Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
File: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft (raw, json)
Hash identifier: a4HtSyErgJVruD1JHmLJpO9m7Ax3h4hUSxe04tOwdpY=
Subject key identifier: 21:49:C5:00:EC:AA:40:5E:BB:AB:E3:96:30:FD:28:97:B9:01:74:DC
Authority key identifier: DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
Certificate issuer: /CN=da35b27eb523b67f8d691c8062f3370e149302fd
Certificate serial: 019CAAFD7B38BC4289E19AAB37A338434406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
Manifest number: 17A0
Signing time: Sun 01 Mar 2026 20:01:04 +0000
Manifest this update: Sun 01 Mar 2026 20:01:04 +0000
Manifest next update: Mon 02 Mar 2026 20:01:04 +0000
Files and hashes: 1: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl (hash: izH10rpoc3aIA0BxZfbSWZXJ9hbp6+Ve3OqWeDmRb44=)
2: 8n9b1McJwVwYSHNYtuA1BPtMKyQ.roa (hash: znLA/cadcAOzu6Norl0ideQ8XGJcQszWKS7ox01S1jA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:7b:38:bc:42:89:e1:9a:ab:37:a3:38:43:44:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da35b27eb523b67f8d691c8062f3370e149302fd
Validity
Not Before: Mar 1 20:01:04 2026 GMT
Not After : Mar 2 20:01:04 2026 GMT
Subject: CN=2149c500ecaa405ebbabe39630fd2897b90174dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7b:b8:fb:4e:62:60:7d:0a:ea:f3:43:cf:26:
8a:87:65:63:80:4d:df:3a:3a:4a:3f:f0:9d:1b:8a:
cf:3a:58:49:fc:68:54:80:66:31:93:85:ed:40:87:
7c:6f:cb:3d:b3:c8:a8:7f:7c:9d:e3:eb:84:7d:e5:
31:25:7a:7b:b9:fe:b2:42:1a:b2:9b:4f:34:14:8d:
ef:e7:c6:8e:71:9e:a5:94:78:54:1c:69:e3:11:97:
68:22:48:9c:e5:14:26:79:a2:08:f3:88:6a:06:12:
89:6e:54:66:6a:41:b3:6b:98:b3:88:7b:12:0d:df:
ea:87:a3:d2:aa:33:d2:0c:35:d5:d2:36:22:d4:ce:
45:6e:03:9c:0b:5e:d5:dc:5d:3e:db:f5:1c:10:f8:
a6:f0:3f:29:70:f7:93:9a:1c:07:b9:9b:67:a1:be:
6d:16:d6:a2:a1:ce:0f:d6:78:ba:59:8f:af:31:e9:
5c:d9:2e:7a:f7:ff:b7:e4:31:4b:6c:78:13:51:d2:
67:80:1e:56:4d:01:14:19:76:98:b5:9b:b3:0a:1d:
65:d2:46:69:75:f0:c6:25:27:bb:04:77:06:09:e4:
2c:06:0b:68:78:af:7a:c3:eb:00:cd:fc:db:46:34:
b8:82:4c:c3:4c:8f:09:eb:2a:93:c7:3c:a9:b8:7f:
7c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:49:C5:00:EC:AA:40:5E:BB:AB:E3:96:30:FD:28:97:B9:01:74:DC
X509v3 Authority Key Identifier:
keyid:DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c5:1f:b1:fe:a9:b1:a3:8a:93:e4:cd:21:fa:28:1b:08:c0:
ce:d0:45:83:00:e7:98:0c:a5:22:32:7a:c2:ad:3b:67:69:51:
36:5d:54:9d:59:a4:88:e7:49:d1:be:be:ce:97:b0:65:73:dc:
ae:d3:ab:db:d4:af:c8:bf:e5:f4:4a:92:76:dd:1f:9a:06:9d:
3d:85:fa:21:e6:df:d7:8c:71:5d:ea:c5:77:6a:91:58:58:84:
b2:de:6b:91:71:d7:df:c7:14:7d:65:ad:2d:2d:a9:6f:53:b9:
f6:c2:9f:17:16:c0:5e:bb:7f:e2:d2:43:42:06:d8:55:e3:0f:
59:73:78:80:8d:85:73:a6:33:8c:28:66:86:75:20:24:23:33:
65:b5:6d:89:1f:63:54:59:cb:0a:76:2d:fc:4d:ba:c9:f4:a0:
43:25:cf:f0:a2:07:ea:3c:19:34:f4:14:d9:22:b9:92:7c:2b:
bb:3a:4f:2a:a3:5f:27:e2:b6:4c:43:16:31:42:72:f4:97:12:
26:21:48:22:f5:f7:79:50:b7:6e:91:4f:9a:d5:c0:3d:b7:2b:
a0:13:fd:5e:ce:83:92:79:54:41:59:e1:c1:2d:aa:27:ef:c8:
05:e7:43:35:fd:47:1a:df:89:d2:51:86:84:ce:3a:53:ce:f3:
9c:d6:4b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:17:26 2026 by rpki-client