Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: uyfmY84+cp/cS7cj2vRk1g5O3x8PqmUzzWQRCpYugcA=
Subject key identifier: 7C:1A:72:4B:29:A6:DA:35:2D:A0:08:71:6A:41:1F:40:F1:D1:71:03
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019D37895FA6A2EC9A56CA1F3FC208B0A2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0DE7
Signing time: Sun 29 Mar 2026 03:00:42 +0000
Manifest this update: Sun 29 Mar 2026 03:00:42 +0000
Manifest next update: Mon 30 Mar 2026 03:00:42 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: oyrY7zNT8Q+RUDRUOXDrqGpG23gwSsHvl+/eyUCFIg0=)
2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:5f:a6:a2:ec:9a:56:ca:1f:3f:c2:08:b0:a2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Mar 29 03:00:42 2026 GMT
Not After : Mar 30 03:00:42 2026 GMT
Subject: CN=7c1a724b29a6da352da008716a411f40f1d17103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a7:d2:98:7e:bd:28:5f:3f:d6:36:4d:2a:04:
16:8b:bc:4c:0d:5b:22:27:1b:a1:d3:06:2a:c9:2f:
69:bc:0f:58:0c:c6:bb:f4:f1:44:2c:b6:03:d8:58:
11:9c:26:83:e3:2f:42:b7:2b:80:88:f2:93:c6:a7:
ce:89:51:3f:48:15:12:af:07:9e:fd:b9:d8:9c:ed:
ce:7c:c8:77:12:31:92:68:8e:e8:13:08:1d:f6:7f:
10:c4:bb:28:36:32:b2:b6:35:51:61:f1:66:76:4e:
b0:5a:8b:5d:f4:e0:5d:ba:0c:5c:b9:9a:3b:8e:97:
2c:92:65:91:ba:1c:61:fe:c5:66:7f:62:bf:c8:37:
99:1c:9e:7b:62:4b:a4:2d:96:41:76:eb:f0:24:9e:
fc:51:19:dc:18:0a:39:df:73:e1:df:ee:ba:d0:f3:
86:28:ea:0d:a0:7c:94:87:16:29:9d:4d:5d:2e:05:
db:6b:9a:b9:0b:f1:91:9e:9f:0b:4f:71:cf:92:28:
00:59:19:58:85:13:ea:4a:41:41:89:33:bc:9a:1a:
e8:ac:2a:04:f1:46:61:fb:45:d3:26:41:ca:ba:6a:
ac:b0:3c:7a:90:d1:22:ee:65:5a:8e:95:34:3f:f7:
76:11:11:f3:bf:37:bb:a4:02:69:84:5e:29:13:a7:
4f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1A:72:4B:29:A6:DA:35:2D:A0:08:71:6A:41:1F:40:F1:D1:71:03
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:02:7a:0b:39:97:7c:6e:03:23:2d:46:1f:87:dc:f5:26:9e:
2b:97:4a:5d:16:fe:f8:bb:d6:c6:27:bb:67:95:d1:3e:80:e0:
e2:80:47:33:f5:09:6d:d5:bd:e0:5f:42:9d:33:70:0c:f9:77:
aa:3d:f7:7e:d7:23:b1:a7:22:e4:dd:b3:92:76:46:e4:2f:30:
18:94:82:e7:ef:a4:dc:11:4d:03:21:15:70:43:6c:37:20:32:
bb:80:20:5f:7b:6c:6c:be:d9:09:e4:8b:04:95:41:80:91:32:
55:65:fa:af:75:e7:db:55:d0:6c:98:23:57:af:72:9d:2c:22:
e8:39:b8:ea:96:49:ff:9e:e9:30:a5:5b:06:00:f0:0d:ab:6f:
c7:04:05:cb:74:87:86:19:f8:f9:ed:92:50:ca:c6:c3:be:00:
90:52:6e:ab:3c:4b:44:5e:54:f8:c9:6b:6e:45:95:2d:d0:e8:
35:7a:73:39:88:bd:a4:d1:bb:3b:da:f8:04:7f:1e:29:94:f4:
cc:38:f4:52:02:ee:ed:cf:9f:68:e2:74:1f:0e:12:17:6e:d1:
e3:64:60:0e:34:9d:42:13:81:3d:5f:71:cb:3b:47:83:f6:78:
b4:bf:23:99:87:a8:e7:b7:23:56:aa:09:c8:92:c9:93:bd:39:
a7:c4:db:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:28 2026 by rpki-client