Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: s8x8tZyCAEYlOxePfkc8hPgS7CJUDJhek0pLyjerK7U=
Subject key identifier: F3:99:C7:96:F4:B3:CF:B1:C4:07:33:E0:AF:71:59:6C:BC:66:BC:91
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019D9A076EF5CA49A032A7B21700FF2D4DEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 18D3
Signing time: Fri 17 Apr 2026 06:01:11 +0000
Manifest this update: Fri 17 Apr 2026 06:01:11 +0000
Manifest next update: Sat 18 Apr 2026 06:01:11 +0000
Files and hashes: 1: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (hash: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE=)
2: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: X4i4jo6bDUNxks0MVpalc7n2ws/K3s4AiB93xTORwMo=)
3: 3mS5hMWhKlnGO3h-ssMwusOTMaM.roa (hash: f29QqM6z7OhHISNe7rHupfilJIPnryz8YS8+zsLSDfs=)
4: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (hash: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw=)
5: N3iKduG1KyGp7acBh2WOJ0MD0zU.roa (hash: jQXzbIYq6Zxo8qPqawC1/jXuZoeWXKzx3rtmVr5KlSs=)
6: ZiRnzXkcSpJurhu_MyLUWMF4fjw.roa (hash: wqIirvJk9KhRbYG9hrmkySthdI26YxcHRINCM7935BQ=)
7: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (hash: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:6e:f5:ca:49:a0:32:a7:b2:17:00:ff:2d:4d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Apr 17 06:01:11 2026 GMT
Not After : Apr 18 06:01:11 2026 GMT
Subject: CN=f399c796f4b3cfb1c40733e0af71596cbc66bc91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:69:50:81:bd:c6:15:77:67:bc:19:50:d5:
f8:53:6f:a4:b8:36:aa:01:6d:87:b7:f9:69:55:ee:
f1:94:00:c9:c6:d1:06:18:c0:2b:2e:ca:c0:08:4c:
43:5b:6b:51:c7:32:04:2a:f6:7d:75:6d:5e:d4:0c:
7e:53:38:4c:ad:94:6a:3c:86:fd:8a:05:16:c9:33:
35:1a:80:32:21:b7:d5:b4:89:98:dd:75:69:3e:06:
e2:2b:bb:70:80:c8:23:ee:15:f6:45:b2:ce:09:c9:
65:41:45:e4:14:84:65:cf:37:04:9a:b7:be:83:06:
31:46:06:41:b7:8c:6b:c2:41:6b:5e:9f:91:24:27:
9f:bc:e4:51:19:eb:68:72:b1:52:a1:5f:ed:9d:74:
c4:17:f3:c2:44:61:8a:a4:97:da:92:95:7f:3b:72:
92:f1:75:e1:23:a7:78:8d:3b:ff:b0:c0:09:9f:8d:
cd:23:c5:de:18:98:43:c4:d8:1f:4f:90:b1:54:dc:
b1:7d:12:78:24:8d:6a:23:46:c3:69:17:67:fd:73:
c8:c7:0d:7f:19:a3:1f:e2:85:2e:8a:3b:58:b7:17:
81:78:76:47:82:b6:0d:a0:fc:1a:f5:69:f3:9c:c9:
00:a6:5d:fe:05:61:0e:d2:d5:04:9e:ae:7f:dd:db:
ac:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:99:C7:96:F4:B3:CF:B1:C4:07:33:E0:AF:71:59:6C:BC:66:BC:91
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:40:c0:60:b0:76:8b:59:82:95:fa:af:84:48:c7:f8:43:c9:
91:67:65:29:6d:16:0c:b8:67:4c:9a:52:b3:49:82:1b:f8:9d:
77:d5:13:93:28:fa:c1:69:53:15:0c:76:ae:c7:34:c2:62:bc:
6b:eb:0d:74:3e:19:fa:9f:73:72:6e:3a:4a:ae:e8:23:82:18:
0f:b3:0f:57:7e:9e:09:c9:0b:39:c0:78:58:ed:ca:b9:46:22:
ba:81:62:5a:02:b6:0b:85:94:ea:ac:03:37:f4:cc:0f:12:68:
6c:d3:c9:88:5d:64:4c:08:3e:da:39:c3:3c:93:a3:13:87:df:
71:36:f5:b7:d7:75:6a:f4:82:94:1f:be:fd:95:a1:e3:f2:5c:
a3:4a:96:3b:85:35:77:57:bf:72:28:9b:14:37:f3:3a:51:19:
30:fb:ee:f6:c5:a7:42:5a:86:63:aa:04:9c:dd:e3:4c:43:d9:
a9:8e:6a:a5:b9:9e:e4:13:91:fc:4a:b0:65:50:40:70:ce:03:
5c:e3:5e:1f:d1:65:03:5f:31:cc:75:99:fc:e8:75:bd:ac:68:
0e:40:62:04:76:0e:34:ab:ff:49:f8:3f:16:52:d6:8b:8d:7e:
59:4c:59:1a:2c:0a:a7:fe:57:bb:b0:dc:8b:d1:58:f8:f5:9a:
a5:4f:c8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:06:59 2026 by rpki-client