Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier: kBDTVgH9oUwPSzj1q1OJ76K7AZSA7dtRMjhu+ANvabg=
Subject key identifier: 03:6C:C0:38:E5:E4:BA:8E:09:F7:A1:64:18:C0:73:A3:EE:09:E9:B7
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial: 019CACEBBBC3B58DE54C7560D25EC99B965B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number: 0653
Signing time: Mon 02 Mar 2026 05:00:55 +0000
Manifest this update: Mon 02 Mar 2026 05:00:55 +0000
Manifest next update: Tue 03 Mar 2026 05:00:55 +0000
Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: buWCS2TkNQMAqGQJOFYpX9qBu4/Wk8bqKG5OaxfcQJI=)
2: a3MACvt7XrPEY_fMvOjs2dGCc8I.roa (hash: BnSZeJBjA6bMn5RCXClcc6mDzKBCwKOx+bVKk38vQdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:bb:c3:b5:8d:e5:4c:75:60:d2:5e:c9:9b:96:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
Validity
Not Before: Mar 2 05:00:55 2026 GMT
Not After : Mar 3 05:00:55 2026 GMT
Subject: CN=036cc038e5e4ba8e09f7a16418c073a3ee09e9b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c6:82:34:03:0e:9b:a3:76:b5:fe:38:e8:b9:
18:76:0d:ab:81:1e:41:7d:6f:a0:ac:a2:e9:66:84:
0a:ef:41:5a:c1:f8:16:a2:d3:79:57:fe:7f:ef:55:
7f:c0:a9:30:94:65:4b:84:dc:50:af:8c:36:e7:06:
a4:15:f4:1b:24:bd:5a:2d:97:9b:7e:43:19:8f:2a:
0e:1a:b3:ae:46:11:fa:01:99:a2:ee:0a:87:d8:55:
4e:3f:f6:bd:df:e4:38:f9:1d:5e:4a:ee:69:3f:b5:
c3:2c:6d:e2:3d:7d:f0:17:ca:ef:8f:a0:d1:1f:23:
06:78:ea:b0:fe:e3:85:69:03:e0:b9:62:3d:30:ee:
c8:ab:7b:de:77:ac:d3:26:af:df:10:84:44:c9:60:
a4:17:af:3c:87:bb:64:37:63:23:85:61:37:c7:3a:
d1:7f:aa:08:c1:1f:b2:1d:02:80:9b:e2:d0:c2:b0:
81:70:c3:3f:59:45:de:91:95:8b:f0:d7:8e:fc:e7:
a1:c4:d1:53:8c:b5:13:84:b2:b0:39:48:6c:9c:26:
8f:7d:49:8d:f0:1c:14:bb:55:cc:0a:45:75:01:bc:
ed:a6:9c:61:c3:f5:a2:f5:b8:03:88:4a:88:c0:2f:
eb:be:8e:15:7b:e9:4c:2a:b0:50:94:21:8a:78:53:
0a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6C:C0:38:E5:E4:BA:8E:09:F7:A1:64:18:C0:73:A3:EE:09:E9:B7
X509v3 Authority Key Identifier:
keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:41:3b:77:4c:cf:50:b0:c7:d9:73:6f:e2:3b:1c:f2:42:d3:
70:57:9a:ac:5b:6e:ad:18:2e:30:3a:19:ff:7e:38:a6:6d:3b:
5d:db:f5:ea:aa:96:58:32:17:75:40:26:13:73:d8:f3:d8:f4:
6a:e4:d7:87:d8:15:1c:b7:de:41:8e:30:4b:83:b6:c4:9f:ff:
92:cc:8d:39:a0:aa:2f:51:03:0e:00:de:5e:9b:cc:dd:72:38:
47:fa:65:0f:f8:f6:87:bd:d3:57:99:99:34:03:99:a0:7a:1a:
e8:19:93:53:62:38:07:12:37:b3:e4:52:8d:b6:65:13:e6:09:
ca:02:89:e0:f3:76:07:7d:ea:b5:32:00:ea:aa:2e:2f:3b:ef:
9b:5d:a5:76:40:52:3d:de:5b:1a:28:42:84:fd:33:05:d4:8e:
c6:c8:d1:52:4d:98:8a:9d:cb:c9:a6:36:a2:07:81:03:b0:b6:
8d:5a:35:66:92:d7:56:32:50:2f:47:46:64:79:b3:89:3c:70:
94:0a:7c:f3:d9:4b:67:f5:df:b8:b5:c9:e4:84:ad:58:c9:cb:
b8:c8:f5:4a:52:07:fb:9c:76:b8:2d:4a:85:38:0f:f4:05:15:
a5:7f:73:a7:eb:24:35:e8:e0:37:ca:6b:27:23:c7:ec:80:06:
f5:3e:c3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:55:46 2026 by rpki-client