Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: IFVbSu9n6t1wKMMm9Dse0xeEuCpxPAgSXd/I/6wLsoI=
Subject key identifier: 54:4C:E7:D5:95:68:51:B1:A5:08:37:36:7C:3D:AC:58:F8:CA:FF:76
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019CAAC6CD0B0A68E60009551996DF412C39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1775
Signing time: Sun 01 Mar 2026 19:01:21 +0000
Manifest this update: Sun 01 Mar 2026 19:01:21 +0000
Manifest next update: Mon 02 Mar 2026 19:01:21 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: GAC39m9qhJqN6sB+vZRIW/rDQbidSgqEpdrVkhNnb4E=)
2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:cd:0b:0a:68:e6:00:09:55:19:96:df:41:2c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Mar 1 19:01:21 2026 GMT
Not After : Mar 2 19:01:21 2026 GMT
Subject: CN=544ce7d5956851b1a50837367c3dac58f8caff76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:79:3f:80:fe:77:4b:0d:a0:69:bf:13:cf:
06:43:f9:46:7e:3c:e3:df:d5:9f:7e:b3:1f:f2:9c:
f2:5a:13:d4:0a:a2:f7:cb:fe:a1:ca:9d:e9:2a:09:
f3:eb:1b:04:14:4f:c8:f6:b7:d2:18:8c:3a:90:2b:
7b:75:41:ba:d8:3b:81:5e:7b:95:2c:9c:19:c6:05:
a4:e1:60:60:97:dc:04:89:ca:c5:49:40:a7:91:58:
c8:a6:07:67:8f:64:f6:30:91:45:a0:66:73:75:d6:
c9:5d:84:fc:ce:2b:86:1f:9a:7e:f0:6a:2f:a9:14:
2e:75:69:1e:b4:db:e6:1b:bc:75:e4:65:0e:4f:bf:
7a:bd:86:82:25:2a:d1:54:5f:6f:1c:50:14:6b:9e:
a1:35:2f:85:3c:4a:49:14:f1:0e:ca:16:d5:f2:f8:
9e:2b:19:a5:b2:b5:54:f6:1c:cf:3b:b1:be:57:83:
c2:99:71:35:e0:ca:b1:b1:a1:32:0b:ac:f5:7f:d6:
5d:cc:c9:96:af:c8:a2:7b:66:ca:28:a4:ea:d8:4b:
5e:be:ae:f7:25:28:91:97:56:ba:c2:76:d9:e2:1b:
a8:a1:d1:84:9c:22:ac:6a:45:61:c8:78:fb:29:dd:
ec:9f:4a:18:08:ee:f0:a3:cc:03:40:05:08:bb:fa:
9e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4C:E7:D5:95:68:51:B1:A5:08:37:36:7C:3D:AC:58:F8:CA:FF:76
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:4a:45:ef:8b:a8:d3:cb:70:43:75:26:cf:55:be:be:27:81:
a6:cf:70:a6:f2:94:6e:2d:d2:97:7b:e9:72:98:eb:3f:a2:56:
b5:8e:5a:16:9e:f7:f0:b7:dd:04:5d:da:c5:15:4b:8f:99:13:
19:30:ca:e0:de:af:05:24:6b:37:b4:61:cf:8b:f4:8d:ad:2f:
86:d3:ff:a8:19:4e:c5:b0:3d:8a:59:b6:85:15:24:03:28:db:
01:65:1a:10:82:69:d6:b6:c4:d6:1e:ab:d7:c5:e3:ef:e2:11:
c0:dd:b6:4f:64:0c:af:cf:cc:46:6f:f6:b0:57:46:15:ae:39:
74:ec:15:f9:d9:b9:43:8f:c1:80:99:c4:fc:32:43:41:4b:9f:
0a:8b:98:77:37:c0:1a:bb:6f:64:cc:f0:b5:10:34:d0:63:06:
4e:04:94:c1:be:ed:89:b7:2f:7b:b4:48:d2:79:e8:20:47:5a:
f3:db:af:6a:7f:27:89:af:c2:7d:bd:83:a5:1f:b0:b0:e2:e9:
d4:aa:bf:ce:4c:b0:1c:a2:95:2d:11:63:22:4e:4e:6c:85:73:
71:e2:5b:c8:39:ec:f3:45:e2:b2:f1:88:9d:dd:b7:f1:6d:e1:
ba:62:83:b6:ab:9a:5d:9d:06:06:62:4c:9f:40:71:9c:6f:f7:
4f:68:f6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:34:01 2026 by rpki-client