Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: aIxm/cGF7MngRpodZetxkyDU//bV9/Xa58pLPRZnhPU=
Subject key identifier: EC:27:0F:AF:00:9C:10:37:AC:4E:97:04:C1:77:0B:D5:E6:99:51:9C
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019D37F78B653965479AD120A471F4828A00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 05:01:03 +0000
Manifest this update: Sun 29 Mar 2026 05:01:03 +0000
Manifest next update: Mon 30 Mar 2026 05:01:03 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: DOJ+FYOSle0DE1IIKi04ZTfYi3CINzCh6uXm36Z4dY0=)
2: IBEMSBQMUEmyoGfT9mnmlgVNZhU.roa (hash: SbS7D44DDA57I288AbbBNyIpLwW/oby6dFq63a7XwRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:8b:65:39:65:47:9a:d1:20:a4:71:f4:82:8a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Mar 29 05:01:03 2026 GMT
Not After : Mar 30 05:01:03 2026 GMT
Subject: CN=ec270faf009c1037ac4e9704c1770bd5e699519c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3e:02:fb:e6:cd:94:e8:bb:2e:3e:dc:be:93:
10:6e:09:38:43:ae:44:bd:4d:33:e5:c8:a4:fe:96:
11:06:a5:82:78:6c:46:35:96:50:27:e2:60:c2:f0:
f5:08:a4:57:61:8e:29:44:c5:ba:bd:c8:69:23:3c:
02:53:48:e6:42:b3:b2:14:85:c1:94:15:88:ef:71:
c2:75:1e:56:38:9e:de:d4:a4:a6:9a:0c:c9:e1:8a:
91:61:a1:4e:d3:c8:04:ed:c9:3b:f2:45:48:84:91:
29:16:be:0f:1f:54:24:2f:33:5d:7f:7f:4f:9a:9f:
16:a4:72:7c:69:b4:58:68:7a:3e:d9:7b:0c:01:3c:
e0:f8:28:d8:e7:2f:33:0b:30:47:a5:f0:3f:ee:3c:
0e:58:31:76:12:af:6f:de:42:c9:d5:8d:b0:8d:6d:
f3:e8:f4:7a:d1:a1:55:cb:d9:91:6d:44:28:b9:bb:
da:b1:82:6b:81:05:2d:c8:e9:b9:81:ec:97:06:e9:
7a:83:bb:d1:76:a5:54:2a:a5:b0:26:21:f5:b4:7d:
4c:a1:90:40:6c:05:e0:b4:1d:79:cc:77:03:6a:ac:
d4:c8:16:89:46:7a:eb:a8:72:82:a0:55:04:7d:62:
5c:fe:a4:69:87:df:4e:6e:72:87:68:6e:ef:4e:20:
a2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:27:0F:AF:00:9C:10:37:AC:4E:97:04:C1:77:0B:D5:E6:99:51:9C
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c6:0d:23:9e:4b:87:95:7a:94:7a:27:1c:35:01:e8:4f:bd:
f0:ce:b4:2a:ab:a2:65:57:f6:32:0d:ec:cc:04:93:f9:e0:89:
cf:57:33:2c:0e:35:07:af:d6:29:a0:66:88:99:be:78:13:9e:
be:fc:ef:1f:ee:cf:33:e6:bb:80:01:d6:1e:d4:41:c5:b8:3f:
02:13:7c:98:f0:0f:57:fe:1e:c1:45:3f:38:06:b6:2a:5e:13:
48:2b:21:62:a9:97:e1:d5:37:14:45:d9:05:8d:d9:cc:b7:58:
9d:fa:62:7b:02:48:eb:b8:fc:00:bf:a9:78:28:ff:43:99:8f:
01:2c:1a:b7:01:71:b7:57:9f:8b:a5:f6:3d:f8:c5:dc:63:a2:
a9:84:52:52:cd:7a:7e:78:8d:be:77:a3:34:66:76:83:f9:73:
59:1a:5b:8e:e3:8d:69:be:79:a9:57:94:db:59:e2:e9:aa:f7:
3f:90:c4:f8:71:1c:2f:7e:5e:fe:f3:94:4c:32:5a:58:1f:f3:
24:5a:27:a9:66:44:36:e6:f4:8c:2b:b3:3a:45:06:7c:63:b2:
86:9d:99:cf:19:63:c4:fe:63:2d:8e:70:ae:d4:4d:72:a1:31:
76:b8:3c:bf:84:53:2e:45:77:c6:eb:91:c7:81:04:dd:8e:31:
54:d7:8f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:32 2026 by rpki-client