Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
File: 2BFKkiBvChn3M52guJZpxKX-Urk.mft (raw, json)
Hash identifier: sIcwCAOaFjDOe6b5nwAk8dsuOAjlOi/AFyqjXfoRAKw=
Subject key identifier: DC:C4:9B:23:5A:CA:5F:0B:E2:3F:43:F9:04:5D:67:2B:38:46:2C:FE
Authority key identifier: D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
Certificate issuer: /CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Certificate serial: 019CE5916CD7BF06681B5C7234560D90D69B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
Manifest number: 0246
Signing time: Fri 13 Mar 2026 05:00:38 +0000
Manifest this update: Fri 13 Mar 2026 05:00:38 +0000
Manifest next update: Sat 14 Mar 2026 05:00:38 +0000
Files and hashes: 1: 2BFKkiBvChn3M52guJZpxKX-Urk.crl (hash: WUOW+2i3oEGSlpfQIl79EwusRUPiTAGznX6jzhsG/PY=)
2: vVXnYinPG4h5TcTea17Iv2i5FYs.roa (hash: vQ3FQGy71ne2HeyP0gu2+P/Q4WprPJAgNPNHKJfJ9Dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:6c:d7:bf:06:68:1b:5c:72:34:56:0d:90:d6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Validity
Not Before: Mar 13 05:00:38 2026 GMT
Not After : Mar 14 05:00:38 2026 GMT
Subject: CN=dcc49b235aca5f0be23f43f9045d672b38462cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7d:47:70:13:08:be:fa:6e:f7:2e:df:b7:20:
b8:b9:f6:10:04:eb:f2:24:71:b1:45:1a:35:77:d8:
df:2c:90:c8:6c:0c:36:de:ca:0c:48:34:c3:c0:f4:
c8:9f:0d:b1:73:89:26:85:0f:c2:81:85:03:d2:31:
16:d7:04:d0:b5:f8:3f:8a:7b:cb:b3:17:9b:a6:05:
72:5f:ec:95:d3:04:5d:62:14:ec:04:77:70:2a:1e:
23:6e:b7:59:96:97:ea:6f:a6:46:cd:79:0d:93:c5:
4e:68:d2:b3:14:6a:54:1d:57:1c:fc:d0:71:62:bd:
27:69:c0:7b:94:6a:92:25:bd:ce:bc:e1:87:98:a8:
cd:ec:73:75:36:1b:e0:fc:78:9b:56:c0:8e:da:82:
95:94:6e:81:58:c6:6f:c7:b9:53:b6:84:ac:b9:44:
7e:16:25:89:cc:bd:9a:13:78:b8:6b:e0:9e:24:4a:
78:06:dc:da:24:14:b6:83:74:68:5a:8f:88:24:b0:
5d:ec:2b:75:28:b9:f9:b0:80:c0:b2:06:c3:1e:82:
f0:6a:00:c1:70:95:a2:9f:36:56:b2:3b:0d:f2:16:
c3:36:94:7e:50:19:e5:d0:e2:da:34:ad:5b:79:b9:
39:be:ba:78:62:eb:5a:ae:24:68:b4:0e:ee:5c:7e:
41:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C4:9B:23:5A:CA:5F:0B:E2:3F:43:F9:04:5D:67:2B:38:46:2C:FE
X509v3 Authority Key Identifier:
keyid:D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:4e:56:29:fc:91:c6:8f:3e:b8:fe:7f:da:cb:e1:06:7e:51:
e1:3a:cc:92:fd:17:1b:c8:aa:d2:22:e0:33:c4:67:e8:5b:32:
91:c7:47:3d:c8:e9:de:0b:2a:36:d9:5a:de:de:01:0e:7c:c0:
cb:ec:e2:60:36:07:65:ca:9c:4c:c7:dd:f5:57:4d:ed:14:41:
78:68:05:65:52:3a:29:c4:0f:4e:cd:44:4a:db:0e:a8:82:30:
ea:36:dd:24:a3:da:20:40:0e:e8:25:09:68:2d:79:c9:c9:c7:
59:8e:21:6b:5f:96:04:c9:e2:e8:fb:c3:e0:45:df:8d:7e:f4:
fc:49:fa:2a:4d:11:f6:c9:14:19:89:ce:c4:06:b8:af:ee:c2:
31:36:90:00:c8:ee:9e:c1:62:01:e9:7f:c3:34:d0:48:21:d8:
48:7f:cd:5c:df:f6:82:ec:3c:3b:dc:86:9f:e6:e3:e7:d4:60:
43:3a:bd:13:c3:7f:e5:ac:42:eb:e8:7f:61:75:8c:ac:9e:3c:
26:2d:1c:f7:3d:04:45:7e:f9:16:ca:c4:19:9e:de:21:72:0e:
64:0a:6c:61:54:2f:1d:88:f5:13:19:19:51:66:32:39:1e:07:
a9:e9:48:1a:29:13:6c:aa:b1:b0:6c:89:86:43:10:ce:b4:8c:
83:6f:45:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:03:43 2026 by rpki-client