Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json)
Hash identifier: T5gGFkI7ey7aS3IV1GBz5EiVHnpnuUPSIBwdV9Nb20I=
Subject key identifier: 5F:2F:FC:76:54:DE:17:42:24:E2:34:5B:DC:51:BF:3C:25:C9:19:E9
Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Certificate serial: 019CAC46BECC87BA7C307C5C2819F2ECDE9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
Manifest number: 0D85
Signing time: Mon 02 Mar 2026 02:00:43 +0000
Manifest this update: Mon 02 Mar 2026 02:00:43 +0000
Manifest next update: Tue 03 Mar 2026 02:00:43 +0000
Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: 1Lha/Zp+2e1x5YnzOksFQayNII7WvE0mzl1S588Ff9A=)
2: 8mfySGwTbXk-kyUdS_kN8j97UXs.roa (hash: umX00/QtByILeR56I5S6BuyzviCNwqrKZKDQse00Reo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:be:cc:87:ba:7c:30:7c:5c:28:19:f2:ec:de:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Validity
Not Before: Mar 2 02:00:43 2026 GMT
Not After : Mar 3 02:00:43 2026 GMT
Subject: CN=5f2ffc7654de174224e2345bdc51bf3c25c919e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:75:3d:f8:29:34:0f:e8:62:83:8f:16:7b:f5:
c1:42:0f:c0:db:5c:16:67:d0:6a:11:28:0c:c2:bf:
5d:ea:46:65:39:ef:6c:2c:7e:9c:5f:40:6c:0e:e1:
c0:44:ce:8b:c7:05:3f:74:4a:6d:26:ae:87:fc:01:
50:55:89:10:61:91:0e:9b:fa:f5:b8:52:59:37:b3:
63:12:0b:2c:c0:27:4b:02:27:7a:b1:74:8d:4c:ae:
20:03:99:e4:45:0b:e1:b0:85:08:be:91:b8:9f:8a:
46:87:d8:c7:3b:98:dd:fc:43:55:61:a4:81:6e:32:
77:f0:c2:9b:c4:a0:bc:9b:87:0a:79:ad:74:74:31:
ad:d9:07:ba:06:2e:67:58:28:89:17:f9:fa:58:ee:
b5:30:ae:6c:3f:bf:46:84:71:15:dd:7a:eb:ff:8e:
b3:27:86:ca:5a:35:9b:96:84:ba:8f:f5:b9:3c:84:
74:02:34:f9:e2:24:d2:e3:84:1c:a1:df:32:fc:55:
07:bd:36:a7:d7:16:14:bf:8d:0e:cb:51:8b:dc:fe:
30:6d:d7:d9:bb:e6:01:a7:9e:9e:5c:6f:7e:4f:8a:
9b:e4:e8:5d:ec:a5:90:3c:46:c6:8a:c5:d4:17:60:
8c:cf:0f:61:c4:92:39:41:14:b8:df:e0:d9:44:67:
55:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2F:FC:76:54:DE:17:42:24:E2:34:5B:DC:51:BF:3C:25:C9:19:E9
X509v3 Authority Key Identifier:
keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ea:b4:72:41:2a:7a:37:a4:16:49:e2:d7:cd:4f:5b:ca:95:
da:c1:9c:34:d7:68:13:56:10:28:02:fb:eb:42:02:51:24:e8:
82:75:29:7e:41:36:64:be:ea:92:77:6a:71:06:3a:40:d8:58:
2c:07:a4:3f:b1:ec:3e:3e:e6:5a:78:b6:dd:fe:b4:96:58:7f:
b4:63:34:6e:4f:0f:74:56:24:26:16:54:e6:75:8b:08:df:29:
8e:96:82:ae:32:24:b0:8d:22:11:7d:e4:82:6b:b1:c8:79:df:
74:a6:02:8a:b7:69:4a:a2:85:f9:49:f6:2b:a1:9d:0a:1c:78:
bd:aa:fb:9c:f2:cd:3e:e7:58:97:8b:d1:b6:99:49:08:69:81:
b3:46:24:fa:e5:db:12:ca:23:5a:37:09:ac:49:d0:f0:d6:b5:
4f:79:6b:82:41:29:60:b8:f0:f9:e3:78:ef:12:65:3d:f7:45:
7b:bf:6b:88:ff:cf:5f:82:0e:0a:bc:7f:35:43:d6:9c:d1:e2:
ce:7e:ab:fa:fc:4b:0b:7c:bc:4c:09:23:10:39:8f:0a:5f:ce:
ae:82:c1:d4:5c:f7:d5:05:b1:ce:64:cc:40:b9:87:04:d9:10:
99:74:09:e7:e7:8f:20:30:b5:29:eb:80:5b:18:af:bd:27:5a:
f3:6f:b4:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:42:10 2026 by rpki-client