Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: AVN/0/Yo96TD7x0Hlu/SgbdeBBAiilJsxQVA7GC6n+o=
Subject key identifier: 26:58:25:63:37:D7:BF:2F:95:99:59:6D:25:18:9F:00:EA:E5:D2:A6
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019CAA592D35A73E09190F84AF53296D961F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 09EE
Signing time: Sun 01 Mar 2026 17:01:36 +0000
Manifest this update: Sun 01 Mar 2026 17:01:36 +0000
Manifest next update: Mon 02 Mar 2026 17:01:36 +0000
Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: iVYdnSJUDlCdHR09fhX3gtXxV33BTT4gvJpLz/g53Ks=)
2: xvjr_8JqIZkbED7GUsRWo_s5EPY.roa (hash: FiH4mjXZzCr8o0pEvyEmejvpAQkDbsQib4uDB3k7p1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:2d:35:a7:3e:09:19:0f:84:af:53:29:6d:96:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Mar 1 17:01:36 2026 GMT
Not After : Mar 2 17:01:36 2026 GMT
Subject: CN=2658256337d7bf2f9599596d25189f00eae5d2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:81:28:f2:df:9b:b5:49:42:64:34:ce:74:
fb:96:9f:af:4f:8c:55:d8:59:07:0a:7f:ef:72:5c:
0d:c1:84:96:88:dc:e4:dd:14:8f:9b:3f:3a:a4:12:
a0:1e:eb:6d:0b:3a:4d:22:93:ed:ed:80:d3:71:d2:
46:b0:38:cf:40:4f:10:84:c2:f2:0d:ec:76:9f:37:
b8:f9:9a:59:2d:1e:40:a1:eb:24:24:90:9f:a8:38:
f2:45:d8:e0:41:0a:bf:ba:46:e3:e2:82:e9:61:e4:
9f:fa:06:4e:99:1b:02:cd:f9:ff:c5:20:d2:0b:9b:
65:3a:db:8e:ec:29:23:b6:49:60:43:8e:52:e9:ee:
c7:22:3d:af:67:8e:c5:9e:be:9e:b3:2a:f7:3d:c9:
d8:e8:7a:ff:69:4c:33:e9:d4:96:b6:12:82:4c:d7:
dd:7c:e3:83:86:03:4b:aa:c3:16:fe:57:26:1e:6f:
d6:3c:b0:b7:39:aa:25:73:7a:8d:80:5b:dc:21:2c:
26:f0:bf:49:6f:7c:6c:c3:75:96:0f:2e:cb:c0:f2:
ec:2a:9b:70:f3:78:0b:a6:26:81:e2:68:e6:1c:3d:
1a:e8:61:df:63:e0:e9:c7:10:5a:c4:31:6b:75:7e:
80:ba:35:e9:ef:34:a6:1b:55:48:b8:57:e3:32:01:
66:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:58:25:63:37:D7:BF:2F:95:99:59:6D:25:18:9F:00:EA:E5:D2:A6
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:3f:ad:fe:aa:87:6b:e9:90:6e:51:a4:a7:2d:19:ea:07:e4:
61:26:72:8c:6f:9a:2c:8a:ac:b7:4d:83:5f:13:19:4c:8d:0b:
4c:0e:8c:a3:85:31:86:7f:d0:8e:dd:50:85:72:61:71:aa:c6:
75:18:ec:f7:b6:23:cb:20:ef:4f:a6:15:82:09:81:98:0b:c5:
48:55:9f:7a:9d:6c:a0:ee:d6:2b:aa:7e:42:c0:ad:31:c1:7f:
f7:88:8b:79:a0:4d:bb:07:72:a3:b2:75:d1:97:80:0f:d1:4d:
42:e3:80:72:97:38:f5:c3:00:9c:63:ba:eb:49:fe:0c:44:e8:
91:94:07:7e:85:ee:e6:d8:e8:d4:43:b6:84:5c:9d:88:bb:f5:
88:72:08:90:49:31:81:ea:28:1f:30:93:8a:92:64:1a:55:55:
03:a2:dc:cc:82:de:12:4f:52:0e:15:06:8c:62:85:5b:37:cf:
bf:05:3f:1b:33:e8:61:91:a8:ba:07:a5:28:ac:52:3b:6c:db:
2a:28:47:54:25:cb:a9:98:07:90:33:d7:fc:ac:28:6c:71:d8:
48:0c:bc:6c:1a:49:60:8f:33:63:11:f3:9a:6a:36:1d:1b:37:
03:0a:ab:17:ca:ea:6e:f5:3b:f4:63:9f:1e:d4:f4:73:b5:1c:
7b:87:08:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:39 2026 by rpki-client