Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: bRQvMZwbWGS//2vl9oeJcahuRa5HboMaVuv6QuZ/cRk=
Subject key identifier: 8C:3D:7E:11:BA:15:23:22:76:2E:9A:EF:49:D2:FE:0B:EA:11:36:90
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019D378904DCA8410896F789B0907EF988A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 14F6
Signing time: Sun 29 Mar 2026 03:00:19 +0000
Manifest this update: Sun 29 Mar 2026 03:00:19 +0000
Manifest next update: Mon 30 Mar 2026 03:00:19 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: hK3jv83yc1idIoR1mORtePCZr2ILroOepx/5ExaYGXc=)
2: Mvg3Mo5WSYjcX-Icj2bidj2_crQ.roa (hash: vVq/Mz8wGpzyBjkk9cQ+W/VRqd2BvaRyhDgc817bfY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:04:dc:a8:41:08:96:f7:89:b0:90:7e:f9:88:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Mar 29 03:00:19 2026 GMT
Not After : Mar 30 03:00:19 2026 GMT
Subject: CN=8c3d7e11ba152322762e9aef49d2fe0bea113690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:9a:ea:fe:d3:4a:40:ad:bb:64:68:b1:0f:
4b:cb:c3:f5:e4:34:01:ef:53:cb:2a:aa:ed:9d:a4:
87:22:e3:7b:a2:d1:07:d9:dc:aa:bb:54:03:13:3d:
39:c4:54:92:f3:f8:4a:de:17:a9:f1:ab:23:69:ae:
e9:37:4f:be:73:b5:08:71:d7:e9:b1:19:ea:a3:6f:
d5:71:fb:1f:2d:33:33:c2:df:c6:72:f9:57:32:47:
b8:70:4d:50:6c:a2:4d:09:8b:c5:2b:3f:ce:41:b1:
5c:0c:63:85:6d:66:32:bd:29:c5:8c:78:64:a8:1a:
65:e8:4b:da:a9:4c:c2:08:e7:45:8a:1a:b7:f8:22:
70:36:61:9f:cc:02:c6:c4:76:0a:86:f2:bd:68:b5:
d4:69:fa:f0:31:99:c4:7d:56:89:9e:cf:ac:d0:5c:
51:c2:e3:66:01:48:fe:94:e3:09:ff:a0:a3:eb:07:
4c:80:a2:e5:ca:73:7e:31:59:da:9e:2d:9c:6c:a2:
c4:ac:68:d8:f1:3a:8f:95:a1:bb:85:67:be:e7:1f:
73:4d:22:b7:38:b7:ab:c2:e2:8c:96:2d:59:50:e2:
42:d9:16:5e:9b:a7:b7:3c:d2:83:bf:b8:cd:e7:24:
ae:0c:88:83:0e:53:44:3e:13:2f:c2:a6:48:5c:08:
62:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3D:7E:11:BA:15:23:22:76:2E:9A:EF:49:D2:FE:0B:EA:11:36:90
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:4a:cc:0d:dc:68:e7:18:2e:a2:27:39:ec:46:2c:2f:84:36:
2c:d5:55:f0:06:ef:f1:2b:87:43:ea:d6:62:48:07:77:48:c6:
70:72:93:fe:29:29:43:36:ca:7b:42:47:c3:0d:b1:da:01:11:
80:05:ff:ee:0d:93:9f:7d:46:83:22:60:47:6c:e3:cd:d8:ca:
38:b7:6d:38:ca:3b:d5:1e:e3:e7:a5:03:62:7f:93:63:3e:1f:
11:b6:9e:42:1c:b5:e3:1c:28:9b:09:4e:f0:60:28:31:a7:a5:
7b:78:f8:86:06:25:9b:78:72:0a:04:b4:f7:4b:7f:3d:e1:b0:
c8:f8:b0:96:03:03:7f:b2:f8:fc:96:ec:17:63:8d:d7:d2:b0:
e4:80:28:02:e2:4e:72:81:29:3f:44:6c:44:bc:ea:4b:80:c1:
2d:2b:bc:23:64:7a:37:64:9c:57:6d:7b:e0:93:bf:8e:7d:0c:
c8:f5:e6:88:d6:1d:b2:13:42:8b:93:7e:81:d3:c7:52:03:ba:
01:7b:8b:e9:09:c7:d6:a3:46:87:42:79:03:be:59:51:5c:f8:
22:70:82:0c:8b:19:9f:23:a3:58:f8:e0:de:57:ae:94:81:ad:
0a:b3:58:5e:8e:f0:9a:e2:2a:2a:52:51:d6:78:4a:8e:8b:36:
34:b2:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:05 2026 by rpki-client