Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: mw+UT4AnJXFM1v/HERHBaEte0mSTurVTptn/VEN/OyI=
Subject key identifier: DE:D3:40:85:60:FE:66:D3:5A:3F:17:E0:76:14:AA:FF:08:FA:45:7F
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 019CC6E23D00F5F2ACE42B2F78E9BDA3B24D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0D5F
Signing time: Sat 07 Mar 2026 06:00:41 +0000
Manifest this update: Sat 07 Mar 2026 06:00:41 +0000
Manifest next update: Sun 08 Mar 2026 06:00:41 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: /m5+SujJ0+F7Wl+jXXLLSA2m2d5tFKhVqRnPv1iRFrw=)
2: HWmWJflODDxV52vIx6-epHRasJA.roa (hash: f4KecipuBIXANDLC3dbZ4NbJfpK+r2CZ/EO3t/X4kJk=)
3: MFAY7_OLyA4recGDb-cluDo0Fy4.roa (hash: gbxISH9PotemB1t2Fhr1XbKqizGCUJkHo7eezE3JciE=)
4: XgNu2RkWIrg-dXAuiT5cDAoRcao.roa (hash: YfBiHj8EXpBukiSHpuqnvbNrk3kYEDe/L+q9obAeqiA=)
5: cP1lvMExnryf8cpW14P-YTW6oFM.roa (hash: 1i/eVOAe4LzQ+ZGAHO4PSAx1yAI1zK27WYnYn0/9SC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c6:e2:3d:00:f5:f2:ac:e4:2b:2f:78:e9:bd:a3:b2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Mar 7 06:00:41 2026 GMT
Not After : Mar 8 06:00:41 2026 GMT
Subject: CN=ded3408560fe66d35a3f17e07614aaff08fa457f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:42:9a:59:21:28:c2:a8:db:b4:b5:d0:78:2a:
cd:fb:7a:9f:f1:68:90:0a:0e:39:07:8c:1f:30:87:
5c:54:59:c0:4c:32:b7:56:b1:fc:99:c8:83:41:8f:
e2:4c:c2:a5:4e:77:8c:31:df:60:60:2c:0d:9b:3b:
fc:55:25:31:a1:00:39:f8:d9:6e:d8:ea:8e:eb:cd:
0f:47:da:bf:8d:1b:55:9f:44:e0:73:56:6a:97:a8:
31:25:b2:77:db:3d:e4:2e:30:32:6a:b5:46:26:c1:
09:b9:00:d7:c8:13:9c:4b:94:38:5b:06:27:44:1e:
f7:d2:0f:12:62:31:22:9e:1b:36:a7:f7:96:77:25:
20:a9:ba:f2:b9:06:fe:97:85:51:e2:18:24:9c:f8:
8b:bb:8b:42:78:6d:63:e1:8e:c0:04:6a:47:b1:4f:
87:f1:bd:83:66:d2:4b:d0:ea:a5:77:f3:1f:dd:13:
ff:84:69:0f:6d:69:8c:3a:f9:94:90:05:e6:5f:a3:
79:77:a4:9b:49:cd:e6:e8:88:50:a9:b5:d3:b4:70:
82:e5:33:ae:53:e4:5d:a3:13:66:41:87:51:41:67:
78:da:b9:44:6a:73:e3:6e:ad:9c:c4:3d:bc:6c:fd:
e2:06:eb:46:43:62:b6:62:a2:ad:a5:30:e1:c8:f4:
c0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D3:40:85:60:FE:66:D3:5A:3F:17:E0:76:14:AA:FF:08:FA:45:7F
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:82:1f:89:9a:77:68:38:06:17:6a:6c:38:da:6b:6b:35:2e:
26:93:a0:4c:67:23:81:6e:bb:4c:a8:cc:85:37:b6:3f:d7:75:
2c:11:98:d5:1a:82:ef:13:97:b0:1a:63:69:0f:a2:d4:c5:38:
4c:74:5f:7c:11:c9:74:08:39:4a:6f:53:0d:1b:cc:6e:26:3a:
90:df:bd:74:11:ba:13:72:d5:76:3c:55:a5:d6:50:1e:5c:51:
8f:11:66:e4:2e:b6:b1:e9:7b:d3:c3:37:57:49:f3:3c:60:ca:
28:23:03:4a:ba:dc:d0:02:46:72:a5:bd:31:f4:60:b2:86:0d:
55:14:fb:2e:be:35:90:cb:cd:ca:17:b5:aa:a1:b8:6c:4f:12:
79:ff:05:80:91:e1:05:a9:44:25:dc:69:7d:ee:7c:87:43:91:
08:92:53:71:d3:6c:5f:fe:99:76:5b:7b:09:0f:a3:c4:e3:83:
c0:04:cd:4a:d6:1f:55:b9:e4:50:e2:ec:2e:a1:43:12:a0:93:
35:4a:d8:09:9e:33:ac:7f:63:91:5a:b6:8e:76:0b:f6:e2:6b:
30:16:cb:3a:68:39:cf:33:c5:93:99:53:bc:bf:55:d6:9c:cb:
59:31:a7:73:50:f6:21:49:e5:11:81:9b:15:bc:47:c8:67:a2:
12:55:cb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 17:08:25 2026 by rpki-client