Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: HdBg4NTNHXt+PxMMtiem8fXgdn+WnTrKdpLi+hCJL44=
Subject key identifier: F0:02:2D:24:10:79:BC:5C:FD:92:3A:A6:68:E6:9E:03:90:0F:01:39
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019CF316155BCBB8B1174A5BB095A136C9B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 17CE
Signing time: Sun 15 Mar 2026 20:00:36 +0000
Manifest this update: Sun 15 Mar 2026 20:00:36 +0000
Manifest next update: Mon 16 Mar 2026 20:00:36 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: U05o4LnOqQQr4Q2MD4lLsz+AqQK0LrqKHkh3iajjCJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 15:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f3:16:15:5b:cb:b8:b1:17:4a:5b:b0:95:a1:36:c9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Mar 15 20:00:36 2026 GMT
Not After : Mar 16 20:00:36 2026 GMT
Subject: CN=f0022d241079bc5cfd923aa668e69e03900f0139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:76:51:af:ab:00:15:24:de:7f:02:d6:f0:4d:
5a:69:7a:50:ff:53:7d:4a:33:40:5a:a2:22:a7:32:
5f:c7:8b:59:d0:9f:94:8b:31:bc:4a:34:2a:eb:9c:
be:bc:94:da:e6:4b:e6:96:7c:0e:48:7e:12:b9:cb:
97:a3:87:93:0d:d8:92:fc:b9:b7:06:fa:da:2f:ab:
f8:8f:8b:e6:91:e3:84:cd:a1:83:49:f9:53:d5:80:
df:9e:5f:bd:41:df:4a:4c:eb:9f:96:a6:f8:8f:a7:
b9:9d:0d:b0:3d:87:87:45:b9:d2:96:b0:45:2d:cd:
33:27:be:7a:24:af:88:6f:7e:66:33:84:c5:b4:e9:
aa:e7:4b:5d:57:81:36:87:1e:b5:ac:88:21:66:a6:
d3:75:19:b7:24:b9:f9:42:91:ee:32:80:dd:12:cf:
bb:1d:ed:4c:a5:ce:9f:01:0a:86:c2:20:9d:2b:e0:
a1:6f:24:d9:5c:b2:14:e9:3c:11:28:a7:0b:0c:2e:
cd:e5:2b:3f:a8:01:d8:94:d3:59:de:7d:81:a6:88:
70:32:a3:2f:09:63:e7:e3:01:0b:b7:fc:ea:7e:9f:
09:4b:13:20:aa:fe:2a:36:5a:fd:5d:d9:d1:b5:f2:
0c:51:d1:b6:16:40:60:bf:f7:da:27:ad:e7:87:07:
1c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:02:2D:24:10:79:BC:5C:FD:92:3A:A6:68:E6:9E:03:90:0F:01:39
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f6:02:7a:91:0f:94:b0:2e:a3:b5:4d:8a:c8:12:31:68:72:
be:84:a0:70:f1:7d:6c:a5:6d:37:7b:4e:51:0d:8a:79:22:af:
b2:fe:a2:ea:2d:03:47:d2:46:25:df:7f:53:a0:73:28:1b:a5:
5c:86:84:9b:e2:87:0f:27:53:f9:b3:8f:b4:74:ac:fe:ba:b6:
1a:7e:99:11:05:80:70:c0:3f:1d:20:2d:90:da:ca:28:d3:f3:
cc:7f:38:92:35:79:c3:b4:12:46:2a:ba:22:0f:51:2c:f0:b2:
bf:31:e5:1d:6d:24:c0:31:6e:59:87:07:fa:34:c0:94:f2:84:
7b:4f:37:32:e0:b9:4a:91:b9:cd:33:2d:62:cc:45:84:5c:b9:
d8:8f:91:e9:24:5d:bb:ec:64:a7:95:42:a6:7f:aa:84:2e:3b:
83:3a:93:23:e9:de:d0:d0:13:23:39:ab:8c:88:23:42:da:e4:
9d:45:a5:7d:1c:15:9f:83:da:7e:9a:ae:e6:4d:d5:3b:43:1f:
4c:d7:df:8e:84:f9:92:06:f8:bd:41:2b:d0:d0:26:96:72:c8:
2d:cb:7d:fe:e1:e4:1b:1a:8e:23:90:ca:9a:3d:57:b4:8f:26:
be:4e:3f:70:b6:7b:80:83:86:08:9f:db:e9:95:32:cd:74:9d:
52:92:9b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 15 23:49:45 2026 by rpki-client