Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: 14MkqEAWd1DTxRryDcGMAwVEShoKel0YRbGXtyOi5hE=
Subject key identifier: 47:10:5C:50:8A:56:F0:CE:81:4B:FF:55:37:06:38:3E:9B:3C:D8:BB
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 019D382E23111AB49FF2444A4BCAF6684F7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 0618
Signing time: Sun 29 Mar 2026 06:00:40 +0000
Manifest this update: Sun 29 Mar 2026 06:00:40 +0000
Manifest next update: Mon 30 Mar 2026 06:00:40 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: JTI6JybIsMmwVO3qdazZJWLnz/q0ISk1qOocKz65ZCY=)
2: S_RLG-qdyAaQjiZGgL5sIfI-AYY.roa (hash: yQu9ZmP/q7jsTu4yw/AuWtFPXstyX5q6aeR1beEfVWY=)
3: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (hash: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:23:11:1a:b4:9f:f2:44:4a:4b:ca:f6:68:4f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Mar 29 06:00:40 2026 GMT
Not After : Mar 30 06:00:40 2026 GMT
Subject: CN=47105c508a56f0ce814bff553706383e9b3cd8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:15:48:62:b8:28:c4:ac:31:a8:97:9a:79:74:
1b:f8:3f:97:96:34:83:cb:47:ff:58:c2:f7:5b:b0:
b3:7e:1c:40:89:f7:d0:cc:b3:44:fb:5e:7d:b3:65:
f8:0f:d3:8b:b2:3e:d1:f5:eb:37:0b:f9:d9:65:7e:
18:e4:7c:36:95:f7:fa:7d:97:36:7a:30:72:75:3a:
fd:df:90:a8:16:e4:78:68:88:dc:ac:1f:9f:da:00:
d7:d3:e9:c3:f4:82:d1:92:3c:7b:74:13:11:8a:b7:
dd:fb:88:b5:0d:13:4a:e9:79:d9:3a:0a:fc:b9:7e:
47:1e:c3:a5:ef:d5:e3:4c:68:16:a5:cb:02:c5:66:
7d:22:b0:8a:e8:c3:d5:13:30:12:e8:55:9a:9d:6e:
eb:c9:32:3d:fd:c2:7e:22:12:59:78:0e:39:c4:9f:
e6:7b:3e:ea:5b:30:3f:e2:fd:50:d2:2a:33:e3:c9:
32:e2:ae:b8:60:87:cd:b8:69:61:00:81:9e:10:49:
85:51:6e:0c:c1:14:ea:b2:63:cf:35:1e:ab:d4:7b:
2f:8a:e4:ca:44:31:e4:2d:47:8d:39:7b:a1:7c:70:
2c:4d:12:a7:eb:3f:f2:a8:68:45:b6:5e:9a:d9:12:
c6:c5:c5:4c:8c:6d:32:9e:5c:49:50:fe:3d:83:e0:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:10:5C:50:8A:56:F0:CE:81:4B:FF:55:37:06:38:3E:9B:3C:D8:BB
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:62:2a:d1:ac:a2:e8:d7:61:b8:55:ec:50:72:8a:07:88:f0:
9a:87:c3:b0:40:f5:54:75:7c:b4:46:7c:41:46:9e:6c:50:79:
b7:db:6e:ac:fe:6a:bd:1f:96:a6:09:7c:14:df:58:14:9f:b1:
d0:8d:16:d1:8b:30:fd:04:f1:75:f1:75:04:8b:ee:2a:b4:c9:
c2:b8:2f:f9:e2:ea:de:f1:18:d9:79:53:db:d2:06:90:78:7d:
94:b9:a1:92:a3:d2:ea:43:ac:fc:b0:da:de:dd:68:3c:38:a0:
d2:91:ef:de:4c:32:37:c7:df:48:85:dd:69:b9:38:e7:d1:a5:
a5:85:d4:0b:71:8a:e4:3a:56:77:6b:3e:ca:74:a9:92:cd:95:
94:d5:e5:4a:ad:d4:e8:af:0c:51:6b:12:a0:6b:03:9b:76:72:
d3:12:d1:74:bb:d9:21:04:fb:f3:38:39:25:a2:86:2c:67:eb:
07:50:07:61:4c:80:ce:45:d8:9b:c1:36:dd:2a:12:46:2c:e6:
02:81:24:aa:18:62:3a:a6:14:6d:05:a2:6e:e6:79:d0:07:1e:
e7:68:a7:ed:89:05:ec:b6:eb:04:ae:59:e4:bb:3e:07:31:a6:
9b:40:7c:4c:5e:69:99:e8:96:42:37:b4:62:10:e6:35:4f:a1:
c0:37:85:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:13 2026 by rpki-client