Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
File: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft (raw, json)
Hash identifier: y7cs/H3STgV5wk4z/9vXIvg5hqPNd6xLZmQpvelwe4U=
Subject key identifier: 39:51:59:C3:2F:EF:5A:84:F8:5C:A7:01:C2:73:C5:7C:1C:83:BC:D4
Authority key identifier: DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
Certificate issuer: /CN=daf0a39cfadf910f6b132ad228e606561887a06c
Certificate serial: 019D3A1C2C7BA386D7F461E3BD2382DDF8E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 15:00:18 +0000
Manifest this update: Sun 29 Mar 2026 15:00:18 +0000
Manifest next update: Mon 30 Mar 2026 15:00:18 +0000
Files and hashes: 1: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl (hash: Ov7zWoszjwG9JEN3munenWJyMvdKV6g+N3aqK/y84+k=)
2: kX0ln8n5R4ckT5blpr2Q8T6dxyw.roa (hash: m+DqRW/7H7lJLeLV4xP2QSBsOS0wlhVWEX4nGDQ/zJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:2c:7b:a3:86:d7:f4:61:e3:bd:23:82:dd:f8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daf0a39cfadf910f6b132ad228e606561887a06c
Validity
Not Before: Mar 29 15:00:18 2026 GMT
Not After : Mar 30 15:00:18 2026 GMT
Subject: CN=395159c32fef5a84f85ca701c273c57c1c83bcd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ca:e6:93:30:6b:20:a9:42:42:3f:77:64:e7:
4f:53:05:13:97:40:e6:8d:61:d7:85:69:ee:48:fd:
65:d3:12:56:b3:6e:45:32:b6:12:9d:1a:72:b9:2d:
a5:17:4f:72:26:69:81:5e:bd:f4:c4:08:c6:98:d8:
a4:d6:45:3a:76:07:13:07:d2:29:d3:14:a4:4b:9a:
a2:b5:f4:02:f3:fe:5f:ac:f4:78:ad:e6:34:db:9b:
93:fa:4a:c5:18:1c:b6:76:d5:eb:37:dd:96:50:63:
7b:8d:bb:f0:16:bb:76:a4:a5:86:0d:f1:17:a6:4e:
4e:b1:0d:11:81:a4:0a:3f:53:83:26:35:76:cf:95:
49:ae:a0:a0:aa:f7:16:eb:2e:89:c6:83:61:f8:ef:
d2:23:37:90:1b:a8:e6:43:6d:0b:25:aa:56:80:28:
e9:ba:7e:c6:90:eb:2a:b3:e6:3a:6e:7f:65:e3:93:
b7:f5:b1:f0:37:77:0e:88:18:ff:2b:93:66:7b:1a:
a2:cf:2d:cb:0f:29:67:85:b0:ac:07:50:25:d4:a6:
72:a7:52:72:13:d8:76:17:75:b7:f3:5f:2a:ce:7a:
1a:64:c7:e7:2e:54:9d:42:d3:cc:75:18:f0:47:80:
7d:af:63:f9:c3:ce:c6:5f:69:a5:16:ec:47:d5:14:
a5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:51:59:C3:2F:EF:5A:84:F8:5C:A7:01:C2:73:C5:7C:1C:83:BC:D4
X509v3 Authority Key Identifier:
keyid:DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:11:4f:3c:b0:c1:7e:3f:f5:b9:f4:a0:25:32:da:50:85:29:
ac:cb:9b:21:2d:24:47:f2:37:16:79:42:e6:e7:e8:a6:f2:19:
13:d2:69:24:7a:d0:cc:5d:37:94:cc:dc:86:5d:65:a1:cd:b0:
7a:9f:f6:45:6a:b8:f0:71:90:72:ad:92:79:93:d7:4e:ed:b9:
9a:3c:1e:34:ed:8d:1f:3c:e3:04:69:40:0b:1b:11:5f:60:74:
3e:35:98:10:5e:51:54:e1:4d:02:bd:f3:2d:38:74:04:9d:35:
d8:38:da:1b:8c:50:2f:ba:7b:df:a7:9a:a7:c1:bd:29:7c:19:
a1:30:70:bd:5e:cf:bf:f9:46:38:fd:38:21:dd:53:bc:2c:d7:
bf:9f:56:c3:a8:a4:c6:a1:35:39:48:43:48:41:d8:93:7b:cc:
ed:cc:d1:2f:9f:e3:49:1b:fe:57:d5:36:0e:35:70:21:8f:3f:
a4:01:f8:ea:8a:c1:87:60:80:60:3f:e8:f9:fc:16:7b:17:b1:
c7:92:01:37:c5:5c:17:36:6f:07:2f:f2:0d:4b:1e:9e:b7:ae:
36:31:ce:ca:bb:e9:8e:6d:28:d8:6e:64:67:99:eb:54:88:90:
22:27:9b:2f:03:a0:36:c1:de:4d:46:4f:d3:e7:b4:fe:83:00:
87:06:33:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HCx7o4bX9GHjvSOC3fjjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZjBhMzljZmFkZjkxMGY2YjEzMmFkMjI4ZTYwNjU2MTg4
N2EwNmMwHhcNMjYwMzI5MTUwMDE4WhcNMjYwMzMwMTUwMDE4WjAzMTEwLwYDVQQD
EygzOTUxNTljMzJmZWY1YTg0Zjg1Y2E3MDFjMjczYzU3YzFjODNiY2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8rmkzBrIKlCQj93ZOdPUwUTl0Dm
jWHXhWnuSP1l0xJWs25FMrYSnRpyuS2lF09yJmmBXr30xAjGmNik1kU6dgcTB9Ip
0xSkS5qitfQC8/5frPR4reY025uT+krFGBy2dtXrN92WUGN7jbvwFrt2pKWGDfEX
pk5OsQ0RgaQKP1ODJjV2z5VJrqCgqvcW6y6JxoNh+O/SIzeQG6jmQ20LJapWgCjp
un7GkOsqs+Y6bn9l45O39bHwN3cOiBj/K5Nmexqizy3LDylnhbCsB1Al1KZyp1Jy
E9h2F3W3818qznoaZMfnLlSdQtPMdRjwR4B9r2P5w87GX2mlFuxH1RSl8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDlRWcMv71qE+FynAcJzxXwcg7zUMB8GA1UdIwQY
MBaAFNrwo5z635EPaxMq0ijmBlYYh6BsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnZDam5QcmZrUTlyRXlyU0tPWUdWaGlIb0d3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9mZmE0NTctMzRjOC00OGMyLTllYmMt
OTJiMjA3ZjY0MWIxLzEvMnZDam5QcmZrUTlyRXlyU0tPWUdWaGlIb0d3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9mZmE0NTctMzRjOC00OGMyLTllYmMtOTJiMjA3ZjY0MWIx
LzEvMnZDam5QcmZrUTlyRXlyU0tPWUdWaGlIb0d3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdhFPPLDB
fj/1ufSgJTLaUIUprMubIS0kR/I3FnlC5ufopvIZE9JpJHrQzF03lMzchl1loc2w
ep/2RWq48HGQcq2SeZPXTu25mjweNO2NHzzjBGlACxsRX2B0PjWYEF5RVOFNAr3z
LTh0BJ012DjaG4xQL7p736eap8G9KXwZoTBwvV7Pv/lGOP04Id1TvCzXv59Ww6ik
xqE1OUhDSEHYk3vM7czRL5/jSRv+V9U2DjVwIY8/pAH46orBh2CAYD/o+fwWexex
x5IBN8VcFzZvBy/yDUsenreuNjHOyrvpjm0o2G5kZ5nrVIiQIiebLwOgNsHeTUZP
0+e0/oMAhwYzyQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:01:14 2026 by rpki-client