Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: rHI0f5sjNR+LtmHu+3QDk/GMz1gxllGCO0/fvPNAx+4=
Subject key identifier: 25:55:DC:C0:C9:60:54:26:AB:F7:9B:67:47:86:48:8E:68:76:C2:D9
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019D389BC03133E437A3D9BD0841D76B21D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 16B4
Signing time: Sun 29 Mar 2026 08:00:24 +0000
Manifest this update: Sun 29 Mar 2026 08:00:24 +0000
Manifest next update: Mon 30 Mar 2026 08:00:24 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: TLvJpyJk6XjhR8DA0o/iQ5dETkat6FC68pdM1dYetlc=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:c0:31:33:e4:37:a3:d9:bd:08:41:d7:6b:21:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Mar 29 08:00:24 2026 GMT
Not After : Mar 30 08:00:24 2026 GMT
Subject: CN=2555dcc0c9605426abf79b674786488e6876c2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:9f:f1:33:06:5c:ed:2c:13:f0:66:47:00:
35:96:a3:dd:2f:c4:94:d6:b7:72:de:09:3b:89:a1:
cd:0c:f6:ee:cb:20:fe:61:c5:df:1a:5d:f5:01:06:
8a:42:91:1f:0e:61:07:fa:9e:a6:85:17:6c:e8:84:
d8:9a:0c:0a:aa:0f:b8:68:23:19:08:a2:c8:a0:34:
14:c0:b2:e1:7b:7b:04:84:b2:63:d2:9c:7f:f1:91:
17:57:b4:e7:79:29:ef:a3:97:26:3e:83:d5:f7:f6:
6a:fe:ea:7a:2e:aa:fe:0b:bf:c6:a5:fe:97:83:94:
cf:b7:1a:c1:55:33:30:83:e8:a3:50:2b:7f:d9:c8:
6e:21:e7:cf:6b:d6:bd:24:8a:52:fb:ae:19:86:a5:
a3:e1:d5:27:b7:cc:31:9d:d2:de:1d:dd:26:16:75:
1f:43:af:4f:81:42:b5:76:51:67:16:02:de:7d:90:
7d:f2:91:84:d0:13:eb:37:0b:23:e3:a9:ba:66:81:
e1:5e:cc:05:24:38:ed:4f:4a:32:43:a7:67:83:61:
cb:94:34:89:97:da:aa:bb:0e:b3:67:1a:8f:26:17:
f9:4e:22:57:97:1b:6b:47:35:9c:21:fe:f4:90:3c:
d7:c5:cd:c7:95:05:70:68:30:83:96:71:74:0c:c5:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:55:DC:C0:C9:60:54:26:AB:F7:9B:67:47:86:48:8E:68:76:C2:D9
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:25:27:5f:44:63:4b:07:8c:95:13:d8:5a:d5:0f:6d:e2:97:
20:74:68:7b:62:a3:38:13:10:a0:f1:53:4a:14:32:88:43:62:
32:ed:f5:da:5d:d4:60:70:ce:e7:a5:83:93:c1:9e:ae:80:f4:
62:af:76:ab:6c:aa:dc:22:03:99:0a:6b:aa:7d:19:03:50:4d:
09:d5:48:67:f8:44:3b:46:c6:2e:d3:c4:85:cd:aa:5b:a3:ee:
dc:c9:0c:21:e1:4e:d8:cc:18:da:53:a1:d5:87:37:2d:3b:37:
05:1b:51:2a:f3:fb:39:51:56:e8:2a:ae:70:67:5f:6d:f5:57:
60:c6:98:20:db:9c:92:5e:d8:ab:5f:3b:33:db:20:79:f5:38:
4d:5b:66:3d:aa:91:82:fd:93:1b:72:20:68:ae:5f:bb:1b:52:
4b:ae:1e:ff:47:7a:a2:44:3b:28:6e:e1:c5:7d:54:1b:7a:2f:
82:76:31:b5:c1:58:a4:30:ba:21:d9:d7:24:50:ef:79:27:9e:
7b:09:7c:b8:e3:85:3c:9e:47:f1:28:96:6c:cb:32:f9:2c:cb:
ed:12:5b:4d:a5:e2:28:5e:94:4d:6d:39:02:ff:c3:0d:78:aa:
d6:73:1e:c7:af:21:71:2d:66:76:d0:28:6c:18:cb:65:d1:b6:
56:df:d8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:21:05 2026 by rpki-client