Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
File: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft (raw, json)
Hash identifier: XIGXQjsz+/JOx+bKmsQUBZn3mYRkKvaSH5y/U2ew3cQ=
Subject key identifier: 5E:59:2A:8A:FA:4E:BE:71:F2:9E:9F:F7:A0:9A:16:03:B7:12:CA:98
Authority key identifier: D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
Certificate issuer: /CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Certificate serial: 019D3977CB290B42AB97C3BC0605C5A59681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
Manifest number: 1759
Signing time: Sun 29 Mar 2026 12:00:45 +0000
Manifest this update: Sun 29 Mar 2026 12:00:45 +0000
Manifest next update: Mon 30 Mar 2026 12:00:45 +0000
Files and hashes: 1: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl (hash: lq3r9K7tKOGP0F29/6WevhA6ZVMltzffRx1sfPZN8Qo=)
2: xET4g9Q22br6M_aAIvnYf8vNiW4.roa (hash: Co0dW764z3RfUQJ68TAOxwF+Vuab9DVTLXdcNmyxXW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:cb:29:0b:42:ab:97:c3:bc:06:05:c5:a5:96:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Validity
Not Before: Mar 29 12:00:45 2026 GMT
Not After : Mar 30 12:00:45 2026 GMT
Subject: CN=5e592a8afa4ebe71f29e9ff7a09a1603b712ca98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f6:f7:ea:e3:d3:7f:b5:7b:93:a5:44:c1:24:
53:7e:96:2b:a5:45:a0:79:73:e1:d6:bd:ab:76:14:
b8:1b:25:27:ca:1b:20:0c:c0:64:cd:5a:79:ea:33:
8b:07:c4:b9:5c:91:40:16:f3:ab:57:ec:33:24:0c:
70:04:20:4c:fd:49:ba:72:9a:38:9f:83:eb:66:78:
09:7e:43:1a:a4:9c:d8:f5:15:64:49:4d:7f:e9:87:
ba:83:ea:60:f2:55:5f:98:95:0f:ea:96:4f:db:57:
ff:39:6b:57:4e:4c:ee:8a:23:55:62:5c:91:ec:b6:
a0:6f:57:e3:25:d6:9a:f2:73:aa:5f:5d:86:20:f7:
13:01:f9:3f:49:e3:a9:be:17:dd:97:19:0b:3a:ef:
f0:ca:ee:8c:ae:79:df:b9:d1:7c:31:ed:d0:8f:e5:
d0:ff:11:79:69:fe:c2:33:62:36:34:f3:f8:09:6b:
01:51:a7:36:25:c1:8c:e5:51:90:a6:e5:ea:2c:0e:
39:c1:3d:90:c7:99:75:f5:5d:99:63:8a:48:c7:0d:
bb:43:56:a4:75:9b:b1:bd:00:d1:4f:1d:5f:d9:65:
eb:ed:35:f7:ba:0c:7f:b6:c9:bb:ce:9c:ae:89:dc:
c2:e2:4b:30:72:1e:22:c7:55:b0:49:ff:a5:6c:a1:
76:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:59:2A:8A:FA:4E:BE:71:F2:9E:9F:F7:A0:9A:16:03:B7:12:CA:98
X509v3 Authority Key Identifier:
keyid:D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:1f:66:e6:a3:8b:4b:6b:84:18:d2:0a:17:72:12:8e:11:f4:
f3:0c:67:e9:f9:d3:08:06:f1:f8:4b:fd:c6:e5:83:ea:8d:02:
73:a6:6d:86:55:82:20:12:a0:18:15:01:46:eb:a8:d2:a2:d0:
44:7f:0b:f9:19:24:ab:f9:69:aa:ac:72:a1:55:a5:02:cc:1e:
83:d5:02:fd:f2:2b:11:2f:56:1f:a2:d9:2b:32:02:cf:a6:fe:
31:83:09:38:33:17:33:03:83:d7:63:c9:64:ee:48:94:30:b9:
f1:aa:11:bb:3f:a8:94:fa:10:5d:2a:f8:6e:1a:c1:27:8b:de:
ee:4f:ba:bc:83:f3:f9:95:4e:e9:14:ba:bb:19:02:95:c7:74:
8b:fe:85:a0:84:82:31:e4:41:6d:85:c8:96:4e:27:3d:70:9c:
ea:7f:46:ba:92:fd:a0:75:c4:b7:0f:9d:e3:3f:15:3e:0a:58:
46:19:02:f3:63:de:d9:43:1c:2d:07:ba:76:ea:bf:d5:a1:36:
7f:b6:2e:53:e2:a4:00:ba:fa:76:e2:fa:6e:33:81:29:86:3f:
c0:ba:aa:22:8f:79:76:89:ec:81:84:4f:d4:ca:01:63:79:10:
14:8b:90:3a:11:96:77:fa:40:63:67:34:4b:94:34:d1:9c:89:
eb:73:90:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:01 2026 by rpki-client