Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: ZwVNEa1ggTsc7XAMSOdbObrvx8wChN1G/z3fjkoHno4=
Subject key identifier: 7B:36:0D:45:52:01:CF:A3:A9:CE:22:EA:1E:13:1D:86:EC:06:7F:62
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019D37F76464D2A7AA55A8C7DF09032988D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 05:00:52 +0000
Manifest this update: Sun 29 Mar 2026 05:00:52 +0000
Manifest next update: Mon 30 Mar 2026 05:00:52 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: uNcKqPx1icuxSZc49zvUelQCwrEt2OMQVfPO3XwcOnw=)
2: H5rz4CYgzmbUmnfGasi4U65AvKk.roa (hash: TO3cNYf9xWtPGa2S3JS5FwJuRn8xpuHQxouafZFM9ao=)
3: qrZor_4iuHhjWECNHuPoqjZgwRM.roa (hash: jTjQTNz6GwiMBlghpXe7c+6S4Cn1ehIr1K8g9CB/9Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:64:64:d2:a7:aa:55:a8:c7:df:09:03:29:88:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Mar 29 05:00:52 2026 GMT
Not After : Mar 30 05:00:52 2026 GMT
Subject: CN=7b360d455201cfa3a9ce22ea1e131d86ec067f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:07:b5:fb:c5:d2:32:49:ad:9e:f2:13:2b:90:
18:b1:43:d1:b6:33:2f:60:83:2e:83:06:ab:f3:27:
db:c6:f3:74:9d:c0:41:1b:fa:84:a6:6f:64:f1:bf:
c7:cc:43:1d:63:9f:f9:c8:e5:8b:dc:ab:b2:34:1d:
6e:e6:04:16:18:29:d9:b0:4d:a1:65:23:b5:18:44:
1a:de:5c:26:d1:64:13:77:3e:ad:20:96:af:6a:ff:
10:5d:ad:2d:cb:59:8c:0c:71:e3:cf:08:16:2a:ee:
a2:cc:9c:12:d1:8d:86:38:b2:3b:6e:34:b8:b8:00:
91:dc:c4:f9:07:8c:cb:49:61:26:6c:88:a9:dd:d8:
c3:56:de:d7:25:82:94:87:93:0f:d2:0f:2b:63:ca:
4f:f3:ac:9f:fa:76:9a:11:1d:0f:b1:92:b3:f8:62:
b8:55:2e:52:f2:2a:c3:09:26:77:b0:3c:95:4e:f5:
bb:88:14:d2:f7:f0:14:49:83:86:35:9a:29:ae:20:
cf:7e:e7:47:77:96:ae:91:3b:97:d6:9e:a5:16:64:
c8:25:94:76:5d:e3:70:81:13:a3:a6:97:77:91:c2:
4f:22:5f:29:4e:14:e5:d4:83:21:d6:ad:b9:b4:d7:
4e:2e:0f:cf:18:06:1c:8e:11:e4:fa:29:93:b4:2c:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:36:0D:45:52:01:CF:A3:A9:CE:22:EA:1E:13:1D:86:EC:06:7F:62
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:cb:06:26:31:54:ed:a9:6f:93:d7:0e:c4:dd:a9:33:8a:4e:
dc:2c:36:27:67:2a:fd:f0:e5:61:b6:d9:a4:c3:ec:37:a6:40:
30:56:c6:d9:df:6a:6a:be:f8:0c:c6:a1:78:10:d5:5e:b4:99:
18:de:03:37:35:e2:09:76:53:2c:79:2c:36:e5:5a:70:f0:8a:
e5:33:0b:ef:4f:2a:11:60:db:ce:ab:b6:72:6f:ca:bf:26:f6:
a2:6b:9c:54:f7:e4:9a:a8:06:f0:93:51:79:36:1a:0d:b9:ad:
c2:0e:57:76:a8:b8:79:2a:d9:0d:96:6b:1f:7c:13:29:1f:8c:
6d:48:63:71:b8:2e:45:56:1f:b0:78:53:9d:2d:0b:c4:c1:32:
c4:70:7c:e3:9d:1e:3e:1e:2e:11:e8:04:62:5f:9d:30:1e:dd:
7a:09:15:37:a8:86:8c:f3:0b:2f:f8:31:75:5f:b4:4f:94:fa:
bc:11:a0:4a:84:ca:7d:3c:4e:46:e2:8a:ce:4d:b2:63:7e:92:
16:64:01:bf:92:d3:6f:87:d0:92:8f:99:ce:71:89:d6:be:58:
28:ee:c9:9d:8c:45:de:34:1b:8c:9d:a5:8e:e3:e6:2e:9a:42:
05:1b:93:99:20:f5:99:97:f5:47:68:fb:1d:40:b9:92:f7:1e:
ac:e1:97:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0392Rk0qeqVajH3wkDKYjUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTU2ZTJkNjNhYzVkYTliZWQzNWRhMDFjYmZhZDIyNWYw
NGJlYjAwHhcNMjYwMzI5MDUwMDUyWhcNMjYwMzMwMDUwMDUyWjAzMTEwLwYDVQQD
Eyg3YjM2MGQ0NTUyMDFjZmEzYTljZTIyZWExZTEzMWQ4NmVjMDY3ZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4we1+8XSMkmtnvITK5AYsUPRtjMv
YIMugwar8yfbxvN0ncBBG/qEpm9k8b/HzEMdY5/5yOWL3KuyNB1u5gQWGCnZsE2h
ZSO1GEQa3lwm0WQTdz6tIJavav8QXa0ty1mMDHHjzwgWKu6izJwS0Y2GOLI7bjS4
uACR3MT5B4zLSWEmbIip3djDVt7XJYKUh5MP0g8rY8pP86yf+naaER0PsZKz+GK4
VS5S8irDCSZ3sDyVTvW7iBTS9/AUSYOGNZopriDPfudHd5aukTuX1p6lFmTIJZR2
XeNwgROjppd3kcJPIl8pThTl1IMh1q25tNdOLg/PGAYcjhHk+imTtCzKTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHs2DUVSAc+jqc4i6h4THYbsBn9iMB8GA1UdIwQY
MBaAFNilbi1jrF2pvtNdoBy/rSJfBL6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4Njct
ZThkNDdiYmEyNWJmLzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4NjctZThkNDdiYmEyNWJm
LzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA8sGJjFU
7alvk9cOxN2pM4pO3Cw2J2cq/fDlYbbZpMPsN6ZAMFbG2d9qar74DMaheBDVXrSZ
GN4DNzXiCXZTLHksNuVacPCK5TML708qEWDbzqu2cm/Kvyb2omucVPfkmqgG8JNR
eTYaDbmtwg5Xdqi4eSrZDZZrH3wTKR+MbUhjcbguRVYfsHhTnS0LxMEyxHB8450e
Ph4uEegEYl+dMB7degkVN6iGjPMLL/gxdV+0T5T6vBGgSoTKfTxORuKKzk2yY36S
FmQBv5LTb4fQko+ZznGJ1r5YKO7JnYxF3jQbjJ2ljuPmLppCBRuTmSD1mZf1R2j7
HUC5kvcerOGX1w==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:33 2026 by rpki-client