Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: Zy9/QNnHu+ymoT9UBOUj5o4nRzH1LGW+L3WpsUC1RkE=
Subject key identifier: F6:66:73:4E:ED:DE:FF:EA:40:73:18:4F:0D:62:5E:1E:47:B7:72:B8
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019D9818BAEA0815FA5E4C87130AAAD79E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 1528
Signing time: Thu 16 Apr 2026 21:00:50 +0000
Manifest this update: Thu 16 Apr 2026 21:00:50 +0000
Manifest next update: Fri 17 Apr 2026 21:00:50 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: ynIgDgYEHaTIvuwsEe5EGP1xIrtP9KHxdwF6qG8diZU=)
2: Mvg3Mo5WSYjcX-Icj2bidj2_crQ.roa (hash: vVq/Mz8wGpzyBjkk9cQ+W/VRqd2BvaRyhDgc817bfY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:ba:ea:08:15:fa:5e:4c:87:13:0a:aa:d7:9e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Apr 16 21:00:50 2026 GMT
Not After : Apr 17 21:00:50 2026 GMT
Subject: CN=f666734eeddeffea4073184f0d625e1e47b772b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:b6:b9:b8:c7:7a:84:47:47:66:e0:27:37:
2c:3c:05:3a:a0:57:ae:7a:73:75:e6:30:8e:67:41:
17:bd:b6:3f:f9:1e:fb:45:05:15:0d:2b:c1:c2:9a:
77:d5:c2:d3:b2:a4:02:d8:a8:8b:7e:43:f9:23:51:
09:b1:5b:87:f4:ff:8d:32:6e:a7:a1:19:3a:c8:da:
df:20:b9:9f:58:77:64:2e:1c:6a:ac:da:a1:67:2c:
0d:eb:f1:0f:e2:19:13:e9:a5:f2:c2:53:3f:bb:14:
42:46:ab:b8:ea:1b:f8:53:e6:9d:40:63:a8:55:19:
86:c9:56:c9:d7:b2:c8:5f:37:a5:34:66:6b:0d:51:
80:01:47:55:d9:5a:ba:21:37:dd:fa:f1:2d:66:5a:
5e:75:b9:c7:5b:3c:67:84:2f:3d:1e:ca:9f:13:aa:
ed:e6:09:a3:d0:b2:e4:8c:85:67:2a:b8:61:4d:49:
78:b2:44:7c:2c:50:cb:e3:08:14:4a:f0:6d:8a:5a:
f7:3e:74:5d:c8:a4:a5:58:37:0d:61:a7:92:81:5a:
fc:a9:5e:21:ed:c5:34:54:77:6e:1a:6c:e1:46:13:
68:ba:f6:d6:17:82:af:b4:83:a4:68:91:00:7e:b8:
d9:5d:81:f5:a2:15:69:ce:1d:91:e3:ef:bc:82:02:
80:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:66:73:4E:ED:DE:FF:EA:40:73:18:4F:0D:62:5E:1E:47:B7:72:B8
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f1:06:fc:d0:a6:35:2e:42:62:da:f7:25:3e:62:35:99:de:
a3:ca:64:1f:38:18:47:63:6c:2e:16:8e:cf:7a:b7:ce:5b:c7:
51:55:17:ff:97:41:dd:f9:eb:ea:7c:67:f3:5b:63:12:16:20:
8d:12:6f:08:96:5d:38:1c:84:0b:ad:dd:11:a0:22:c2:91:6e:
db:d7:89:04:93:b6:67:83:2e:48:03:eb:85:1c:63:fe:4b:0c:
b9:54:12:9d:d4:3c:e8:fb:47:6c:0c:6d:97:0a:9f:a2:e8:a1:
37:36:8a:a2:0e:cb:7c:52:f8:93:26:fc:1e:f2:e4:45:6f:4e:
a6:03:48:60:97:6d:68:fe:43:d3:7b:a6:d3:26:56:e3:8e:86:
62:ae:fb:17:9a:d8:af:07:17:50:b9:2f:08:ef:18:ae:63:38:
da:38:f1:9b:d8:9f:46:a6:1e:e9:0f:9d:10:b5:56:9e:3a:3e:
5b:37:9d:e7:43:ae:ee:48:21:d8:a7:47:cd:b5:98:8c:8a:45:
6f:b5:05:93:e3:28:fb:b3:c8:4b:bf:58:82:42:3c:7b:a2:72:
69:83:2a:49:6d:91:72:66:84:45:a8:47:ee:de:d4:d2:be:a9:
88:7a:64:a5:1d:a1:b4:b4:cb:85:7d:f7:b8:27:26:c5:dc:3b:
a5:5a:48:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:35:56 2026 by rpki-client