Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json)
Hash identifier: 4aBg0Mh7ceMFIS6IbtmLYSyS5TBFSy3PBv+mzIWO4Aw=
Subject key identifier: 99:11:12:0C:13:66:BC:6A:96:D2:55:47:95:19:7D:9A:C4:CC:19:17
Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Certificate serial: 019D389C1BD26D58663D417D0C12C342708A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
Manifest number: 15D2
Signing time: Sun 29 Mar 2026 08:00:47 +0000
Manifest this update: Sun 29 Mar 2026 08:00:47 +0000
Manifest next update: Mon 30 Mar 2026 08:00:47 +0000
Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: nbvpXTfsc0k2xVOi2FTQpQgPDpIvjczQLKZ2A8erVOI=)
2: wqVFEVjqEKEx9wlcMLA5-tVt-do.roa (hash: 26IFOLWA08mHoLUA2G9c2LdLUfKfMB5SGvlKCRZq35g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:1b:d2:6d:58:66:3d:41:7d:0c:12:c3:42:70:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Validity
Not Before: Mar 29 08:00:47 2026 GMT
Not After : Mar 30 08:00:47 2026 GMT
Subject: CN=9911120c1366bc6a96d2554795197d9ac4cc1917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f0:1d:97:11:bf:cb:3f:d3:84:36:22:14:7b:
67:4d:67:e0:a3:a6:e8:aa:6a:92:12:29:31:ac:12:
de:38:71:74:40:b2:a2:34:3d:dc:b0:53:37:cc:97:
bf:e6:db:1e:2b:37:86:6d:a4:0f:39:9d:2c:93:60:
54:ab:68:41:e6:10:17:c4:7b:ef:84:d0:60:59:0d:
86:74:b5:77:f4:81:3a:dc:de:13:82:80:d2:56:69:
45:81:1f:16:cb:3d:98:9b:bf:ac:b6:4a:b3:6f:2c:
47:43:33:dc:7d:69:74:cc:86:27:0e:6b:2b:0a:89:
9a:3a:78:42:2a:38:73:18:42:11:89:62:8f:be:c8:
ca:fd:dd:ed:34:5e:f3:98:93:01:b6:85:6f:03:9a:
cb:e0:0b:52:5a:2d:4f:71:e5:b9:e6:d8:67:49:71:
75:9b:fe:0f:bc:ac:8b:f3:64:46:0a:8c:ca:29:6c:
2c:36:57:a3:e3:11:9f:4d:57:0b:27:2c:c2:44:c4:
f8:43:cb:fd:e3:c3:53:c7:b7:b6:c3:ff:76:f0:ec:
e1:8e:96:34:e0:15:d5:2f:53:61:1d:b8:a0:bc:c7:
46:4b:3e:12:93:7a:1e:e7:65:ba:d3:76:cf:75:36:
7a:ba:72:33:0f:01:28:1c:59:f8:dd:1e:f5:e1:c5:
8c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:11:12:0C:13:66:BC:6A:96:D2:55:47:95:19:7D:9A:C4:CC:19:17
X509v3 Authority Key Identifier:
keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:58:05:1e:d5:46:46:01:8f:0d:c3:13:4b:88:d5:eb:c5:59:
f6:7d:e6:68:35:fb:26:d6:ea:30:b3:cb:a1:fb:c8:64:d6:15:
39:96:b1:74:c7:51:73:fb:68:da:27:5e:98:5c:8c:a9:b9:ce:
48:08:40:7c:be:9d:3b:f6:f6:2e:2b:ba:d2:5d:a5:31:3b:e5:
2f:0f:89:82:f2:9c:fc:7f:c7:07:10:89:1a:00:21:44:ec:99:
6d:88:29:80:35:0e:bb:fb:14:53:19:1b:c2:a1:59:54:90:39:
fa:95:3a:01:66:89:3b:23:f7:bc:d7:eb:c7:c7:8d:ec:6a:25:
b7:16:1f:fa:91:5b:31:71:3b:44:8b:84:7f:24:f0:0f:d8:1b:
4f:1b:87:f1:df:a0:76:55:49:d0:59:f3:d7:19:fc:58:4d:a0:
57:83:7c:59:44:b1:a2:98:d2:48:a9:b8:ca:35:63:fe:6e:74:
a4:11:db:68:e8:c9:bf:e3:0b:dc:1a:a9:ea:dd:2e:3e:45:b4:
8a:09:fa:9c:e9:9a:33:e9:07:c0:f1:34:94:3b:3a:49:98:29:
a2:fc:9a:b5:12:9a:e2:2c:ad:4e:07:23:12:33:1a:fe:89:86:
93:dc:b7:35:f2:47:b6:d7:ae:d9:6d:98:ee:26:9d:c8:7f:60:
b7:2c:e6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:09 2026 by rpki-client