Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: 5BQWiGq/PZn9nsoNdeY4uKxM45yey3eIhk/wy1Fl3Jk=
Subject key identifier: 39:B2:7D:A6:38:8E:B4:98:66:AE:FC:24:9A:05:C8:AB:E7:92:25:04
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019CABA2374E85B7EF21915397B15D377506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1157
Signing time: Sun 01 Mar 2026 23:01:00 +0000
Manifest this update: Sun 01 Mar 2026 23:01:00 +0000
Manifest next update: Mon 02 Mar 2026 23:01:00 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: mIO1Y502skW6dx+4xdkEC05mb81NKpb+BIS2CG+N5ZA=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:37:4e:85:b7:ef:21:91:53:97:b1:5d:37:75:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Mar 1 23:01:00 2026 GMT
Not After : Mar 2 23:01:00 2026 GMT
Subject: CN=39b27da6388eb49866aefc249a05c8abe7922504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4e:db:0d:95:1c:7d:29:4b:f7:c3:2f:98:2c:
08:8a:69:8d:e4:0b:05:fa:b1:08:2c:f8:50:0b:92:
8b:c1:3f:96:0a:68:12:7b:52:98:6a:49:48:ca:9d:
f8:d6:42:cd:80:53:ec:de:45:b8:d7:ab:8e:4b:9f:
a7:c6:4b:51:b5:b8:81:68:92:da:8c:d3:ed:23:d4:
73:c4:5f:0d:8e:e1:31:0b:62:9b:e3:31:c5:2a:1b:
b1:ae:43:0c:e2:e3:d8:e0:83:16:a8:f0:34:2a:06:
a5:63:0c:95:8d:1e:9a:a4:c7:8b:26:71:92:2c:8c:
bc:50:4a:b5:5f:29:3b:a9:1f:c3:19:be:e0:c1:bd:
44:df:bd:30:01:c7:7e:20:a1:56:80:1f:7d:e4:20:
37:e3:88:ae:1c:2e:7e:c4:81:f2:27:f9:9d:69:e4:
6f:93:4d:f7:6e:27:22:91:78:80:38:6a:d6:f9:d9:
d9:11:13:7a:2b:0c:a4:2c:2b:29:d1:b7:57:d4:6b:
e3:8a:06:2f:8d:d1:62:55:b2:de:09:56:8b:51:32:
d7:8f:3b:89:45:2f:58:5f:d4:28:04:1b:1d:fe:c1:
55:bb:01:b2:d3:96:7c:2a:9c:6b:c2:2e:3b:1a:31:
74:39:6c:a3:25:26:41:3f:69:99:5c:e4:6a:08:dd:
bb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B2:7D:A6:38:8E:B4:98:66:AE:FC:24:9A:05:C8:AB:E7:92:25:04
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:21:79:f0:81:ad:29:5f:a5:68:18:68:c1:c0:56:d3:f3:df:
c3:f2:fd:db:00:40:5f:29:0a:40:44:f5:56:00:fa:71:1e:00:
d9:34:20:78:2c:04:65:0c:d6:6a:de:f3:f0:69:7f:9b:82:5e:
08:96:d5:ef:8c:06:fc:3d:ab:36:f2:50:04:17:9f:e8:6c:43:
f2:ac:24:c5:84:54:d4:92:93:75:17:5c:bd:78:d8:e2:58:2f:
3d:a5:b0:fe:78:6b:22:1d:36:06:09:cf:86:ca:1e:b3:2c:92:
bb:04:a3:db:d2:0a:ab:7a:a4:c8:21:08:bf:13:31:d1:e7:8b:
59:e3:d6:36:3c:c4:0a:41:8a:0b:9d:d5:89:ff:fb:2e:ce:9f:
70:b4:81:75:ac:39:b0:30:39:d7:30:db:15:66:99:bb:6a:54:
33:e0:0b:e6:ae:56:4a:a3:3f:eb:48:56:7f:1c:4a:66:cb:96:
24:fc:a4:6b:79:0c:ed:5e:f3:05:22:01:99:7c:1c:46:ac:38:
51:89:60:f0:21:ec:e3:27:72:a7:c7:e5:83:65:04:18:de:37:
2f:11:9c:26:27:c4:90:ab:59:5f:45:c2:d2:de:2c:b1:3a:0c:
33:8a:6d:4f:2b:ad:3a:b5:0b:61:d5:51:03:77:46:16:aa:d7:
c3:a2:e4:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:19:13 2026 by rpki-client