Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: lgvnHymFPEhW9C2dMCAC2SaeVND8npF7J3K1RJhiSiU=
Subject key identifier: 7E:A5:21:89:D8:5B:CD:24:3E:80:FC:AA:23:2B:9E:94:E3:C2:1D:AB
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019D378958B197AF3DD9662362D7A9C3B683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 18A0
Signing time: Sun 29 Mar 2026 03:00:41 +0000
Manifest this update: Sun 29 Mar 2026 03:00:41 +0000
Manifest next update: Mon 30 Mar 2026 03:00:41 +0000
Files and hashes: 1: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (hash: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE=)
2: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: z8m4YBdrzhW0V6YIPRU5cGp6qu/xS6TWqzxAC6rbjqA=)
3: 3mS5hMWhKlnGO3h-ssMwusOTMaM.roa (hash: f29QqM6z7OhHISNe7rHupfilJIPnryz8YS8+zsLSDfs=)
4: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (hash: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw=)
5: N3iKduG1KyGp7acBh2WOJ0MD0zU.roa (hash: jQXzbIYq6Zxo8qPqawC1/jXuZoeWXKzx3rtmVr5KlSs=)
6: ZiRnzXkcSpJurhu_MyLUWMF4fjw.roa (hash: wqIirvJk9KhRbYG9hrmkySthdI26YxcHRINCM7935BQ=)
7: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (hash: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:58:b1:97:af:3d:d9:66:23:62:d7:a9:c3:b6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Mar 29 03:00:41 2026 GMT
Not After : Mar 30 03:00:41 2026 GMT
Subject: CN=7ea52189d85bcd243e80fcaa232b9e94e3c21dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:b2:70:ad:22:b0:0f:01:08:a3:36:64:38:38:
17:17:14:3c:9d:c0:db:15:b9:37:02:83:af:7a:84:
d6:7e:fc:62:42:f2:43:14:20:d1:e5:a0:e4:35:3a:
a3:35:4c:86:53:57:2f:1f:4f:1e:cd:df:ac:ba:83:
e4:ce:da:75:b1:bd:ed:a6:9c:57:3b:d7:ca:4b:e9:
ba:5e:0d:56:1d:d4:10:e1:c7:fe:06:7f:35:bc:6d:
44:ff:a4:a5:44:33:9b:fe:78:7c:a7:48:77:86:57:
f6:1e:91:73:25:18:ce:75:c7:f9:29:ea:4e:e5:8f:
3b:bb:47:81:86:46:65:e7:9d:8a:31:00:20:06:84:
42:f8:ee:34:4e:b8:d3:11:e4:63:f3:ca:27:39:7e:
7a:d8:b0:de:ae:09:e4:26:63:22:c1:a7:c1:af:3d:
bb:14:e9:a3:b9:85:6b:f1:5d:c8:d1:fc:c8:51:80:
01:27:d8:3f:9f:a6:dc:43:46:26:68:15:5f:f4:5a:
35:7d:94:16:1e:ef:ad:d0:8e:79:a5:e1:bf:c2:29:
ad:56:9d:c1:e8:80:3d:ec:de:90:07:b1:3d:90:d2:
39:d0:c4:70:d9:a6:2a:8e:79:c1:d4:45:97:33:d1:
bb:4a:84:6e:a9:90:6c:f6:5f:38:6e:46:54:50:8a:
70:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A5:21:89:D8:5B:CD:24:3E:80:FC:AA:23:2B:9E:94:E3:C2:1D:AB
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:70:80:ee:33:84:6b:16:77:7a:85:11:1c:a0:d7:c7:82:d1:
fa:43:34:e6:00:ec:58:5a:48:04:e5:65:d1:32:fd:3a:89:a4:
41:21:b3:66:5e:6a:03:8f:15:3f:2b:c9:6f:5f:02:ec:65:d6:
b0:de:b2:b1:f0:17:6b:53:33:6f:56:f3:a3:3e:9f:19:6e:2b:
e4:ff:b1:7f:4c:79:f7:f6:b5:85:84:f3:ea:1c:f8:50:a1:a9:
68:7e:a5:96:b1:92:39:1a:dd:27:b2:57:09:11:c4:ac:79:2b:
ba:2f:24:75:5a:e3:68:83:f7:b5:05:bb:43:95:75:4e:85:08:
c3:70:34:bc:da:af:0a:61:dc:ab:b2:4c:fe:b4:1c:d8:0f:c6:
d6:d5:d4:2c:6c:41:aa:9f:6c:61:8a:ed:53:b6:7e:3c:5a:26:
29:01:3d:9a:b4:6a:c2:55:a9:2d:cd:3c:55:1d:3f:f5:65:c5:
6b:d3:de:83:1f:ce:11:9a:4c:86:8f:c2:a3:38:fe:71:ff:42:
4a:f8:ae:79:01:18:ce:ff:a1:2d:a1:7c:c2:8b:50:d3:71:50:
aa:d0:41:5b:e1:b0:de:1b:49:4b:cc:cd:7b:2c:9a:e3:69:df:
cc:a0:27:fb:fb:e3:2d:65:66:66:ac:f8:29:7f:48:b2:62:c4:
a2:3a:3e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:30 2026 by rpki-client