Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: s0kCEYa5JzOQvAyOO/EUKxbcZ7KKiw4KSwgxsfsN9nE=
Subject key identifier: 8C:A5:E1:01:10:99:DB:71:6F:52:15:AA:43:98:6B:D8:E8:BE:56:8B
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019CAA8F90DF02343FB17A7665390F391A78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 1857
Signing time: Sun 01 Mar 2026 18:01:01 +0000
Manifest this update: Sun 01 Mar 2026 18:01:01 +0000
Manifest next update: Mon 02 Mar 2026 18:01:01 +0000
Files and hashes: 1: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (hash: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE=)
2: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: GVCeUtr9GQltFfvyM4bo3rUV0YBiE3LeWj1MpKv63Ds=)
3: 3mS5hMWhKlnGO3h-ssMwusOTMaM.roa (hash: f29QqM6z7OhHISNe7rHupfilJIPnryz8YS8+zsLSDfs=)
4: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (hash: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw=)
5: N3iKduG1KyGp7acBh2WOJ0MD0zU.roa (hash: jQXzbIYq6Zxo8qPqawC1/jXuZoeWXKzx3rtmVr5KlSs=)
6: ZiRnzXkcSpJurhu_MyLUWMF4fjw.roa (hash: wqIirvJk9KhRbYG9hrmkySthdI26YxcHRINCM7935BQ=)
7: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (hash: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:90:df:02:34:3f:b1:7a:76:65:39:0f:39:1a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Mar 1 18:01:01 2026 GMT
Not After : Mar 2 18:01:01 2026 GMT
Subject: CN=8ca5e1011099db716f5215aa43986bd8e8be568b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:33:65:b5:14:71:be:8a:8d:76:19:09:ad:95:
2e:77:ef:b4:d5:cf:28:c2:f2:fb:b7:e0:25:91:78:
74:c6:81:c3:72:de:7a:14:08:fd:4f:b0:2e:82:fa:
b4:80:cd:c0:91:f2:e5:1b:6c:b6:98:1a:c5:75:80:
81:ff:26:06:a5:1d:f0:07:53:d4:e9:46:5d:e9:26:
97:57:71:09:7c:d2:35:d3:c7:53:72:91:e4:e5:6b:
a5:c2:f7:fd:af:b5:8d:bc:a0:73:55:2c:74:2d:bd:
ba:81:16:07:00:6d:68:28:93:32:f1:20:a4:a4:bb:
38:a8:af:3e:90:12:33:f0:c0:e5:19:42:59:55:d5:
5d:4d:fd:b5:86:20:db:dd:a9:b2:84:0f:89:13:85:
b4:26:37:d2:c7:a0:60:77:3c:97:27:6c:8c:e4:ad:
90:1d:9b:b6:1d:9b:4c:17:ec:18:10:e6:47:45:16:
b7:a3:41:9d:20:23:2d:3a:28:cc:65:cb:23:20:c3:
76:49:d3:ad:7e:fb:34:e0:b3:51:57:ec:ee:df:91:
a6:0b:30:05:62:2d:01:b5:d4:1e:83:06:98:fc:f7:
36:88:78:a1:1f:34:d9:de:bb:56:14:d6:e3:11:5f:
11:a8:4b:3f:31:e0:44:66:f5:70:8f:4b:76:66:ca:
26:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A5:E1:01:10:99:DB:71:6F:52:15:AA:43:98:6B:D8:E8:BE:56:8B
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e3:da:dd:ac:26:eb:aa:1e:f9:cf:cc:db:4d:fd:51:74:05:
14:2b:df:16:31:0e:f9:a7:0b:3b:02:7a:67:e6:73:a2:94:29:
8a:2f:a2:05:cb:99:fa:b0:25:38:5e:e8:0f:89:b1:52:7f:26:
70:ac:77:5d:94:35:f4:89:bc:07:32:c3:2d:99:9c:12:a6:30:
2a:ef:51:ce:ce:b5:3b:c6:f4:6a:85:b6:89:da:13:8a:dc:d5:
24:2a:06:9e:86:2e:c2:f7:f1:9a:2f:1c:ec:3f:8e:c3:0f:e4:
e5:c2:37:b4:a5:a3:af:b7:e5:aa:40:ce:eb:29:61:99:aa:ee:
b8:31:96:50:fb:14:e3:a4:4c:e9:db:76:b1:a6:6e:4d:f7:fd:
ad:15:d1:cf:f1:d8:f0:07:64:c0:3d:f2:5c:8f:6f:a0:68:fc:
ba:b7:8d:2e:40:9e:72:f2:93:dc:54:3f:0f:a7:be:aa:d1:a3:
fd:82:31:ec:9d:2a:77:e1:8b:5c:13:b3:81:85:d8:72:e3:20:
b0:64:2b:4c:0e:f5:0b:f7:a7:4b:fc:5d:66:57:51:8d:df:50:
e7:91:7c:54:1c:ba:7f:23:b3:b4:9a:f3:54:55:2a:c9:f1:12:
bf:75:e1:d6:09:c5:9b:e8:30:e7:bb:7f:8d:c3:05:e4:04:5f:
8a:52:c4:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:38 2026 by rpki-client