Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: MTTR8cDrKbttj2WJA9jASogZsf+zfz96cPijZ++Ey/Q=
Subject key identifier: 58:C2:A8:16:1D:01:57:C9:EC:E0:3E:9A:E4:42:13:3E:80:B5:B9:B0
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019CAC7E39DCE5030DF785FA0A0DA1E92C2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 14AE
Signing time: Mon 02 Mar 2026 03:01:19 +0000
Manifest this update: Mon 02 Mar 2026 03:01:19 +0000
Manifest next update: Tue 03 Mar 2026 03:01:19 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: OFrDtTrKMs6oTAnlBoPupjgpu4SqPGAF1JL78yBvIUU=)
2: Mvg3Mo5WSYjcX-Icj2bidj2_crQ.roa (hash: vVq/Mz8wGpzyBjkk9cQ+W/VRqd2BvaRyhDgc817bfY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:39:dc:e5:03:0d:f7:85:fa:0a:0d:a1:e9:2c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Mar 2 03:01:19 2026 GMT
Not After : Mar 3 03:01:19 2026 GMT
Subject: CN=58c2a8161d0157c9ece03e9ae442133e80b5b9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8a:7a:ce:cc:b7:02:69:e0:48:88:36:66:4d:
bd:18:8d:de:2b:2f:ac:57:49:77:15:2d:63:8e:58:
a6:f1:11:0d:ef:99:48:60:be:e7:45:b4:7a:13:58:
b8:e9:62:f4:cf:20:04:53:b9:d7:ae:2f:f4:b2:8d:
9f:df:22:bf:9f:e9:fe:f3:7a:9d:92:5d:2f:0d:0b:
88:66:45:0e:81:dc:7d:c3:a0:20:24:26:08:da:c5:
42:8e:e3:64:bf:7a:97:d1:65:84:1e:de:4a:77:10:
ad:c6:1e:71:7b:be:3c:2f:92:22:6d:fb:9d:b9:15:
d2:b7:18:f6:35:58:b8:bd:9c:e1:08:55:06:3a:f5:
45:aa:4a:aa:b0:8f:10:b8:35:3d:52:c1:ed:5a:56:
cc:c0:52:a0:f3:2e:b4:3a:da:43:9a:76:0e:d6:ad:
fa:db:29:73:f8:7f:ea:6f:87:f2:a4:22:36:e8:a1:
29:69:a2:da:7a:f9:08:b8:ee:2f:37:c1:05:ae:59:
61:f5:82:fe:b5:11:d8:bd:93:7e:23:f0:66:5d:05:
d9:c4:47:31:cb:0b:2a:f4:06:fc:1a:fc:9a:40:ad:
5b:5a:10:7e:0a:08:af:51:1c:c9:c0:4d:a2:57:7c:
bb:5c:d3:ce:2b:e0:49:5c:bd:33:5a:98:2b:21:e4:
67:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C2:A8:16:1D:01:57:C9:EC:E0:3E:9A:E4:42:13:3E:80:B5:B9:B0
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:fc:05:90:f9:81:d5:fb:3d:1c:f6:28:59:5d:b4:be:fe:50:
54:81:d7:cc:20:d0:f5:7d:c8:57:c0:77:b0:3b:63:83:8e:e9:
2b:a2:43:6b:bf:da:76:90:86:80:9c:ae:96:4c:9f:63:65:a7:
4c:dd:3c:7b:dc:d8:5c:ea:9f:c6:de:5c:03:81:0f:a1:fb:fd:
64:42:4f:b2:97:b6:d4:37:d2:44:2c:01:c3:4c:1d:2d:22:8f:
b2:ce:ef:f2:79:43:72:79:5e:2d:8b:58:3a:9c:3d:39:d3:bd:
64:b1:bd:e4:0a:23:3b:a8:b9:2b:ae:f8:85:bb:4e:7c:8c:c4:
46:f1:a4:6d:7c:ba:c9:06:06:1b:b9:9d:fd:46:0b:66:8a:74:
7b:16:6e:e8:e1:1a:2c:02:ac:8b:f2:b1:46:70:f5:4e:7c:fc:
8d:47:84:9c:ca:9c:d2:64:43:4b:1c:18:c7:da:04:b7:8c:6f:
ae:74:b0:57:8c:74:e0:7d:7a:c4:72:ad:01:cb:be:08:9e:72:
8f:89:30:97:6e:71:0d:e4:74:73:67:7e:dd:74:48:ea:17:90:
a2:37:fc:b7:c1:7b:90:23:1e:3b:29:12:b6:ff:b3:4c:64:14:
c4:d0:a4:6f:91:f4:d3:01:ff:db:58:6b:6f:bb:17:1d:15:f6:
94:12:c4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:36:11 2026 by rpki-client