Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: vKrtd0dPJxWWOAkUc9bxmzofNht+Oe5JDOB7W1m7nU0=
Subject key identifier: 82:F2:B0:B0:59:3C:B9:93:2B:87:E6:11:CF:B0:C7:73:51:CE:3D:03
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 019D3866A6917279C7794BF09AC5BD2B5A57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 0343
Signing time: Sun 29 Mar 2026 07:02:24 +0000
Manifest this update: Sun 29 Mar 2026 07:02:24 +0000
Manifest next update: Mon 30 Mar 2026 07:02:24 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: I+/SWKNvJGdESEGUbpkKpvjLc1PJKDXD5GHlbp9qd40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:a6:91:72:79:c7:79:4b:f0:9a:c5:bd:2b:5a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Mar 29 07:02:24 2026 GMT
Not After : Mar 30 07:02:24 2026 GMT
Subject: CN=82f2b0b0593cb9932b87e611cfb0c77351ce3d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:71:30:86:10:ec:62:40:e4:65:17:eb:75:
0a:4f:91:5d:2e:c5:35:bd:87:83:f3:6b:26:02:9f:
52:c9:c0:85:8a:c1:28:e8:fb:87:9a:6d:4d:cd:c3:
78:39:c0:80:8a:9e:bc:ea:ee:b8:23:97:3a:1a:e3:
b0:58:07:5e:66:e5:65:66:57:95:29:24:0f:13:82:
53:6c:98:b2:2e:27:80:fd:0d:e3:e3:22:2c:a1:d4:
ed:33:3b:d8:d0:0c:ef:44:43:3f:96:ed:f1:55:7b:
9e:18:90:5b:01:7e:03:58:b4:be:ef:ef:28:33:ba:
ce:c9:d5:69:85:4b:81:65:07:de:7b:62:c0:f9:37:
80:2a:e9:43:47:25:48:5e:23:a4:d2:f4:85:f2:81:
39:e4:07:3b:b0:9a:f1:47:73:c5:a3:4f:d1:cd:f9:
61:9e:1a:c9:7a:3a:6c:76:5a:a4:b2:21:75:d9:11:
45:93:58:a8:36:91:b2:4f:67:f2:c3:19:ce:0a:e2:
ae:d6:58:c7:b6:ae:08:08:e0:24:4d:c3:6f:7e:57:
2d:b4:e5:2e:c1:9e:cb:57:0d:82:da:4a:25:8e:3c:
ef:a7:2f:47:da:47:3c:9d:7f:ab:d7:e1:35:2e:e9:
f3:7b:cc:a4:e7:ac:75:20:9d:3c:da:b6:89:06:c4:
da:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F2:B0:B0:59:3C:B9:93:2B:87:E6:11:CF:B0:C7:73:51:CE:3D:03
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:5c:bd:42:f3:ff:48:85:18:22:13:f2:46:50:fc:d0:19:a8:
6a:32:dc:65:44:63:74:3a:25:e5:73:e8:54:24:69:e8:36:91:
7c:46:3d:22:35:2a:f3:80:55:87:48:36:77:ab:0b:4f:30:84:
02:a6:15:17:b3:94:8c:7f:33:c1:bf:e2:36:fe:58:97:d8:f3:
fe:83:3f:b7:1a:20:22:81:62:dc:9d:3f:0c:8b:5e:af:39:c1:
23:c4:51:b1:86:1e:ee:cb:4b:ba:49:5f:c8:ca:eb:e2:1c:12:
9f:ab:9c:6d:7e:2e:2d:67:da:09:33:a4:95:56:16:73:7c:be:
f9:cd:0e:10:0a:f7:a5:4a:87:7e:5d:1c:c8:53:1f:c5:e7:0e:
65:be:26:f1:5b:fc:7f:da:33:45:2e:63:aa:1a:15:cb:b2:d7:
f4:bd:71:ef:12:c5:38:3d:78:58:b1:6c:00:ee:af:e5:0b:b4:
af:ad:34:0d:2e:fa:9e:60:83:7a:fd:77:6e:52:dd:d7:c9:d5:
80:21:8f:c0:3e:4e:4a:a0:ff:12:71:f4:69:ff:6a:f4:9b:4f:
42:ac:3c:95:0c:33:6f:b4:c5:f5:41:ab:6f:25:ac:08:60:6f:
d6:6c:6b:5a:a0:ed:14:45:eb:95:bf:97:73:4b:fa:75:f1:aa:
62:2e:61:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZqaRcnnHeUvwmsW9K1pXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMGNiYjM1ZjYzMGQ0MGNhZDc3NTA3ZmRhYmQzN2ZkZWRj
MTIxMDMwHhcNMjYwMzI5MDcwMjI0WhcNMjYwMzMwMDcwMjI0WjAzMTEwLwYDVQQD
Eyg4MmYyYjBiMDU5M2NiOTkzMmI4N2U2MTFjZmIwYzc3MzUxY2UzZDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18lxMIYQ7GJA5GUX63UKT5FdLsU1
vYeD82smAp9SycCFisEo6PuHmm1NzcN4OcCAip686u64I5c6GuOwWAdeZuVlZleV
KSQPE4JTbJiyLieA/Q3j4yIsodTtMzvY0AzvREM/lu3xVXueGJBbAX4DWLS+7+8o
M7rOydVphUuBZQfee2LA+TeAKulDRyVIXiOk0vSF8oE55Ac7sJrxR3PFo0/Rzflh
nhrJejpsdlqksiF12RFFk1ioNpGyT2fywxnOCuKu1ljHtq4ICOAkTcNvflcttOUu
wZ7LVw2C2koljjzvpy9H2kc8nX+r1+E1Lunze8yk56x1IJ082raJBsTaRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFILysLBZPLmTK4fmEc+wx3NRzj0DMB8GA1UdIwQY
MBaAFNsMuzX2MNQMrXdQf9q9N/3twSEDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQt
MmM4ZTBiNDk3MzgwLzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQtMmM4ZTBiNDk3Mzgw
LzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYly9QvP/
SIUYIhPyRlD80BmoajLcZURjdDol5XPoVCRp6DaRfEY9IjUq84BVh0g2d6sLTzCE
AqYVF7OUjH8zwb/iNv5Yl9jz/oM/txogIoFi3J0/DIterznBI8RRsYYe7stLuklf
yMrr4hwSn6ucbX4uLWfaCTOklVYWc3y++c0OEAr3pUqHfl0cyFMfxecOZb4m8Vv8
f9ozRS5jqhoVy7LX9L1x7xLFOD14WLFsAO6v5Qu0r600DS76nmCDev13blLd18nV
gCGPwD5OSqD/EnH0af9q9JtPQqw8lQwzb7TF9UGrbyWsCGBv1mxrWqDtFEXrlb+X
c0v6dfGqYi5hfQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:50 2026 by rpki-client