Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
File: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft (raw, json)
Hash identifier: I1XWECPCgkXbSSPCV/3f3I9wjbO7HQBRPmkPaNaN1as=
Subject key identifier: 2E:1D:DF:88:C1:C6:57:9D:B8:0E:0C:CF:72:43:33:B8:61:47:64:96
Authority key identifier: DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
Certificate issuer: /CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Certificate serial: 019D38D3359E08BE1AA7626E50963F019A60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:00:58 +0000
Manifest this update: Sun 29 Mar 2026 09:00:58 +0000
Manifest next update: Mon 30 Mar 2026 09:00:58 +0000
Files and hashes: 1: 0HK9dF4eWzljAyAebYpaTc8u8tY.roa (hash: I0vU4WfKD7pZCsPBLobl6jL+dlt/Fg81XoZQCKBBTX8=)
2: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl (hash: /xpRqZ5I95xQa8lTrz6SiJk1IQoMQHToCaaqKpeB8VY=)
3: k9UuQfoQ3x1App0ZI_fz4inm010.roa (hash: 4EB2k7R0veJnPJDrivb11s4A8xWwFMnfL1uLGRvezwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:35:9e:08:be:1a:a7:62:6e:50:96:3f:01:9a:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Validity
Not Before: Mar 29 09:00:58 2026 GMT
Not After : Mar 30 09:00:58 2026 GMT
Subject: CN=2e1ddf88c1c6579db80e0ccf724333b861476496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:60:77:6a:3b:3c:80:14:27:9f:3c:e5:3c:
32:84:1b:20:6b:80:70:4b:30:fd:b9:11:bf:e3:77:
bf:4a:0d:fc:3a:80:b9:fe:ef:19:51:f5:37:0d:a3:
2f:90:82:88:80:0e:71:2c:3e:d2:4d:64:99:0a:bb:
2f:a6:f5:de:0b:26:ad:a0:78:88:29:b8:71:b1:e7:
e7:aa:8d:2f:3e:e3:8a:9d:42:17:4d:d6:a9:05:12:
6c:ec:0c:3e:4d:31:21:f4:fe:2d:4f:92:ab:f9:ec:
a6:e3:18:fb:cd:52:98:52:8b:fb:81:05:3f:a3:49:
98:dc:49:ee:67:69:ba:0c:f7:48:70:ff:45:49:40:
39:a8:70:14:b5:3c:11:10:30:e7:49:a2:72:7c:57:
41:e8:b1:64:bb:68:0e:24:39:9a:fd:09:01:55:40:
2e:23:c6:51:a6:df:5b:49:1e:75:02:e1:86:bd:99:
0f:48:fa:3b:b1:13:67:aa:1b:3f:6c:c1:3d:59:21:
6b:84:21:bc:5c:eb:d9:90:70:94:1b:bf:83:08:1d:
c7:ab:87:99:e6:62:31:12:b6:21:b0:df:20:97:3c:
43:87:c3:b9:60:3a:d0:de:ff:de:b1:96:0b:ee:a8:
9e:6d:f7:ba:ac:23:28:9c:3e:81:35:88:d6:f0:0a:
de:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1D:DF:88:C1:C6:57:9D:B8:0E:0C:CF:72:43:33:B8:61:47:64:96
X509v3 Authority Key Identifier:
keyid:DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:68:d0:c9:7a:b5:95:13:53:f7:7d:2b:4b:06:64:34:55:e4:
71:74:cd:3e:70:7e:eb:d3:41:54:be:1b:7d:94:e2:e1:19:86:
84:94:75:89:2d:d9:a3:7a:0c:62:f1:ec:07:4f:c6:65:ec:24:
f9:6c:f2:2e:b9:5e:29:07:36:2d:21:dc:c8:ae:75:d9:76:f3:
ff:77:30:fa:8b:40:1c:1b:96:c1:29:ea:fb:f4:0e:6a:e5:ab:
81:01:82:f3:0a:8e:b8:b1:aa:c3:54:17:1f:bf:93:8b:f7:85:
f7:c1:6b:d1:df:56:7a:cf:83:38:13:1d:a7:62:aa:02:18:71:
40:82:13:b6:c2:75:55:f8:81:ba:85:90:48:b5:b6:c7:e1:b1:
ac:93:63:c9:25:5d:94:54:e1:53:84:f1:89:35:45:fb:05:5b:
aa:5c:6d:34:90:92:8d:d4:5d:eb:8c:ed:b0:ea:34:05:b0:d6:
60:38:1c:c1:c4:91:7b:ea:25:60:18:82:7a:79:af:82:6d:21:
9f:d2:69:c6:c2:47:51:80:14:d5:3e:08:ef:08:ed:25:b9:f1:
d9:80:81:ea:2b:67:bd:4b:4c:73:63:65:8e:b3:74:46:3b:c6:
12:9f:16:4d:6f:4d:16:05:d1:01:91:1d:10:f8:f8:ed:0b:c7:
ab:0e:10:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:58 2026 by rpki-client