Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: bTX6ZeE15TDs2kPwxnJN0c2kilkP77nE3baHbDM99WE=
Subject key identifier: D4:F3:5A:14:12:13:7A:D0:DD:95:D1:F6:C6:31:5A:CC:93:50:3F:39
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019CE3D9C9E897DEB744305D79B53560A878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0DFD
Signing time: Thu 12 Mar 2026 21:00:26 +0000
Manifest this update: Thu 12 Mar 2026 21:00:26 +0000
Manifest next update: Fri 13 Mar 2026 21:00:26 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: ulcS7y3302GXtifHpnWKo8DyoKmueq53gB7LO2ByR74=)
2: uej861Aq66aiTbTh46AGK_JiRjQ.roa (hash: u2XmnqcYHbAJLSpNo2ks9hVCb6DlSKyd8Mczf2hO9GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:d9:c9:e8:97:de:b7:44:30:5d:79:b5:35:60:a8:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Mar 12 21:00:26 2026 GMT
Not After : Mar 13 21:00:26 2026 GMT
Subject: CN=d4f35a1412137ad0dd95d1f6c6315acc93503f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5c:c8:54:84:20:cf:7f:8d:05:fb:15:93:a3:
dc:73:1d:b3:bf:e5:e8:30:dd:7e:22:f4:aa:f3:b9:
13:3c:2e:77:4e:fe:c3:73:1e:f4:a3:43:24:5a:ea:
11:68:01:2c:7c:f5:1b:e1:75:c3:6c:e7:5d:d8:34:
70:dd:78:25:6d:1c:f8:d2:0e:77:bc:cb:25:47:b0:
85:cf:45:9f:1f:0a:f2:fc:c4:69:2f:44:4f:17:8e:
ca:1f:e5:ee:a6:37:25:00:92:bb:df:31:7e:2c:1a:
1d:f9:10:6b:69:48:4f:fa:1d:b8:06:81:e7:d8:a6:
f2:4a:63:6b:13:83:cc:c8:37:67:d9:ac:75:40:d3:
bf:58:21:26:e5:25:39:aa:ec:ec:75:7c:89:2e:29:
a3:da:a6:fd:1d:11:c6:a3:64:c1:11:96:88:04:df:
43:26:c7:85:df:96:c3:90:80:70:e5:d0:fd:dc:3f:
e4:c3:04:91:18:d8:fd:92:fb:d6:47:d9:68:02:68:
b3:f4:07:d0:d1:03:58:9e:77:32:38:58:9b:72:4e:
14:ab:aa:52:b9:c3:3e:dd:80:32:9f:37:7e:35:95:
da:ae:06:fd:68:2a:d2:6a:97:f4:02:7c:66:76:58:
e8:54:92:bf:35:31:a6:56:bb:04:63:d5:ca:47:3d:
37:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:F3:5A:14:12:13:7A:D0:DD:95:D1:F6:C6:31:5A:CC:93:50:3F:39
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:a1:50:05:cb:53:d7:80:72:91:04:66:81:bd:2c:d0:c5:58:
f8:c2:46:8e:8a:3a:a8:2c:9b:df:93:74:65:7a:98:e3:38:e9:
8f:a5:bc:14:2b:56:6b:d3:92:be:c2:d7:06:a5:0d:ac:59:d9:
43:ec:99:77:85:96:8a:18:54:6d:81:c4:77:ac:89:4e:08:36:
bd:ca:82:bd:90:f3:a3:4f:74:a3:2c:77:d0:1c:ad:00:cc:70:
8b:21:02:c0:64:f0:fb:58:0b:d0:c3:c6:4f:26:a9:bb:ce:61:
96:ad:30:85:ff:55:af:84:f9:d2:61:4e:45:51:00:33:76:59:
88:f0:fa:84:7e:05:46:8f:fa:40:fd:0f:62:5b:3a:06:56:99:
da:77:64:34:f9:a4:15:ca:80:59:6a:d0:e2:37:3b:9a:d2:bc:
37:5b:cb:6b:6a:e4:1c:0e:52:03:34:55:7c:bd:1e:ad:9e:16:
db:a3:0e:f0:ec:68:02:34:2a:3f:83:8d:29:bd:34:1e:ec:ad:
24:3d:bf:c8:e3:1a:42:eb:ac:21:3c:d2:91:1c:36:c1:30:f4:
24:9e:fc:d7:af:b0:fe:d3:b9:df:5e:d8:23:20:8c:2a:3b:1b:
96:95:0b:9e:ed:43:5a:fb:72:31:fa:3c:d5:a4:6b:47:f6:2b:
c1:33:98:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 04:32:20 2026 by rpki-client