Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.mft
File: 2M_K6qcDvRAJO7OgXhfVXjEHJTc.mft (raw, json)
Hash identifier: stQzRzmUMEQbsaTzQ5puMsKGnlpOSveK5VKjPd+SSIk=
Subject key identifier: 59:6D:A1:7D:B8:80:5F:F0:0D:BB:97:26:A0:D3:6B:22:D9:E8:39:2D
Authority key identifier: D8:CF:CA:EA:A7:03:BD:10:09:3B:B3:A0:5E:17:D5:5E:31:07:25:37
Certificate issuer: /CN=d8cfcaeaa703bd10093bb3a05e17d55e31072537
Certificate serial: 019CC93E45453868363A7BD42BFD74738236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2M_K6qcDvRAJO7OgXhfVXjEHJTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.mft
Manifest number: 45
Signing time: Sat 07 Mar 2026 17:00:27 +0000
Manifest this update: Sat 07 Mar 2026 17:00:27 +0000
Manifest next update: Sun 08 Mar 2026 17:00:27 +0000
Files and hashes: 1: 2M_K6qcDvRAJO7OgXhfVXjEHJTc.crl (hash: qmGO3H63EXZXlc6t3wSgG0C7b9T+tpUFfLoT6yQjXNg=)
2: xiQvAVPOWmMsMsIO6z5gVHt7Q-Y.asa (hash: bYzR5NTvsD3Rkdru+CrJJqIOX0ZfMuE7+skUItcA04Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2M_K6qcDvRAJO7OgXhfVXjEHJTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 17:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c9:3e:45:45:38:68:36:3a:7b:d4:2b:fd:74:73:82:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8cfcaeaa703bd10093bb3a05e17d55e31072537
Validity
Not Before: Mar 7 17:00:27 2026 GMT
Not After : Mar 8 17:00:27 2026 GMT
Subject: CN=596da17db8805ff00dbb9726a0d36b22d9e8392d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d0:46:48:ce:c3:39:a9:5f:3d:05:b6:c4:41:
75:05:b7:2d:6b:26:f7:5c:0a:7f:ab:f9:15:fb:4d:
f5:c4:0d:43:17:85:98:0a:ed:7d:ef:c7:91:45:93:
0d:3c:04:a9:d7:1c:12:1a:c9:b7:52:8b:55:71:ae:
ee:60:a6:7e:82:6a:75:f9:8e:c2:12:90:8f:e3:15:
61:16:b8:11:21:67:f9:0c:91:af:b9:70:f3:ee:82:
69:18:c8:f3:2c:64:d1:bc:37:97:ed:dd:a4:54:d0:
c8:82:97:3f:da:08:cb:64:3e:24:44:c8:c2:a2:7a:
6c:55:3a:d5:80:ba:fb:e9:f0:e1:cb:3d:17:e2:66:
b7:78:07:0e:11:f7:f8:ab:d9:a7:6f:dd:0e:e6:23:
ac:13:66:e4:f6:02:1d:58:5d:d0:55:5e:71:19:b0:
2b:b7:fa:30:2e:a8:8a:81:bd:3c:ae:86:66:0c:13:
01:bd:8f:94:f9:de:34:66:ce:42:66:b9:60:5a:c7:
d7:86:e6:aa:8f:20:49:c0:55:b1:ed:13:82:a9:5e:
7d:1f:17:13:d0:7a:0b:49:6e:e9:03:61:28:5e:29:
bc:7c:d9:31:f9:e5:54:c3:da:e0:7e:51:4c:3a:35:
48:30:6f:c3:9f:6f:a3:c2:c4:ef:8f:aa:79:7f:f1:
71:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6D:A1:7D:B8:80:5F:F0:0D:BB:97:26:A0:D3:6B:22:D9:E8:39:2D
X509v3 Authority Key Identifier:
keyid:D8:CF:CA:EA:A7:03:BD:10:09:3B:B3:A0:5E:17:D5:5E:31:07:25:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2M_K6qcDvRAJO7OgXhfVXjEHJTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3ae28-3993-4a7a-b292-881444c30afa/1/2M_K6qcDvRAJO7OgXhfVXjEHJTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:31:32:8e:c4:10:df:1c:7e:75:5b:a8:ab:d5:cf:d1:09:8f:
f0:00:a4:a0:7f:68:48:d4:a1:9d:50:d3:f9:cd:39:b2:a0:2e:
af:b0:ae:ee:8f:1f:d1:0b:5b:2e:92:50:55:58:f6:cf:48:67:
56:ac:49:61:c9:51:c5:bd:6e:ce:e6:97:16:ca:a8:24:b5:50:
ab:fd:4a:90:fe:8c:77:55:aa:6c:02:cd:7b:40:26:01:fd:53:
67:a3:8c:b9:7f:a6:3d:1e:0e:7b:f9:7b:54:dc:a6:9e:8b:c2:
e0:de:16:fb:2c:a7:db:86:2d:da:2a:f7:4b:38:80:58:fc:c0:
64:69:c1:67:6e:54:64:00:a2:86:fb:32:ad:0b:f4:a1:d1:af:
8c:bc:3c:21:de:53:59:3d:82:86:f3:f0:9c:5b:ce:80:a9:3e:
ec:25:64:18:18:21:08:04:47:ad:53:f5:23:b4:e7:f2:77:4e:
67:cf:e8:87:d0:9d:d6:ee:78:49:ef:81:40:59:33:67:f7:32:
ba:09:69:60:40:c4:f0:52:cf:41:18:d9:58:84:7e:66:4a:24:
c1:52:07:99:47:06:61:7a:a1:d5:f6:f6:b5:4f:b4:9a:6f:ef:
a0:bd:e7:cc:45:06:c7:20:cf:4e:dd:66:02:68:ec:a3:7d:9e:
7b:f4:f9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 01:43:34 2026 by rpki-client