Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: hAexENXHXnVqu8+3W5oB/UNJsqdx+2AM4uvDAY8Xtw4=
Subject key identifier: CA:36:3B:3D:84:64:10:F5:B8:91:AF:6A:AC:75:C6:4A:31:D6:A0:1D
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019CAD22FC987D5DD5642A7CA03A732B1C1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 06:01:17 +0000
Manifest this update: Mon 02 Mar 2026 06:01:17 +0000
Manifest next update: Tue 03 Mar 2026 06:01:17 +0000
Files and hashes: 1: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: LAkpTy6uFQJz4h5k+Bma1ME4DN/nSdvCOMCQ8pF1fcQ=)
2: 7-BHgIfd8UJXQcrdaeCEGNqT0DU.roa (hash: r7iG2JSHeb88gixTYl7AFD1jnKrQ0a+iH+yjlWvhS9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:fc:98:7d:5d:d5:64:2a:7c:a0:3a:73:2b:1c:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Mar 2 06:01:17 2026 GMT
Not After : Mar 3 06:01:17 2026 GMT
Subject: CN=ca363b3d846410f5b891af6aac75c64a31d6a01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b2:12:84:76:ac:65:69:b0:a2:43:52:bd:ef:
98:f9:c6:cd:83:31:2f:f3:4a:84:2a:9d:c4:59:be:
05:28:5c:e4:b8:e8:82:22:ef:17:f8:9f:8a:73:f7:
dd:a8:66:13:fa:fc:ab:9d:91:be:09:a1:9e:1a:72:
18:71:d6:af:ee:63:bd:34:4c:51:e1:0d:10:ba:89:
d9:8b:98:8c:ef:02:40:70:02:d0:2d:72:03:fb:33:
63:00:49:98:5f:26:54:79:1c:8e:d8:76:1f:c2:fd:
1e:27:68:7e:e1:0b:e9:7f:0d:14:3e:0a:d8:04:dc:
9e:df:ad:54:41:7a:69:57:a0:5e:c3:ea:83:db:70:
5e:96:4b:7d:01:76:10:a5:42:38:48:8e:8e:74:27:
be:87:03:ca:80:f5:7a:4e:2f:f3:cb:13:d0:4d:55:
92:d9:38:05:4e:f0:d0:43:e2:41:40:be:1b:6d:2c:
99:3c:78:f3:0d:6d:0f:4d:b7:77:cc:89:94:4f:28:
ed:61:ea:5f:2e:89:e3:25:9d:fc:7a:6f:9a:6c:cf:
96:44:02:df:96:07:f5:1f:5b:54:85:cd:ed:53:ce:
8b:1d:00:cb:76:79:42:e0:b8:c4:b6:ca:41:fd:2c:
a4:4d:15:aa:8b:cb:f3:38:59:48:b5:7e:76:13:97:
04:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:36:3B:3D:84:64:10:F5:B8:91:AF:6A:AC:75:C6:4A:31:D6:A0:1D
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:80:b0:c5:85:d4:91:06:27:15:24:65:b1:bf:55:52:1d:cb:
3c:c7:fb:81:de:86:2b:ce:0a:5c:2a:c7:10:fb:31:eb:b0:c2:
da:1d:30:7e:9f:08:3e:87:94:d1:a4:51:ed:21:37:ad:97:94:
b9:95:d7:19:0e:cb:5b:36:ea:c2:c7:9c:5b:74:03:b0:91:91:
8f:79:1d:13:b3:30:62:9a:60:bc:b5:59:29:8d:d9:92:40:1e:
35:9a:4e:f8:ac:9c:c1:bb:03:e7:0f:61:76:e3:b0:84:75:44:
7f:35:ae:2c:dd:73:9b:79:c0:7c:38:76:7f:67:98:0c:21:f0:
4e:5b:53:8a:04:f4:ce:fe:5b:31:38:9f:2f:7e:6b:03:1a:64:
53:7a:6d:e1:fb:c1:a8:e4:cb:79:68:a2:d3:06:01:f8:1f:a1:
63:03:5e:9e:56:5a:db:c2:c2:2d:0d:08:fa:28:ae:86:71:93:
8c:a9:06:08:1e:3f:fd:2c:03:8c:a4:04:78:16:5a:73:1f:8f:
9a:4d:db:53:0a:83:9a:fc:ee:9d:4f:39:fc:a6:47:c9:a9:39:
1f:15:ac:46:05:22:55:1c:4e:ba:99:db:dc:12:a3:01:45:ec:
0c:ef:28:d2:21:1a:ec:35:2d:2b:fa:0c:d8:97:28:58:2e:67:
b6:0e:da:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:43 2026 by rpki-client