Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json)
Hash identifier: Jl5YaaAAjBFvvEsh8RQb7aK4S5puNGq72kxTbm706dI=
Subject key identifier: F7:01:D9:BB:7C:69:DC:39:81:2B:61:C0:4F:73:D0:DD:60:9D:F0:0B
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 019CAAFD2B43DABD8C5CDD1162069E1F6995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
Manifest number: 1359
Signing time: Sun 01 Mar 2026 20:00:44 +0000
Manifest this update: Sun 01 Mar 2026 20:00:44 +0000
Manifest next update: Mon 02 Mar 2026 20:00:44 +0000
Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: tFsyH9aqjRFsdyFv2MijdeO9P0wZgfODrA5NLzvVGq4=)
2: 8JzTv1sEWJzgKBh6hP5zrOespe0.roa (hash: nGLxJDi43LNGHyCGN8ILdukMd6pDlSBvmxCeyBz73IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:2b:43:da:bd:8c:5c:dd:11:62:06:9e:1f:69:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Mar 1 20:00:44 2026 GMT
Not After : Mar 2 20:00:44 2026 GMT
Subject: CN=f701d9bb7c69dc39812b61c04f73d0dd609df00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:02:1b:ac:40:ae:3c:38:21:33:97:32:b4:6d:
00:e4:c2:7b:a5:2d:34:a3:45:67:c9:57:6c:76:88:
6c:05:d0:9c:2a:db:5c:f3:78:0c:80:fb:42:3a:70:
14:0d:50:b7:fb:4e:ad:9d:8c:d6:72:dd:7d:53:eb:
31:74:5a:3b:6b:e1:2c:4b:45:40:65:f5:57:89:da:
f9:28:ec:53:19:f5:55:9c:9b:f6:e0:b2:13:94:14:
fa:a4:38:04:8f:d9:27:0d:09:b5:c0:99:2b:02:8c:
87:71:f5:5d:4c:85:b9:b6:c1:0b:2a:e5:54:8a:78:
aa:71:49:a9:0a:5f:bd:eb:c1:3d:bb:2c:2b:2d:8c:
4e:4f:f3:30:9a:b4:64:ea:ac:65:fd:7a:04:03:e5:
25:e9:b1:fe:71:4d:6c:4d:f9:ae:f8:c5:b3:25:4d:
dd:30:f6:f2:49:ab:51:f0:46:0f:02:49:33:0c:e5:
76:08:bd:30:c7:91:f6:72:39:42:2b:a3:71:3a:3f:
10:c6:9c:f7:32:38:30:d3:9d:cd:95:5d:52:a1:77:
6b:6b:97:4f:26:0e:80:bf:47:d0:a0:70:d2:c7:a4:
ea:b7:d9:13:d8:bf:30:fb:b9:62:ae:83:4e:c9:fc:
31:0c:08:c5:e4:b6:de:b9:d0:7a:38:c7:bb:08:cc:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:01:D9:BB:7C:69:DC:39:81:2B:61:C0:4F:73:D0:DD:60:9D:F0:0B
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:48:1c:9b:ee:33:f9:12:9a:4e:98:e0:9b:29:d2:fd:4f:97:
86:77:4e:35:3c:5b:a5:d4:1b:20:f3:6e:e8:c8:0e:d7:cd:33:
e7:ed:bb:ee:3c:b6:c5:38:f0:da:cf:f7:c9:12:83:55:63:83:
8a:ef:75:8e:04:7e:41:33:77:d0:db:e7:5c:79:b9:85:d5:e6:
cd:7d:22:9d:ee:66:95:75:1e:14:4e:99:f6:1e:6f:88:68:0c:
79:65:38:19:68:0d:77:e0:50:e7:99:6c:a8:4c:21:68:88:ac:
69:14:b6:70:c8:bd:c3:af:50:ef:c5:cb:a0:8f:e7:81:a5:fa:
e9:19:78:35:9c:69:3e:16:fe:60:f8:62:89:4b:1c:5c:05:fc:
72:80:05:6d:26:7a:25:95:80:00:cb:1c:c2:3f:e2:60:f3:f9:
dd:19:bb:00:14:89:15:e8:d9:78:c0:0d:34:38:61:8e:96:fb:
5d:84:86:45:db:60:38:8e:03:57:dd:73:24:35:22:79:b9:4d:
3c:69:bf:25:a2:36:c3:24:54:e8:3b:13:e4:c8:a9:ce:05:02:
45:91:fb:c8:bb:24:cb:f8:79:ab:43:e4:35:21:b2:05:ac:48:
fe:a3:af:8b:f0:fb:45:22:c8:1f:72:3c:12:63:f8:78:5b:e8:
b7:62:c9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:11 2026 by rpki-client