Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: 7TnR5PovlJ7VaKVJXGa5bj898kgwdNSmt1KHwmgwUx4=
Subject key identifier: D7:8E:16:54:F8:17:66:50:C5:AA:D2:69:47:29:C0:38:3D:BB:DF:3F
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019D38D29B517646E1BE1338C5808E9A372A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 053E
Signing time: Sun 29 Mar 2026 09:00:19 +0000
Manifest this update: Sun 29 Mar 2026 09:00:19 +0000
Manifest next update: Mon 30 Mar 2026 09:00:19 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: g4ytIPOgNj3pp7ggHMAVLqIBmY0k3AaQtqCKOAIfeb0=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:9b:51:76:46:e1:be:13:38:c5:80:8e:9a:37:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Mar 29 09:00:19 2026 GMT
Not After : Mar 30 09:00:19 2026 GMT
Subject: CN=d78e1654f8176650c5aad2694729c0383dbbdf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:61:ce:9b:58:cc:cb:2b:f7:26:a4:62:ed:e5:
04:17:cd:09:4d:10:3b:01:b0:c1:35:de:50:7e:af:
2e:99:42:8c:f2:c6:45:3f:20:d6:6d:fe:54:15:ac:
e0:3f:03:1b:17:f5:0f:80:05:45:45:d8:4d:6f:18:
9c:79:a3:3e:52:c2:2b:a8:49:dd:9b:e0:ab:bf:14:
a6:72:ac:72:ae:1f:3f:82:ad:1b:e2:32:db:a8:5b:
ad:b5:38:8d:21:b8:b3:c4:a6:d5:30:8f:e2:d0:a9:
96:d8:17:2d:39:a9:c5:9e:b6:21:a0:ba:8f:1f:a0:
56:a4:0b:5c:fc:2a:fa:74:e5:76:f0:29:83:4b:39:
3a:ad:3c:7d:62:00:39:dd:fb:12:12:4e:72:04:d2:
73:77:c9:b7:50:86:27:68:f1:37:39:4d:d4:6d:2f:
cf:cd:4b:94:a0:2c:cd:29:fb:de:32:f6:9a:e7:71:
4c:4f:b0:9c:1e:d3:97:73:16:db:e2:d4:b7:4d:65:
ed:b8:89:23:7f:58:a1:81:7d:27:5b:06:f2:f1:fb:
8a:62:d3:e6:28:63:9a:88:ea:8f:27:0c:16:ea:e2:
f8:4c:de:a3:3c:73:28:8b:34:6e:30:3d:89:35:0d:
f0:7b:c0:e0:e4:2e:40:76:1b:a0:42:2b:cb:90:1e:
fa:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8E:16:54:F8:17:66:50:C5:AA:D2:69:47:29:C0:38:3D:BB:DF:3F
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:12:af:46:cc:da:1e:67:ab:30:75:97:35:1d:35:eb:3f:1a:
97:eb:5a:c5:53:33:24:36:4d:c2:88:7d:ea:03:25:29:81:1f:
c3:5c:60:34:3b:af:cd:9a:3c:52:21:b5:21:6e:06:e5:02:7d:
7e:18:d6:b3:76:9b:65:c5:3f:20:d8:3f:51:1f:67:ef:cd:63:
77:9e:3e:09:a8:24:fc:1b:9a:ad:dd:88:62:77:3e:eb:2b:c6:
a3:38:71:d0:34:2e:fd:24:3a:26:72:d2:47:d4:da:67:57:af:
6b:34:d2:e0:7f:e9:97:b1:94:f4:75:ad:2d:c3:dc:90:42:39:
90:61:f5:48:de:9e:90:ba:5a:8e:94:5f:ef:9c:da:1b:61:8a:
48:d7:69:95:9c:13:b9:b0:73:0e:d4:a9:92:1d:98:fd:f8:63:
ed:7e:d3:70:71:80:0b:e1:dc:d6:a4:6d:7a:53:d5:72:c5:e3:
a6:28:3a:80:0a:47:93:35:f7:30:b2:a1:ac:20:41:51:06:dd:
de:bb:11:8a:7d:da:bc:e4:39:4a:88:b5:7a:59:78:fc:55:47:
47:a9:a9:85:54:e9:f4:bb:12:f7:20:fa:14:0c:31:c9:70:7d:
6a:a5:15:ff:76:57:81:d5:3f:76:0d:59:20:31:15:c4:fc:a3:
3b:94:2a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:08 2026 by rpki-client