Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: 4ZH/j4StJvcChRqFG5KoAYZGCUZGmz2N+iXoCfWGgCc=
Subject key identifier: E2:8C:D4:11:0B:6D:3C:EC:49:F3:A4:FB:45:17:37:CA:9F:F8:B2:39
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019DEE249A39A7EAF080E7E8146124558E98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1850
Signing time: Sun 03 May 2026 14:01:09 +0000
Manifest this update: Sun 03 May 2026 14:01:09 +0000
Manifest next update: Mon 04 May 2026 14:01:09 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: 89GaPj9KbxMJ62/ZI0MXSanlTOPkhC3IEUfNHyYDNt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ee:24:9a:39:a7:ea:f0:80:e7:e8:14:61:24:55:8e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: May 3 14:01:09 2026 GMT
Not After : May 4 14:01:09 2026 GMT
Subject: CN=e28cd4110b6d3cec49f3a4fb451737ca9ff8b239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:62:0d:cf:e3:20:84:61:fa:44:7b:7b:26:
b5:3a:10:92:93:49:ac:50:bf:16:92:34:a5:6f:9a:
8a:a4:8a:1b:65:24:de:75:3d:32:52:96:27:c7:fd:
51:0a:19:db:74:54:0b:66:4d:7e:53:9f:09:34:45:
32:90:6f:85:ee:79:9f:6f:fe:9e:90:32:28:56:88:
23:ad:f9:db:22:e8:61:79:ca:25:4b:ef:a2:60:eb:
ce:ce:2d:e1:cd:4c:3c:fb:4b:67:9f:11:4c:65:e1:
6d:37:64:7f:1c:14:07:a3:fe:1e:5b:f0:61:58:9e:
86:09:53:1f:2e:cb:9a:ad:95:dd:b9:47:7c:15:7e:
35:41:ea:a6:6c:9f:9d:ff:59:ae:50:d2:b2:b2:59:
11:53:05:d9:1d:25:dd:53:e3:98:f6:e9:9e:e5:6e:
ed:9b:b4:c2:85:84:cc:04:1c:a7:04:78:e1:b0:d1:
dd:85:83:17:1c:be:6c:6f:22:f6:f8:2f:b7:8d:4e:
6e:19:a9:34:d8:d2:ef:3c:32:9a:76:eb:73:54:85:
f6:ad:8d:c6:28:11:bd:4b:57:b8:f7:fc:53:61:34:
33:c1:49:2f:ae:68:af:db:87:fe:c6:1e:d5:6e:22:
c6:f7:40:ee:ac:eb:28:6c:d5:a6:e3:76:b8:21:f4:
2e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8C:D4:11:0B:6D:3C:EC:49:F3:A4:FB:45:17:37:CA:9F:F8:B2:39
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bb:69:e2:54:15:ad:be:04:45:e9:be:4d:b2:85:fe:4a:5a:
9a:63:84:8b:0b:ab:91:21:5a:38:2c:76:b9:57:74:50:20:39:
7b:6a:b0:94:61:57:78:7b:02:9d:d3:f5:6b:bb:49:75:32:33:
38:55:1b:21:ea:69:7b:57:10:69:76:48:9f:ce:ea:98:52:f6:
66:3d:52:89:73:f8:2e:b1:ca:f5:c7:3f:ff:51:3b:1c:85:74:
63:db:ca:34:2d:7f:f3:46:f3:2e:8e:5d:e7:d7:5c:7d:d5:36:
ee:db:bf:c4:ea:2a:4b:c3:bf:b6:23:bb:a7:1b:51:c9:f8:e7:
3f:fa:a1:d5:ca:63:84:6c:14:3c:19:3f:b0:f0:77:8b:c0:09:
ce:7f:5b:c4:74:9e:86:77:7f:1c:29:d2:0f:e5:de:f3:86:d3:
b8:85:a8:d4:88:79:9d:f3:14:1b:35:7a:4c:06:f9:64:ba:87:
54:44:d3:d5:fa:7d:5d:43:01:ca:a9:22:d6:90:d3:09:0f:dc:
98:16:5a:b6:44:df:a8:75:5a:ac:c1:65:9c:07:8d:ac:10:70:
4d:1c:bc:b7:1f:99:e4:c9:7d:4e:6f:bf:f2:0b:47:15:29:03:
c6:81:93:12:00:b0:56:3a:3a:26:5e:9e:8e:86:f1:74:90:53:
9a:0d:05:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 21:56:53 2026 by rpki-client