Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json)
Hash identifier: 6kef/gS1HcpweV2JgVl7bWLA4/TbOJsOyrk6B1g/Y5I=
Subject key identifier: C2:3B:C6:D9:93:EE:46:9C:CD:67:C3:43:E5:7D:C4:20:B9:FF:0E:83
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 019CAAFD0280D8E893B5196C28D190D31B5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
Manifest number: 1866
Signing time: Sun 01 Mar 2026 20:00:33 +0000
Manifest this update: Sun 01 Mar 2026 20:00:33 +0000
Manifest next update: Mon 02 Mar 2026 20:00:33 +0000
Files and hashes: 1: 2um_rS6WPk2IN6s5x2XbXkQen_M.roa (hash: B3h5JybIRNgVZgqeJwphCEgik9Z267VqHxwbsqTyFKg=)
2: 8f-eDRc6_FXPO45wpxV1xiQ1HAI.roa (hash: qCD4Jc/TwmM8SzWErouUslVtMstyIPcxvXJzTBG565w=)
3: AQlhfGVcA8R2Bwt2uq11a9BJ3I8.roa (hash: ZpJgowIRgidE/63sx4+7oMD9312HUQ//RvFSY5dDQVE=)
4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: RudtKeIiKoLYCbtdy5yUvGVvmrv/L2I0At532pjzoU4=)
5: NRE_ExP25AUx8aw3isiH4EnLbWo.roa (hash: SKLRbqjSGl9WDWUOA+lP72kkE1542Czk3hD2WUZlOgE=)
6: WLsy-DnnYnQhVtIJoLpzduDgWrE.roa (hash: V18CJCRRVUNGPvZK+aRf70kDiLaxF9fIzOBbbor2Dw4=)
7: b1zJ7NbuL57-e0rkevnmNIo0USU.roa (hash: 6oXQKWkeIUo+oie2lp60DcRhSM6jyLL6Sog8QbpX/bA=)
8: mWfbcxQdC8J-VBP4j7EBWfW3Qb4.roa (hash: osYbMfspLkdv49SbR62yA1rUcvBEuqW1/Mq+AH8uZCU=)
9: pcZnUT88SN1u2R3xPf6LVW5AwuQ.roa (hash: ZB/G3ZNzs5uxcuPvRWlbNalCCRVbwpgrXGxyYOGJMA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:02:80:d8:e8:93:b5:19:6c:28:d1:90:d3:1b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Mar 1 20:00:33 2026 GMT
Not After : Mar 2 20:00:33 2026 GMT
Subject: CN=c23bc6d993ee469ccd67c343e57dc420b9ff0e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2a:32:8a:69:e2:bb:66:16:8c:df:9c:46:b1:
a9:fb:bc:29:05:ed:a7:e7:74:05:8c:5d:ec:4a:a0:
e8:ad:e7:38:ee:73:a4:62:dc:cd:67:78:77:a8:fc:
0c:da:62:91:2f:62:45:4b:cd:f0:21:84:3f:ee:d1:
44:f0:1c:9d:17:01:06:f8:0b:a2:da:fb:6e:df:16:
f4:18:3a:a3:41:cf:27:e9:4b:f4:56:77:9b:28:2d:
a3:d5:58:4a:4d:69:8b:ed:b9:57:19:77:18:19:40:
dd:4e:eb:2b:e9:f0:0e:3f:52:d7:7f:7e:21:f6:8f:
7c:f9:78:e5:b0:b1:b4:e5:13:c0:f7:fa:7c:8f:1a:
a9:b8:5d:ed:f5:de:94:92:8a:d9:7b:c3:c2:a3:93:
6b:b3:78:0b:d3:e1:74:ba:1a:a0:2e:af:44:85:8d:
04:9c:0a:00:e8:36:51:0b:89:1a:fb:58:38:c0:29:
be:91:06:68:c6:5e:7c:c7:aa:6d:5b:c5:18:e9:ee:
5c:75:c4:eb:8c:57:ee:46:5d:c6:b5:d1:52:0a:fe:
94:53:2a:b7:44:4f:90:82:03:b7:69:f4:83:e1:ce:
d3:bb:10:f5:96:48:45:dd:14:b7:58:91:7a:32:20:
71:75:87:98:af:89:9e:b1:87:94:e4:ab:5b:7c:c4:
a6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3B:C6:D9:93:EE:46:9C:CD:67:C3:43:E5:7D:C4:20:B9:FF:0E:83
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0b:4a:f4:b0:cd:4a:6d:5f:15:96:04:64:3e:34:68:42:d9:
73:01:69:be:dd:af:52:c9:60:94:90:ff:78:e3:ce:75:3a:2b:
93:f5:65:88:15:e9:1d:57:1b:c7:32:a4:a2:00:20:f3:3f:e9:
69:54:05:4c:51:c4:75:73:03:5b:d5:83:00:c6:1b:1c:2c:1f:
82:bb:72:9f:5b:32:d9:ac:0c:cd:3a:23:80:27:f2:ed:02:ab:
fb:e6:fa:dc:12:25:15:4d:62:20:b1:d5:d6:c1:53:06:1a:12:
7b:3d:e9:93:6e:50:29:ce:c0:b6:f4:44:c8:8e:d3:49:0c:28:
a4:6d:54:e1:69:15:f2:81:66:7d:56:5f:ca:d1:e3:ef:dc:47:
5b:37:52:ca:b9:60:2b:54:cd:19:6e:d8:c4:1a:f8:0d:84:cc:
84:6f:46:07:1f:16:6b:81:05:80:bf:f6:4b:7d:cc:54:ca:e5:
e3:74:2a:f4:60:0e:a0:a0:5d:a9:06:2c:bb:f1:88:16:df:fd:
2c:b4:90:25:23:d6:82:e8:c0:88:25:0b:07:70:fd:7b:59:3b:
dc:ed:bd:a5:5d:8b:40:fe:60:4a:6a:fa:c3:63:de:29:3d:5c:
5a:9d:a1:3c:eb:fa:85:d1:9c:8a:91:d7:92:cc:c9:50:64:d7:
7e:0b:c8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:40:28 2026 by rpki-client