Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: HRfBHw9pn4nTkfp62u0z9yRcrBSufc4QW0Il49uEq1I=
Subject key identifier: 76:9D:1F:86:14:D6:1B:FD:26:C4:93:F4:68:4A:DE:43:5B:41:9E:CA
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 019D378951A7912D770ACAF2DC06C60BD3B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 0ACB
Signing time: Sun 29 Mar 2026 03:00:39 +0000
Manifest this update: Sun 29 Mar 2026 03:00:39 +0000
Manifest next update: Mon 30 Mar 2026 03:00:39 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: ZAp+rcYAbqSMMOjYSkfqiFQ2cDDa83J3P6RrR1kgp/E=)
2: zuAP0P2ieWMLtXb48E1VVwKO93w.roa (hash: KzZQHMAxju4Nmcnntgy06fN2nxsFzdB0gSb36aOEgek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:51:a7:91:2d:77:0a:ca:f2:dc:06:c6:0b:d3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Mar 29 03:00:39 2026 GMT
Not After : Mar 30 03:00:39 2026 GMT
Subject: CN=769d1f8614d61bfd26c493f4684ade435b419eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2b:87:89:91:a6:03:6e:28:75:8e:ca:cb:54:
ae:07:8a:c3:36:0e:3b:50:0b:87:a8:e9:b6:2c:c8:
02:1c:fd:4c:45:6b:cd:cc:21:d7:76:49:ac:4c:c8:
1f:41:b3:c9:9e:3e:17:9b:b7:ec:b1:96:0c:66:cf:
92:f5:5b:eb:19:6b:1a:f9:2a:b9:2d:3a:1f:92:98:
ff:06:9f:92:eb:a2:c0:c7:40:5e:e0:57:38:10:43:
05:28:e2:d8:b4:10:2e:08:da:84:4b:b0:a4:08:7e:
70:4f:4c:d3:25:2c:89:e4:9d:25:7b:ca:db:9f:9d:
56:e2:8f:f8:2d:4b:36:8c:7b:e8:22:2e:fa:7b:6a:
4c:23:e1:7d:69:72:dd:fe:37:b0:58:6e:20:0b:c8:
65:a8:b6:5b:6f:bd:83:2d:84:fc:af:4e:96:0d:80:
3f:e6:dc:b4:28:ee:87:7e:04:cf:32:53:06:70:a9:
80:21:37:59:bf:25:a3:5f:b1:89:fe:fd:0e:a1:50:
75:79:51:fe:a2:3a:15:2e:9d:79:cb:8c:76:c6:b7:
61:af:33:ef:49:2c:c4:c7:1b:b1:06:89:ce:80:6a:
dd:53:8e:ba:1d:c9:a0:4d:d9:a2:c2:81:0d:0c:ef:
30:74:64:34:a8:c2:8a:41:f5:0d:ba:a6:26:4c:01:
38:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9D:1F:86:14:D6:1B:FD:26:C4:93:F4:68:4A:DE:43:5B:41:9E:CA
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:7f:b0:3f:e0:7f:0e:6f:27:40:e6:90:83:51:b1:8f:b7:75:
53:6c:c0:62:ee:86:eb:3b:e8:8c:2c:b4:ed:d7:8b:bd:30:3a:
71:30:4d:30:1c:2e:be:6f:34:63:8e:78:ca:b4:9d:32:01:d9:
ae:a6:7b:c2:fe:0d:53:4f:b9:ca:cf:29:90:1e:9d:d8:2d:c3:
39:d2:45:de:a2:78:2d:1a:95:12:df:50:4e:0a:d8:b9:3d:f6:
4b:2b:07:71:ae:fa:31:08:36:38:72:81:17:78:d5:72:0b:5b:
05:55:26:89:87:2d:9f:d2:ca:0f:36:51:6b:9f:53:f3:c4:a7:
3b:46:01:b4:35:fd:5b:23:3e:c6:cf:27:f5:fc:74:51:a3:b6:
97:09:bc:0a:97:c1:78:17:a2:ed:2f:1a:78:0e:29:6c:95:5d:
6f:1e:0f:c0:e8:23:6e:1a:7a:fe:89:c2:ff:30:99:22:7a:76:
6a:be:db:74:ed:f9:52:ba:08:87:ae:85:9c:a2:92:87:96:25:
ef:35:28:68:35:00:68:28:16:e4:48:af:0b:fc:73:ee:4a:16:
82:ce:ab:3b:a2:4c:61:dd:0c:e5:6e:fc:bf:6e:09:fa:2c:0f:
42:0f:6a:38:cd:f4:05:b6:65:ac:8a:b6:47:5b:f2:b0:5d:87:
26:fe:b8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:14 2026 by rpki-client