Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
File: 2nVBcltyi1qJ87-vIPh2VWPC8_s.mft (raw, json)
Hash identifier: 48ZiudMaVftidyFnUJ4n8Rh6tFu4wJkbGRuuJMrJE/o=
Subject key identifier: 7D:0B:CF:6C:DA:43:F4:67:5A:67:A7:30:76:AF:06:A7:EC:30:FA:98
Authority key identifier: DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB
Certificate issuer: /CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
Certificate serial: 019CAB6C084A2346D6C09C8DDFDF0E8A04CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 22:01:49 +0000
Manifest this update: Sun 01 Mar 2026 22:01:49 +0000
Manifest next update: Mon 02 Mar 2026 22:01:49 +0000
Files and hashes: 1: 2nVBcltyi1qJ87-vIPh2VWPC8_s.crl (hash: tqqI99UGC6wEC5JzNCmJmGmo3oz6zeVVkEY8DynaNxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6c:08:4a:23:46:d6:c0:9c:8d:df:df:0e:8a:04:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
Validity
Not Before: Mar 1 22:01:49 2026 GMT
Not After : Mar 2 22:01:49 2026 GMT
Subject: CN=7d0bcf6cda43f4675a67a73076af06a7ec30fa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:aa:f4:3a:2e:cd:e3:d2:19:f5:f7:32:1d:9b:
d6:d4:3b:7e:0b:9e:7f:3d:9d:e6:b0:f0:d5:ad:43:
23:8c:39:8d:87:2e:4e:ee:48:f4:63:db:e7:5d:29:
41:d1:52:5d:8f:1b:9b:b0:50:ff:94:bf:1e:0a:17:
63:3d:e3:bf:25:95:f2:5d:6d:e7:49:7b:76:32:b1:
43:12:8a:68:1c:39:32:35:72:a6:81:08:83:d7:dc:
e0:72:b3:fc:07:9c:13:83:78:07:cb:69:86:8c:07:
6b:6c:bb:18:45:7a:84:7b:ef:2a:d8:12:43:15:9d:
e6:13:72:05:68:52:f0:9b:e5:58:0e:bb:6f:7b:56:
86:23:ba:5a:9d:41:9d:7f:d1:fd:dd:a6:4d:9f:84:
a0:b1:b6:7a:44:ec:09:fe:bc:20:cf:8d:c0:a8:eb:
2e:8e:de:90:c5:52:f8:8a:51:0d:00:38:8f:d5:46:
a3:a9:04:ed:8d:17:93:6d:b1:97:30:58:a5:de:5c:
a8:3d:a9:ce:0f:83:e6:d4:cd:c8:e4:3f:83:49:38:
6d:9e:5e:3b:ec:03:ac:3d:35:43:12:16:e2:57:12:
44:6d:a8:fe:a7:51:74:4d:da:31:38:a0:9c:63:76:
d3:7c:32:98:1b:c8:6c:04:17:f3:04:d9:bc:aa:b0:
bc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0B:CF:6C:DA:43:F4:67:5A:67:A7:30:76:AF:06:A7:EC:30:FA:98
X509v3 Authority Key Identifier:
keyid:DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:06:23:5f:4e:04:74:00:2e:f2:29:d8:f8:96:b8:f7:d7:b7:
f1:1a:55:2d:4e:54:47:48:10:a8:89:20:60:12:a3:c2:09:4e:
d6:0f:a5:53:83:9d:7f:80:80:b3:ef:2a:41:e9:9c:19:78:7f:
f9:5d:df:61:17:a8:fb:14:2d:50:d5:2b:7e:74:f0:13:96:25:
41:12:de:76:63:f4:a0:f6:5c:b0:3c:27:91:f4:18:27:e9:52:
fb:b9:07:df:26:bb:a8:d5:c8:91:21:51:be:b3:16:f9:26:92:
ea:b5:ff:c1:e7:cb:df:e9:47:26:f3:68:41:dc:37:b3:5e:f5:
d2:59:73:1c:a7:bd:3f:27:d5:ae:d6:e0:59:42:96:8b:46:e8:
c9:7b:d0:df:60:2d:f8:f8:95:d6:8a:cd:cd:1e:d2:4a:8e:78:
50:88:63:c8:64:7f:0b:e1:5f:18:79:c3:22:bb:9a:02:fe:44:
44:f9:4f:4e:21:13:55:82:c5:bb:59:bb:97:b7:7b:ac:c3:c3:
21:d1:d4:b4:ae:af:02:01:ac:95:1e:77:84:8f:fa:f0:9e:9e:
b9:3e:75:53:77:d5:23:42:8b:b6:b8:d9:1a:a7:41:e4:80:87:
84:5c:da:4d:14:e3:81:7c:3a:03:3a:75:4d:8c:e9:b6:c3:ac:
b5:4a:14:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:52:28 2026 by rpki-client