Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
File: 2ilr0AMdba2mxzBzYI89EeRFzkQ.mft (raw, json)
Hash identifier: rkjiBY+S8Qh2/q6HMZ8SXsFFNSmviaRZiXJPpu7UhDU=
Subject key identifier: 59:B3:70:1E:CE:0A:C6:87:99:2A:AA:E6:8A:4B:71:27:57:E6:EF:AE
Authority key identifier: DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
Certificate issuer: /CN=da296bd0031d6dada6c73073608f3d11e445ce44
Certificate serial: 019D3A1CB8696068801D1B59C1C3F3ADABDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
Manifest number: 06D2
Signing time: Sun 29 Mar 2026 15:00:53 +0000
Manifest this update: Sun 29 Mar 2026 15:00:53 +0000
Manifest next update: Mon 30 Mar 2026 15:00:53 +0000
Files and hashes: 1: 2ilr0AMdba2mxzBzYI89EeRFzkQ.crl (hash: hzb1j/Z8x5cz79ED1iZCKHkEnOFXwA0rhOZ4VaLAcYc=)
2: CUoKG5KBfZLY81B9VMINCtlfS6U.roa (hash: LS0KYy/ZBd62NqsUCQ3fjoY3u1OJXGmBPSRbAnObypM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:b8:69:60:68:80:1d:1b:59:c1:c3:f3:ad:ab:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da296bd0031d6dada6c73073608f3d11e445ce44
Validity
Not Before: Mar 29 15:00:53 2026 GMT
Not After : Mar 30 15:00:53 2026 GMT
Subject: CN=59b3701ece0ac687992aaae68a4b712757e6efae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:46:74:ae:b6:cd:84:4b:ef:91:dc:60:a4:7b:
fd:b0:6b:bb:86:aa:58:a9:13:15:33:99:96:ed:13:
0d:84:d9:b7:f0:ce:cd:f6:5e:a1:3a:21:5c:3c:bc:
1a:40:ff:6b:9a:29:dc:01:ec:cc:57:87:f5:45:a2:
47:f9:e3:32:de:ef:14:cc:7d:e3:c2:3a:ce:27:6e:
de:ab:28:5f:e1:ad:ee:ac:e5:f1:54:3e:fd:19:99:
d0:f3:86:3c:d5:20:65:81:26:70:c7:aa:b6:02:3b:
53:6a:fa:08:d3:aa:30:e9:66:6f:0e:a7:99:0e:47:
16:27:58:e5:c6:73:c2:ae:d0:2f:04:43:00:aa:85:
01:3c:dc:8e:56:b9:7f:51:c8:0b:87:f7:45:8b:03:
7b:ad:47:b1:be:c2:21:6c:c5:ce:98:11:7f:5b:65:
3a:a8:78:9d:ea:78:7e:aa:f3:0d:5b:5c:e0:42:dd:
49:31:bc:34:61:1c:25:3f:a3:4f:1b:c2:18:0f:d8:
7b:b5:fb:18:d3:ab:2d:6c:37:7a:e1:43:15:1f:aa:
21:df:22:2a:f0:12:33:a5:c0:47:f6:e3:5b:12:d8:
17:85:6c:68:e3:ce:9e:e3:ae:95:66:5f:be:d3:06:
a3:f4:1c:5e:38:d2:b4:bc:d1:2e:17:ba:de:4c:57:
68:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B3:70:1E:CE:0A:C6:87:99:2A:AA:E6:8A:4B:71:27:57:E6:EF:AE
X509v3 Authority Key Identifier:
keyid:DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:82:3a:9c:7f:fb:6a:b1:45:7e:dc:77:07:bd:c9:a7:73:b3:
c4:22:d6:e4:6e:dd:e4:27:09:ad:f1:cc:e8:e6:aa:d4:30:f5:
e6:6a:92:da:b4:92:b1:af:e1:4e:28:93:89:38:b1:2e:83:cf:
34:ab:93:d8:fb:be:46:be:b4:fa:4a:e3:dc:0f:e9:8c:9d:b1:
ba:28:d1:9f:ed:d3:d9:2c:69:90:e5:10:68:36:54:7b:fa:d5:
c4:9c:45:d6:ad:88:00:7b:0f:37:86:17:da:85:39:6b:46:bf:
c6:31:fa:94:bb:99:e5:3d:64:69:ac:23:5c:8b:f7:4f:d1:3c:
3a:6e:a2:06:e7:c1:c0:df:f0:ac:20:72:b4:57:76:37:3a:17:
2f:d9:0b:8f:42:e6:5a:3c:00:ad:7a:36:5f:3e:fe:8d:fe:5c:
f1:92:4f:3b:3d:4f:82:83:e2:9c:66:ff:8d:80:31:e5:ae:39:
78:0a:89:06:6a:4f:de:4f:6a:33:90:53:c7:77:3c:ad:7a:4a:
f5:b9:f8:00:73:b0:92:1a:92:60:d9:97:63:c5:03:7a:6d:0c:
d1:8a:80:48:81:5b:a1:2e:a8:14:cf:a8:0f:95:1e:93:f1:22:
a1:7d:a1:46:ca:35:70:60:9a:b8:fd:92:54:69:d1:90:6d:07:
46:2f:2d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:49:26 2026 by rpki-client