Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
File: 2TwNCKbGLnc4LoBBfocgmABMpOw.mft (raw, json)
Hash identifier: P7VDne8Zjm/IA4FLojFLBiW/V3hGNaU2bYh9rvoePk0=
Subject key identifier: 0B:5E:51:FB:C5:00:37:2D:9E:3D:E1:A0:BA:B4:6E:20:2D:BE:3E:18
Authority key identifier: D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
Certificate issuer: /CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Certificate serial: 019DA4C160160A62D9F7BD3F750195408C83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
Manifest number: B1
Signing time: Sun 19 Apr 2026 08:00:29 +0000
Manifest this update: Sun 19 Apr 2026 08:00:29 +0000
Manifest next update: Mon 20 Apr 2026 08:00:29 +0000
Files and hashes: 1: 2TwNCKbGLnc4LoBBfocgmABMpOw.crl (hash: NwSWcoO1e3LG86NNraF5NW0dHzGYYF7vH69YRgo//KY=)
2: p1uSbL-UUVgMZUo_Jd2UtMfEjhg.roa (hash: 7ew9SV6essXaEgFcCj2o+LahCeQ3dZ5MSY5zyuMRzxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 08:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:c1:60:16:0a:62:d9:f7:bd:3f:75:01:95:40:8c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Validity
Not Before: Apr 19 08:00:29 2026 GMT
Not After : Apr 20 08:00:29 2026 GMT
Subject: CN=0b5e51fbc500372d9e3de1a0bab46e202dbe3e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c9:b2:44:9c:a4:c8:50:95:d3:43:76:c8:82:
a4:bc:ca:15:ce:59:86:b0:e8:1e:98:6d:a3:f1:54:
be:7a:dc:d2:55:2f:5c:28:54:67:89:bb:b4:cc:26:
c3:05:44:73:d3:c7:55:a8:11:fe:e1:d1:a6:e1:67:
89:74:64:c9:71:10:d2:dd:b0:59:66:33:05:63:83:
70:1d:09:ba:28:95:fd:33:72:93:7d:78:7a:3d:5a:
87:85:42:fe:0b:ae:d4:3c:1d:27:ed:26:3b:56:9e:
06:54:87:1f:f0:2d:81:cf:ca:ef:13:cc:23:86:c2:
74:24:77:4c:cc:57:ac:6a:6f:65:28:57:ac:2d:ef:
31:b7:72:01:01:bb:3c:99:8a:97:2a:0f:64:a4:b5:
f3:4f:d8:0a:4a:b1:2f:32:10:4e:70:28:cb:24:b5:
94:95:33:81:fa:cc:0b:6d:c0:9e:51:7b:80:75:eb:
3e:25:88:63:58:4d:e4:9c:e3:76:bc:e1:14:51:dc:
d5:54:05:88:57:0f:b4:42:a2:7e:da:c4:ac:6e:35:
92:f0:eb:b3:78:37:61:98:39:e0:14:2b:d1:29:0f:
88:16:32:e5:eb:a6:71:56:78:c3:43:b4:99:11:c7:
31:ca:96:8d:56:f4:ee:92:73:11:13:5b:2f:68:e8:
2e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:5E:51:FB:C5:00:37:2D:9E:3D:E1:A0:BA:B4:6E:20:2D:BE:3E:18
X509v3 Authority Key Identifier:
keyid:D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:88:f2:21:b3:63:85:82:9c:a7:0e:35:7c:a1:a0:6e:3f:18:
73:e8:37:85:0b:fa:26:5e:2d:f7:b7:e0:c2:ef:e3:dc:51:ba:
e4:6d:91:fb:35:9a:65:19:4f:42:1b:6a:e3:3b:ee:f1:95:3d:
52:60:d9:5d:30:56:0a:0c:4e:1e:68:41:db:99:f7:7d:74:0e:
fc:15:2c:f8:6f:8c:1d:0d:6a:43:3b:c7:58:5c:e0:a0:3c:28:
b9:e0:4c:6d:b1:85:2c:ad:55:d1:ea:b0:03:4a:32:77:00:97:
5e:b4:47:60:b6:22:83:24:9c:4c:e4:87:ea:0b:a4:5a:c5:c3:
f9:d1:30:36:83:3a:52:e5:01:b7:59:b1:38:6e:4a:2b:87:8c:
9b:36:57:e4:8d:62:3d:51:8e:dd:1a:46:b5:c2:0e:a1:1c:30:
45:36:5d:ec:dd:cd:27:0e:18:f5:c2:eb:69:56:25:8e:bc:21:
12:1d:b7:c8:03:ce:e5:40:7e:df:16:2d:a7:1c:f7:b6:0d:5c:
d3:bb:cd:75:a1:76:b4:b2:56:cd:1b:bb:75:5a:7d:f5:12:3a:
df:29:38:fb:ab:c5:58:dd:d1:2e:eb:04:93:70:df:61:1a:74:
c0:fb:2e:26:a3:02:4d:f3:f3:d3:e0:d9:c6:8e:13:c1:7c:b1:
35:f3:8f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 16:29:02 2026 by rpki-client