Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: BwlJFV7XBzQjry7fNpc7n/x/DCaKrAw95uiwpu/Tmec=
Subject key identifier: D2:5B:89:67:7C:A2:98:84:C2:D1:4E:9C:49:1B:83:D8:58:E8:7E:13
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 019CAF7F2A30BAE092E88A6253D2559B67F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 0321
Signing time: Mon 02 Mar 2026 17:01:12 +0000
Manifest this update: Mon 02 Mar 2026 17:01:12 +0000
Manifest next update: Tue 03 Mar 2026 17:01:12 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: 9XvMogDOARAILxS/dJMkbYrkL5992y02HLbqzY4AFNE=)
2: g5qpXHQ9YaIQcSP18I2z298mHVU.roa (hash: OPcErLNEwIQeoOOXzCBshI4BboTsjuLPiVED3RVYlVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 17:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:7f:2a:30:ba:e0:92:e8:8a:62:53:d2:55:9b:67:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Mar 2 17:01:12 2026 GMT
Not After : Mar 3 17:01:12 2026 GMT
Subject: CN=d25b89677ca29884c2d14e9c491b83d858e87e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f6:85:0a:2d:a0:7a:7a:75:66:21:ec:99:80:
b1:54:b8:b9:31:58:22:b7:0e:3e:1b:1b:63:c5:ff:
0f:5d:bc:61:30:12:02:71:73:4b:f8:fb:d9:3c:a7:
1a:9a:51:be:2d:83:36:3b:0e:bd:0a:e9:19:a6:c4:
a2:af:d2:b0:8f:52:40:8e:4d:54:ff:07:3c:42:ef:
e1:ad:a7:20:77:fd:95:b0:8c:a6:b2:a1:6f:cf:77:
fa:2e:d2:43:48:91:da:c1:00:51:11:a4:e7:40:f2:
d5:11:9c:cd:b1:1b:b0:e4:9d:52:86:e6:ea:c1:63:
5d:2e:9c:ed:72:c6:ec:db:17:11:64:58:3d:3b:dc:
d5:c2:e6:cb:5f:3d:bc:57:31:ac:0d:f3:93:84:72:
db:1a:55:75:7c:cf:76:8d:c7:2a:27:8d:25:92:56:
bc:ca:3a:fe:5f:6b:94:31:f8:6e:65:66:9f:ae:9f:
00:88:86:ac:00:46:ed:7d:46:4c:59:51:c2:bd:ae:
f4:79:d2:29:13:a8:87:11:94:44:56:c5:05:09:11:
1d:95:34:d6:fd:b8:a9:04:20:d8:80:31:e8:da:6b:
23:f7:9d:4f:34:db:33:9e:de:70:0a:13:de:6a:29:
8a:cf:de:a5:5f:03:3c:de:34:4f:58:05:82:14:8d:
dd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5B:89:67:7C:A2:98:84:C2:D1:4E:9C:49:1B:83:D8:58:E8:7E:13
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:3e:bf:32:a0:9f:69:f6:11:4a:2a:1d:69:12:cb:99:eb:2d:
f2:ae:a1:92:aa:bf:45:50:00:14:39:28:3a:72:b0:7c:3c:1e:
51:50:41:97:90:96:b0:11:ec:4e:8c:66:f7:31:2c:8f:59:02:
cf:1b:58:bd:8e:49:df:b1:95:b0:ab:e3:0f:ec:34:5d:c3:ca:
a2:1a:28:62:01:74:de:ef:a0:4a:9f:65:08:5a:0d:15:97:22:
17:78:b6:fd:57:4e:d9:da:cc:9c:2c:cb:ef:0e:91:92:de:92:
48:0b:7f:fe:2f:3f:5a:e7:63:84:40:ef:33:98:26:af:bf:94:
ba:eb:57:47:27:c3:a5:8e:d9:c0:83:01:1e:fe:c6:c3:ca:45:
00:34:22:26:80:06:73:99:ce:ec:c3:27:08:eb:01:bb:72:41:
27:cc:2d:34:85:81:6a:fd:36:42:6b:d3:54:00:90:a0:1f:5a:
b8:05:45:93:31:5c:5c:c4:f5:87:c2:f8:86:60:96:1c:7f:81:
4c:3b:fa:0e:0f:07:eb:e3:f3:1d:7c:a5:e7:e0:86:22:63:6a:
46:96:6b:37:f3:75:f7:79:f8:29:92:79:b4:63:bb:97:e0:91:
c9:4f:bc:44:9c:3b:3c:10:60:04:e3:14:60:43:c2:36:ae:82:
a0:9a:8f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 04:17:16 2026 by rpki-client