Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
File: 2gKPaUMDSrdg84rkIJFU4iVciek.mft (raw, json)
Hash identifier: WmIUfmIh3OGsNbz8CNPBeVdB8mXCSEUg68xddVLQpjY=
Subject key identifier: 0F:F0:A9:CC:AE:CC:A8:B2:3E:37:A8:E7:F5:1A:F1:5A:33:47:2D:00
Authority key identifier: DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
Certificate issuer: /CN=da028f6943034ab760f38ae4209154e2255c89e9
Certificate serial: 019CACB4A6C0D448F3F9FE17D8C9F2A2C40B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
Manifest number: 07A7
Signing time: Mon 02 Mar 2026 04:00:46 +0000
Manifest this update: Mon 02 Mar 2026 04:00:46 +0000
Manifest next update: Tue 03 Mar 2026 04:00:46 +0000
Files and hashes: 1: 2gKPaUMDSrdg84rkIJFU4iVciek.crl (hash: hMEvOXSqhd9oUD7GWADMZuF3Bq+sEPbkWKxNz1CU4kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:a6:c0:d4:48:f3:f9:fe:17:d8:c9:f2:a2:c4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da028f6943034ab760f38ae4209154e2255c89e9
Validity
Not Before: Mar 2 04:00:46 2026 GMT
Not After : Mar 3 04:00:46 2026 GMT
Subject: CN=0ff0a9ccaecca8b23e37a8e7f51af15a33472d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:31:53:3b:0f:15:46:68:3e:51:98:14:51:56:
8a:a1:dc:6e:13:e1:a1:b7:26:82:bd:fa:c5:f2:6e:
23:27:75:01:15:46:fa:d9:ba:73:d9:71:bf:5f:d9:
75:9a:42:ab:da:22:d7:1b:64:72:fe:e3:a8:3e:6a:
ef:70:27:7c:b2:5f:4d:11:86:c9:e4:d8:fd:0b:7a:
46:9c:3d:87:2d:e4:45:f9:0a:18:b2:2b:0b:a9:f5:
5d:e3:44:55:d4:7e:36:2f:1c:23:61:b1:5e:75:49:
dd:89:5d:83:2b:87:6c:e0:e0:bf:aa:4c:ef:b0:80:
8e:b2:1d:b8:90:a6:4b:62:9b:33:bd:bd:b0:9d:fd:
06:09:9e:c3:0b:53:ed:6b:1a:d8:71:3f:bb:92:77:
f4:42:df:18:40:52:12:21:92:1b:a1:ba:b3:a5:c7:
fc:db:62:7e:b0:33:cd:25:58:2d:95:a2:20:e1:ce:
24:f8:05:c3:3f:43:7d:4c:7d:26:2b:00:6a:a5:73:
ba:3b:6e:17:9f:b7:c8:81:27:a4:62:62:84:8e:da:
72:0a:4a:a6:aa:f2:1e:3a:66:14:a3:bf:2c:e5:be:
93:4d:e9:87:5e:f6:ad:0f:c5:7b:da:18:60:fe:f8:
85:c5:7e:e2:e4:a9:0b:02:92:f1:59:69:15:f7:8e:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F0:A9:CC:AE:CC:A8:B2:3E:37:A8:E7:F5:1A:F1:5A:33:47:2D:00
X509v3 Authority Key Identifier:
keyid:DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:52:17:70:8c:d2:eb:ab:da:fe:39:4c:51:ba:4e:d9:85:ad:
59:45:89:20:73:da:5f:3a:a4:ee:a7:9c:c2:96:0a:92:64:87:
40:3c:62:f5:6f:6c:ae:d8:e1:78:a0:b2:ed:81:b0:b7:9c:37:
fd:6b:7c:4a:fe:14:fb:03:ba:91:14:3f:f3:97:2b:9b:9a:bd:
84:08:5c:f0:ff:07:f4:63:d0:d3:f6:08:a4:7e:1e:0c:3e:82:
30:b7:82:ed:1b:3b:4d:0e:96:73:c0:f3:77:89:c6:fb:dd:56:
7a:dd:de:f0:24:99:d0:82:5d:5f:a0:32:d9:57:a4:6e:4a:60:
2f:12:a8:1e:ef:9c:d2:41:69:57:d7:84:a6:3b:fb:88:97:96:
88:07:fd:82:81:69:8e:d6:8b:d3:a6:bf:c0:58:fb:aa:c7:1c:
24:3c:48:b4:10:37:1c:e0:0d:48:3d:36:24:1f:b3:da:f7:e8:
4a:8c:f1:c1:a4:5d:9c:78:9c:34:3f:2c:30:a4:e6:52:b8:20:
61:3e:d9:20:1e:77:2c:17:ae:4c:5a:a9:b3:11:1d:49:d1:ff:
cc:ff:ea:c9:e1:4a:db:db:22:58:d9:1f:f8:d4:fb:7e:3e:0a:
b7:7f:60:2f:c9:f9:82:81:9d:65:23:8a:8c:99:ad:7e:2a:45:
87:a9:4d:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystKbA1Ejz+f4X2MnyosQLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDI4ZjY5NDMwMzRhYjc2MGYzOGFlNDIwOTE1NGUyMjU1
Yzg5ZTkwHhcNMjYwMzAyMDQwMDQ2WhcNMjYwMzAzMDQwMDQ2WjAzMTEwLwYDVQQD
EygwZmYwYTljY2FlY2NhOGIyM2UzN2E4ZTdmNTFhZjE1YTMzNDcyZDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7DFTOw8VRmg+UZgUUVaKodxuE+Gh
tyaCvfrF8m4jJ3UBFUb62bpz2XG/X9l1mkKr2iLXG2Ry/uOoPmrvcCd8sl9NEYbJ
5Nj9C3pGnD2HLeRF+QoYsisLqfVd40RV1H42LxwjYbFedUndiV2DK4ds4OC/qkzv
sICOsh24kKZLYpszvb2wnf0GCZ7DC1PtaxrYcT+7knf0Qt8YQFISIZIbobqzpcf8
22J+sDPNJVgtlaIg4c4k+AXDP0N9TH0mKwBqpXO6O24Xn7fIgSekYmKEjtpyCkqm
qvIeOmYUo78s5b6TTemHXvatD8V72hhg/viFxX7i5KkLApLxWWkV946y6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/wqcyuzKiyPjeo5/Ua8VozRy0AMB8GA1UdIwQY
MBaAFNoCj2lDA0q3YPOK5CCRVOIlXInpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lYWZhNjEtN2ZlOS00YjE2LWJjOWIt
ZjZmM2MyNTc5YzYwLzEvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9lYWZhNjEtN2ZlOS00YjE2LWJjOWItZjZmM2MyNTc5YzYw
LzEvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuFIXcIzS
66va/jlMUbpO2YWtWUWJIHPaXzqk7qecwpYKkmSHQDxi9W9srtjheKCy7YGwt5w3
/Wt8Sv4U+wO6kRQ/85crm5q9hAhc8P8H9GPQ0/YIpH4eDD6CMLeC7Rs7TQ6Wc8Dz
d4nG+91Wet3e8CSZ0IJdX6Ay2VekbkpgLxKoHu+c0kFpV9eEpjv7iJeWiAf9goFp
jtaL06a/wFj7qsccJDxItBA3HOANSD02JB+z2vfoSozxwaRdnHicND8sMKTmUrgg
YT7ZIB53LBeuTFqpsxEdSdH/zP/qyeFK29siWNkf+NT7fj4Kt39gL8n5goGdZSOK
jJmtfipFh6lNmg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:41:12 2026 by rpki-client