Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft
File: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft (raw, json)
Hash identifier: Pywxsgq/ihPF8h8lVQUFFUcyOWiR03cMxTPAvywccro=
Subject key identifier: 1C:3F:19:D3:E6:46:C3:A7:1D:AB:42:A0:06:A1:F4:AE:11:3F:00:61
Authority key identifier: DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC
Certificate issuer: /CN=daca83eb1faf9773d350c7dce612ca281484e7fc
Certificate serial: 019D382E3E1E4243D6FDAE52F49A16977F31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft
Manifest number: 0163
Signing time: Sun 29 Mar 2026 06:00:47 +0000
Manifest this update: Sun 29 Mar 2026 06:00:47 +0000
Manifest next update: Mon 30 Mar 2026 06:00:47 +0000
Files and hashes: 1: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl (hash: OQfbwm0Z8jqDlL/MUAmBTZAlanhrTkc5drAzFpeSueg=)
2: szRLM3Az0xzE-SZ2cP8IE4cXA8c.asa (hash: CVKDj1/53BYjcVJSpA6JPeV/CJrhFA+lF2cwIdYQJr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:3e:1e:42:43:d6:fd:ae:52:f4:9a:16:97:7f:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daca83eb1faf9773d350c7dce612ca281484e7fc
Validity
Not Before: Mar 29 06:00:47 2026 GMT
Not After : Mar 30 06:00:47 2026 GMT
Subject: CN=1c3f19d3e646c3a71dab42a006a1f4ae113f0061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:8b:5c:69:08:6c:c3:93:43:37:70:0a:1f:
58:54:04:70:eb:1a:56:94:4c:50:bd:ba:a8:ac:ac:
86:43:c1:39:f7:87:cc:df:dc:69:ce:19:71:58:1e:
29:a6:03:82:d4:c6:ce:7d:04:e8:5f:03:14:4e:e1:
85:ac:ec:fb:c1:72:93:bf:c6:d2:8a:5e:16:96:f5:
1b:64:61:cd:00:89:04:a9:f8:03:62:62:b9:fb:c9:
d9:9d:21:9d:20:f5:46:f9:65:68:fa:33:ae:32:18:
ba:73:f7:9a:d3:0a:5f:47:c9:2d:0f:6a:4c:48:1b:
5d:08:ba:8f:a9:43:a9:7b:92:0e:c8:e4:7a:5a:de:
e4:da:43:5a:04:29:37:28:fc:3a:29:af:37:be:c0:
b1:19:f8:6d:dc:f3:e9:22:66:84:90:1d:65:64:0a:
4a:64:e0:ef:49:d7:24:10:95:cb:41:f6:7b:e7:9f:
8b:b2:4d:71:f7:1e:ba:54:dc:70:f5:32:23:26:af:
ca:db:56:68:31:79:f2:c8:3e:e7:6f:2a:d7:72:06:
bc:ee:7d:94:de:1c:50:a0:97:36:0e:19:91:66:28:
7c:76:a6:43:1b:37:a9:97:f9:5e:4f:0b:3b:4e:ed:
59:1d:09:ec:ad:9b:ec:fe:47:c6:0c:dd:7d:9c:e0:
78:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3F:19:D3:E6:46:C3:A7:1D:AB:42:A0:06:A1:F4:AE:11:3F:00:61
X509v3 Authority Key Identifier:
keyid:DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:aa:64:c3:43:d3:19:c9:1e:95:7b:fe:15:3e:15:c2:b3:92:
db:e8:0d:b3:5f:a3:c3:7a:c4:2b:8c:ff:0c:71:a8:4a:50:ed:
ca:ee:82:76:a6:15:fa:fb:39:d4:72:00:a9:3a:a5:46:17:4d:
78:da:5e:f6:01:82:33:a2:9d:f7:63:e1:1a:30:62:be:75:f1:
37:cd:eb:2c:0a:c1:ba:50:95:68:c4:fc:ae:fd:ee:04:7d:21:
06:f5:df:71:bc:46:d8:ac:07:2f:56:e3:8b:0e:2e:c6:c4:56:
04:36:db:5d:78:73:8b:f6:07:cc:d8:02:1a:cf:75:a5:f5:5d:
eb:1d:75:df:dd:da:95:f3:f0:63:8c:1c:f2:c7:95:41:f3:22:
13:d1:c9:89:16:3e:84:44:a4:6f:1f:73:95:ff:35:ac:16:97:
75:60:cb:01:f9:b3:f2:64:4b:e4:1c:05:05:7e:04:34:ef:c2:
a7:1d:17:e3:22:e6:2e:cd:15:89:84:2d:d1:bd:a0:52:66:05:
61:bb:9f:91:9f:b3:0b:c8:90:2f:1a:f6:bc:1e:00:c1:f3:ba:
e4:e4:41:e1:6c:6d:71:1f:5e:d1:4b:01:95:58:56:ec:aa:5b:
8b:9f:cf:82:77:b4:fa:e8:32:28:88:a8:f1:fa:47:02:ce:65:
65:1b:97:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:40 2026 by rpki-client