Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: AOZN4/hbc2L2sbzyXR4Wq3v8yoL82FcAZgvpvs73m1A=
Subject key identifier: 4A:DF:1E:50:F2:A3:8A:6B:AD:6B:DA:59:3B:FB:B5:51:F2:D5:03:57
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019D37F73E244F7CD3DE26640E4EB300EC70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 145D
Signing time: Sun 29 Mar 2026 05:00:43 +0000
Manifest this update: Sun 29 Mar 2026 05:00:43 +0000
Manifest next update: Mon 30 Mar 2026 05:00:43 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: xm6jeOHgRHJ/qT59bkImSR/OHgYl1sGnMlLZoA/DQSE=)
2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3e:24:4f:7c:d3:de:26:64:0e:4e:b3:00:ec:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Mar 29 05:00:43 2026 GMT
Not After : Mar 30 05:00:43 2026 GMT
Subject: CN=4adf1e50f2a38a6bad6bda593bfbb551f2d50357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:de:fd:a8:10:c0:51:22:14:1a:d2:d5:72:
63:57:a4:fd:10:6d:4f:e8:a6:af:26:8a:ce:0d:2a:
5d:8d:df:02:d6:9f:13:5f:43:ef:a4:23:ab:78:75:
8b:02:3a:4d:cd:93:4d:03:1c:2b:49:94:87:a9:50:
9d:49:ce:61:f2:00:90:b3:79:20:d3:cf:e5:79:45:
47:d4:30:5c:96:bc:75:ab:9c:e8:7a:74:1f:24:c3:
b5:ee:8e:89:ed:f0:56:19:a6:67:3b:d9:96:f6:a7:
f7:39:56:70:34:59:46:1b:60:01:0d:e2:96:eb:fc:
16:a7:c9:98:1f:0a:56:c0:d7:1d:af:40:8d:0c:87:
d8:18:1d:79:04:4b:87:15:a7:6e:37:6c:67:c1:8f:
12:c0:bf:45:6d:17:33:ff:3a:7a:57:1c:74:7f:c7:
20:11:0f:0d:60:e6:13:fe:38:08:df:3b:b8:00:b4:
de:6d:d0:f7:01:43:a3:3b:4c:7e:9f:ca:57:8a:e0:
aa:db:27:23:6b:e4:06:6e:91:ca:66:43:37:ce:6e:
83:21:c9:7f:71:f1:65:b6:f8:e2:b6:a9:90:6b:ef:
11:9d:4c:94:eb:3c:ae:8a:bd:52:b3:75:73:70:92:
02:1d:50:0c:42:e7:b4:03:df:86:9f:17:d5:27:62:
f9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DF:1E:50:F2:A3:8A:6B:AD:6B:DA:59:3B:FB:B5:51:F2:D5:03:57
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ef:59:64:1a:9d:67:f8:72:89:0d:a5:7c:b5:0c:2a:f4:ce:
f0:72:28:a7:d5:d0:72:4d:f5:0c:2b:45:af:83:0c:95:45:61:
af:e6:23:67:3a:a5:c8:fb:e8:e9:96:fc:31:28:27:6f:d7:5e:
8d:42:23:32:37:25:69:b2:49:ad:bb:36:4e:73:19:ee:df:93:
04:0f:ab:c1:08:84:c8:1d:f9:23:ba:d1:56:1f:d7:b2:82:5a:
d6:04:58:a0:bc:34:6a:9f:c4:50:49:c0:97:24:83:98:4a:83:
6c:a9:13:77:85:d2:7d:b5:b7:a5:d5:d6:da:f6:cc:ba:5c:85:
fa:71:74:ee:d7:66:a1:f8:22:91:bf:b6:0a:e2:71:7b:63:74:
5e:2b:0d:53:3b:b5:c4:8d:2e:90:2c:90:99:05:fe:d9:7d:32:
d8:d5:a1:8d:1f:57:1c:5f:e8:5d:ff:24:f2:49:9a:2f:05:9d:
9c:dc:45:a0:3f:54:21:dc:6e:a7:7b:20:8d:ae:40:69:12:52:
88:3e:a8:20:29:13:da:a9:22:13:e8:b7:2a:27:3e:4b:c0:76:
0c:3e:0c:8c:55:df:19:bf:e1:22:19:8e:79:6c:68:ab:c3:9c:
bd:53:68:d2:0d:25:e1:d8:5d:ba:d2:ab:93:17:00:c8:bd:b4:
37:aa:01:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:02 2026 by rpki-client