Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
File: 2lPr-vXBh42KIqk44XMqigdxTzU.mft (raw, json)
Hash identifier: mcTXBwBKJRxTkmUgFwnzyD27jNjDNxvDpbZW1PXf5s4=
Subject key identifier: F9:04:38:58:65:55:33:84:B0:CF:95:C7:D0:D0:6D:21:5D:46:0B:F4
Authority key identifier: DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
Certificate issuer: /CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Certificate serial: 019D39AF6EB5A75DA6F3E52CA54ECF999F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 13:01:31 +0000
Manifest this update: Sun 29 Mar 2026 13:01:31 +0000
Manifest next update: Mon 30 Mar 2026 13:01:31 +0000
Files and hashes: 1: 2lPr-vXBh42KIqk44XMqigdxTzU.crl (hash: pUYVBtOAQnwIP/QQgrFbdZezVvZjTzImeTZ/awBYylA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:6e:b5:a7:5d:a6:f3:e5:2c:a5:4e:cf:99:9f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35
Validity
Not Before: Mar 29 13:01:31 2026 GMT
Not After : Mar 30 13:01:31 2026 GMT
Subject: CN=f904385865553384b0cf95c7d0d06d215d460bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1d:1a:81:63:3c:1d:4d:1f:ef:1a:b0:ab:77:
35:fc:17:bf:f6:05:3e:03:db:95:3c:ab:7d:23:fc:
e6:c0:d9:d4:fe:45:19:96:57:a6:fa:ed:99:27:5b:
a3:a7:19:68:b4:81:fa:16:a9:f6:da:70:e8:3c:f5:
2a:b1:33:97:e4:cc:3f:e8:9e:7e:a1:c4:40:52:9f:
77:41:ca:48:14:35:1f:05:ec:a3:5a:84:0d:35:9c:
95:4b:ca:42:de:7e:aa:c2:ea:8a:17:f8:3f:b4:67:
55:a5:42:55:fa:5f:41:51:4a:43:6f:38:14:76:20:
56:e9:b0:c6:95:16:9f:3e:68:f3:ca:3f:fe:d9:d4:
95:29:48:e4:02:86:06:df:e4:b9:f8:e7:30:a5:fe:
05:9d:4f:eb:4d:eb:6f:06:c2:9b:5f:56:9f:d9:d8:
d6:bf:fe:06:06:a9:f4:48:a1:c7:24:75:87:00:10:
52:d6:a8:7f:dc:ad:e2:0d:f7:35:c6:fc:8f:0e:f0:
b1:59:ab:a9:de:4e:88:e8:d5:9a:5f:6b:61:d7:d4:
d2:5e:2e:47:8b:e9:cf:58:27:1e:67:4d:0d:02:56:
50:02:1b:4e:62:e3:94:86:39:d5:e6:6d:f5:58:97:
f4:a3:5c:4e:09:11:79:37:59:47:50:11:b6:72:61:
a9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:04:38:58:65:55:33:84:B0:CF:95:C7:D0:D0:6D:21:5D:46:0B:F4
X509v3 Authority Key Identifier:
keyid:DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:fb:8e:1f:9d:f6:c1:08:5c:2f:95:3e:a2:cf:25:37:b5:0c:
9a:a2:60:65:1b:c7:3f:e2:99:4d:25:a4:28:f6:22:7e:79:91:
ae:3c:ee:83:c5:e9:3b:24:3e:aa:fa:9e:4d:1c:a2:ac:41:5b:
5b:d5:a8:fd:fd:e2:1d:bc:f1:1a:7c:a8:b0:69:5d:24:f5:4e:
a1:62:c5:c5:f6:2c:51:0a:99:8c:66:40:b3:96:22:77:c2:23:
69:2a:d1:a1:ec:9b:a7:c4:ce:1b:15:c6:4f:51:83:eb:33:b8:
5b:9f:fe:da:f6:19:bb:ed:6e:00:78:ec:2c:f2:7c:f8:9d:ce:
a0:a0:0d:4e:7c:f2:ac:87:23:0a:96:44:69:2f:96:10:91:f7:
d3:b7:65:e3:cb:18:fc:43:71:5e:0d:99:42:ad:22:28:08:3e:
4a:6c:2f:f1:7c:f0:5a:89:bc:8a:ae:3a:c6:9d:27:40:f5:e0:
17:11:f0:af:29:15:90:87:b7:c6:07:9d:09:53:d3:2d:a9:f2:
5e:2c:b1:bc:f0:42:9b:82:7a:58:31:e0:2d:8f:e5:7e:60:b3:
72:4e:c1:5f:89:34:08:f8:d5:61:01:4a:90:60:68:04:d3:47:
10:81:e5:56:cc:d3:2d:04:89:c5:22:a5:96:6b:34:8a:62:94:
4b:7c:c6:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05r261p12m8+UspU7PmZ92MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNTNlYmZhZjVjMTg3OGQ4YTIyYTkzOGUxNzMyYThhMDc3
MTRmMzUwHhcNMjYwMzI5MTMwMTMxWhcNMjYwMzMwMTMwMTMxWjAzMTEwLwYDVQQD
EyhmOTA0Mzg1ODY1NTUzMzg0YjBjZjk1YzdkMGQwNmQyMTVkNDYwYmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyx0agWM8HU0f7xqwq3c1/Be/9gU+
A9uVPKt9I/zmwNnU/kUZllem+u2ZJ1ujpxlotIH6Fqn22nDoPPUqsTOX5Mw/6J5+
ocRAUp93QcpIFDUfBeyjWoQNNZyVS8pC3n6qwuqKF/g/tGdVpUJV+l9BUUpDbzgU
diBW6bDGlRafPmjzyj/+2dSVKUjkAoYG3+S5+Ocwpf4FnU/rTetvBsKbX1af2djW
v/4GBqn0SKHHJHWHABBS1qh/3K3iDfc1xvyPDvCxWaup3k6I6NWaX2th19TSXi5H
i+nPWCceZ00NAlZQAhtOYuOUhjnV5m31WJf0o1xOCRF5N1lHUBG2cmGpOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPkEOFhlVTOEsM+Vx9DQbSFdRgv0MB8GA1UdIwQY
MBaAFNpT6/r1wYeNiiKpOOFzKooHcU81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgt
OTNjOWU2YjA5M2JjLzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgtOTNjOWU2YjA5M2Jj
LzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPuOH532
wQhcL5U+os8lN7UMmqJgZRvHP+KZTSWkKPYifnmRrjzug8XpOyQ+qvqeTRyirEFb
W9Wo/f3iHbzxGnyosGldJPVOoWLFxfYsUQqZjGZAs5Yid8IjaSrRoeybp8TOGxXG
T1GD6zO4W5/+2vYZu+1uAHjsLPJ8+J3OoKANTnzyrIcjCpZEaS+WEJH307dl48sY
/ENxXg2ZQq0iKAg+Smwv8XzwWom8iq46xp0nQPXgFxHwrykVkIe3xgedCVPTLany
XiyxvPBCm4J6WDHgLY/lfmCzck7BX4k0CPjVYQFKkGBoBNNHEIHlVszTLQSJxSKl
lms0imKUS3zGYw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:51 2026 by rpki-client