:80:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Apr 17 02:00:26 2026 GMT
Not After : Apr 18 02:00:26 2026 GMT
Subject: CN=13d0351fca37ea882b953da7725bfa61df4ca074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9c:06:0c:34:c0:6a:eb:81:f6:e8:32:92:42:
50:74:e0:ad:15:10:05:59:10:0a:10:6d:dd:4b:70:
cf:85:c2:71:6a:16:6c:cc:30:28:35:2a:0b:5d:6b:
55:45:4d:bf:e1:7d:11:ab:01:bd:d0:0a:58:df:d5:
4c:ed:28:38:6a:08:f2:d1:8a:ad:e5:32:9b:4d:f6:
e9:09:9f:fa:2f:85:03:ed:b2:87:d0:8f:31:36:18:
1e:e0:a1:80:4e:0b:6e:ce:d0:b6:bf:56:e6:e5:fd:
15:7b:5a:7a:2a:50:71:0c:4c:5f:c1:3e:17:0e:85:
f3:fe:c1:eb:45:0e:16:ac:e4:d9:6c:cb:5a:25:e1:
d3:9a:05:fd:91:10:f9:1d:d1:63:4a:4d:58:ff:29:
43:f9:78:6c:e4:df:6d:20:5e:1b:b1:af:60:35:a4:
81:47:9f:a8:cc:65:f0:de:38:ec:f2:13:8c:df:1e:
12:17:a9:2a:fa:72:12:de:c3:42:41:c2:c0:23:e2:
b4:70:e8:00:3c:a1:6d:08:81:af:9d:c6:5e:f5:40:
9b:60:ff:7d:51:67:03:07:d6:64:c6:51:85:dc:ce:
6c:b8:61:f2:af:48:f2:f7:54:a2:b5:9d:a0:ad:18:
13:0b:8e:da:87:52:f2:61:7b:68:d1:a6:07:00:5f:
e5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D0:35:1F:CA:37:EA:88:2B:95:3D:A7:72:5B:FA:61:DF:4C:A0:74
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:f0:dc:f2:fa:17:c0:3e:1e:bd:a5:db:bd:06:37:68:db:3f:
45:82:35:87:80:16:6a:53:f3:48:a9:6b:ae:35:29:4e:63:3d:
54:38:a4:17:18:5c:4b:ba:53:c2:d9:41:63:14:c5:97:4d:3f:
a0:5e:7c:c0:42:e1:41:b9:c1:da:c2:ef:39:3c:94:f6:48:60:
6a:4c:bd:1d:55:35:74:a8:ff:d0:e5:d3:f3:59:0a:90:3a:02:
c6:c1:14:c4:7c:3d:f8:39:00:ac:c0:1d:a0:46:10:45:50:1a:
1c:5f:eb:8a:a4:f8:31:e5:27:e0:1d:b6:b9:af:de:be:3e:99:
a0:d2:82:51:34:06:9e:39:e5:10:29:1f:a9:7a:33:32:a5:cc:
e1:13:c2:13:e4:9b:b7:b7:11:c9:65:c5:87:90:4d:77:a4:94:
fc:a2:ea:ab:16:52:38:9e:4e:09:10:b1:dd:dc:8c:b2:0e:42:
9e:a0:56:ad:59:9b:f2:b5:71:72:81:25:e3:8e:95:e1:91:63:
37:2f:2d:df:88:09:bc:5b:96:45:0f:2b:e5:1f:e2:f5:8d:1f:
f2:97:d4:b7:d5:0f:dd:96:bc:8e:41:6b:52:08:7d:a9:45:81:
cb:1e:ae:0f:e4:8c:b4:00:51:fe:44:f6:cd:0e:64:b0:02:07:
a5:a7:9a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:24:15 2026 by rpki-client