Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: LeLo7UfJJgnfIDj/0zGUo27rR1VpqoFDP8MtW9JEZzw=
Subject key identifier: 98:1A:7D:60:6E:9B:8F:45:DA:D4:D2:AC:1B:8B:0C:0F:78:B8:87:99
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019D98F52AA550BEE9BC6D4DD8C32BF4E003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:01:37 +0000
Manifest this update: Fri 17 Apr 2026 01:01:37 +0000
Manifest next update: Sat 18 Apr 2026 01:01:37 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: JlEPpV0JuHPc73dnJOGAYdUKkE/yXHeWZyPHTNQIGLI=)
2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:2a:a5:50:be:e9:bc:6d:4d:d8:c3:2b:f4:e0:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Apr 17 01:01:37 2026 GMT
Not After : Apr 18 01:01:37 2026 GMT
Subject: CN=981a7d606e9b8f45dad4d2ac1b8b0c0f78b88799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:a9:48:66:19:e9:f8:fc:a8:54:e6:8c:83:
c2:42:29:bc:57:55:6d:d4:f5:52:0f:13:2c:f7:67:
fc:03:93:fe:36:8a:ef:9a:39:da:15:25:88:60:25:
39:39:3a:82:36:ee:aa:71:dc:2d:3a:8e:ad:79:81:
08:a4:70:98:40:3c:15:96:f8:e7:45:90:44:f0:d7:
4d:34:9f:00:9b:b4:52:b6:97:d9:ba:60:10:f5:dc:
5c:98:df:34:e0:26:7d:24:cb:89:07:d2:c1:96:6e:
de:ca:f5:51:77:46:d8:af:e9:60:71:18:db:a4:b0:
2b:27:9e:fd:33:7d:61:99:44:77:bd:c2:e0:af:db:
e5:38:2a:c4:34:15:c1:42:5e:11:99:6c:36:e4:dd:
a1:12:d8:18:08:79:24:f0:40:de:9a:3e:55:48:64:
10:50:ab:95:2b:15:c4:bf:76:e5:dd:ea:f5:4f:48:
3a:d6:75:55:05:ce:8b:7c:4c:d2:44:6d:0d:20:60:
40:02:11:6d:7e:e8:a8:1b:42:12:25:91:4a:a5:6f:
97:5d:0e:90:ad:66:97:0a:91:fa:19:5a:db:af:ac:
da:bc:9e:f9:87:a8:c1:04:19:63:d8:67:e6:b9:12:
ef:8f:fd:61:57:4b:79:1b:d2:64:30:f1:91:41:47:
00:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1A:7D:60:6E:9B:8F:45:DA:D4:D2:AC:1B:8B:0C:0F:78:B8:87:99
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:4c:94:66:72:c9:98:e3:ed:c8:58:c5:75:c2:a0:92:06:9a:
3e:b2:a2:9b:d2:ee:c0:07:a1:ce:2c:d7:53:51:d9:1e:18:72:
00:a9:55:65:74:d1:55:3a:75:24:03:ff:52:07:c9:71:66:5d:
12:45:7c:59:3b:6c:0a:e0:eb:d0:01:9a:2b:3c:7a:70:06:55:
cb:92:f2:d0:23:57:bf:36:59:87:0e:41:a2:e0:2f:88:3d:7b:
06:b9:c2:1b:0f:e2:de:b9:67:63:bc:ad:a4:08:45:47:28:28:
1e:1c:f9:7a:bf:61:11:4b:70:d5:e6:40:ff:00:93:fe:ee:73:
ec:fb:5c:c8:e9:b8:3e:4b:45:86:95:12:23:6e:67:a5:12:be:
fb:d6:a6:ca:dd:8f:86:96:54:7e:3e:a5:b2:5c:6a:3c:6e:47:
10:46:60:3e:b6:79:47:d4:c2:74:23:f4:c9:7a:82:d5:2c:9d:
55:ee:f2:82:6b:20:0b:25:fd:e1:8d:11:6d:a0:7a:04:8e:f1:
a6:0b:a7:ae:e8:5c:4a:6c:95:13:7f:bf:a3:dc:22:b0:00:bf:
37:2c:2c:14:2b:1c:b3:14:ee:ac:bd:0e:e3:94:c2:f9:0f:dd:
5c:fb:74:c0:59:71:c2:fd:ba:aa:3a:cc:c6:ec:ac:4a:4f:c7:
c2:dc:9d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:03:55 2026 by rpki-client