Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: P1Tx5uza2RdN5oRlig0WBphmKdmKMgi1pEgqvV51WBo=
Subject key identifier: BF:49:8E:66:12:0D:09:8B:CA:92:F5:F1:2C:5B:10:36:B7:23:5C:1B
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019D3752E09CEF219C59F80DE31B645B47AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 0A37
Signing time: Sun 29 Mar 2026 02:01:11 +0000
Manifest this update: Sun 29 Mar 2026 02:01:11 +0000
Manifest next update: Mon 30 Mar 2026 02:01:11 +0000
Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: VMwzAVBAoYkab/eIRyfnmeM0782fYnm0i90lTbruaU8=)
2: xvjr_8JqIZkbED7GUsRWo_s5EPY.roa (hash: FiH4mjXZzCr8o0pEvyEmejvpAQkDbsQib4uDB3k7p1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:e0:9c:ef:21:9c:59:f8:0d:e3:1b:64:5b:47:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Mar 29 02:01:11 2026 GMT
Not After : Mar 30 02:01:11 2026 GMT
Subject: CN=bf498e66120d098bca92f5f12c5b1036b7235c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:50:93:47:97:7c:5d:05:48:01:ce:43:83:1c:
35:1f:85:31:47:39:53:56:1f:7a:8b:49:26:44:9b:
45:a6:24:9a:4f:f7:2b:10:15:70:81:96:ee:39:09:
8f:b5:af:16:4d:51:d0:c8:fd:ea:f8:38:ec:99:25:
d0:f9:5c:87:af:d5:76:92:40:a6:c3:5c:2c:af:c9:
b5:63:83:78:3d:73:c9:d5:58:76:dd:6b:8c:ed:7b:
fd:30:27:7d:b7:6f:0c:46:d2:d7:0d:43:8a:9e:eb:
65:22:a1:85:c1:35:36:24:74:b7:60:33:80:85:3c:
e3:25:8e:71:22:e0:d2:ff:59:7a:62:d2:d6:91:e1:
29:e1:7d:9e:81:64:12:66:cf:0a:2f:76:9e:01:a3:
4b:e8:21:55:46:64:62:5a:33:6d:a4:4c:a4:6f:2e:
42:88:2f:a2:a3:40:6e:01:84:43:91:76:99:f5:6f:
e0:a4:40:c0:7a:65:85:62:b7:7d:a1:ad:c0:11:b8:
4d:e4:3d:48:3e:4c:a2:4d:af:bb:32:3b:ab:40:0f:
5f:30:3c:a7:75:cf:b9:34:cb:0e:9f:c0:51:a6:ca:
34:51:ca:82:5d:bc:ae:cc:7e:96:8f:f0:b6:29:3e:
a5:7c:c9:4c:72:22:86:3a:c2:6c:ae:b0:08:f5:be:
26:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:49:8E:66:12:0D:09:8B:CA:92:F5:F1:2C:5B:10:36:B7:23:5C:1B
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:e9:2c:65:d4:e6:ad:fe:2e:6f:b7:13:2d:10:6a:e8:ec:32:
7a:84:fb:ea:63:7c:53:5d:0f:b7:35:71:f1:bf:a6:80:fd:57:
f3:20:3f:c9:86:f7:78:96:3e:b3:2e:2b:2e:7d:ff:87:bb:09:
32:e3:23:e3:4e:eb:17:d9:2e:da:10:1f:6c:b3:7f:64:3a:b8:
6b:6d:5b:76:5b:6e:9d:89:1b:2a:a2:89:e0:25:a8:b2:9f:fe:
d3:81:f3:fe:3a:3c:d5:a0:5a:1a:cb:10:d2:7d:26:af:82:4c:
4c:58:57:f0:c7:c4:b3:3a:15:30:85:33:d2:d9:db:65:78:19:
c5:96:10:12:d4:81:83:e7:90:18:6e:6f:20:cf:7b:d1:43:73:
bc:b3:72:17:e4:e2:85:e9:dc:63:39:71:55:83:67:9d:e7:0d:
d8:b6:f5:15:2b:20:70:74:d0:42:6d:9a:56:6c:f6:2c:72:4a:
20:a5:ca:1c:b4:0a:37:10:51:2e:90:e4:bc:e5:a2:2c:d6:a2:
1b:22:6b:81:93:90:9f:c3:f6:d6:ec:c1:ee:96:37:37:59:83:
23:9b:37:76:79:4a:06:b4:ef:d7:84:d2:58:17:c6:8b:d2:92:
f0:43:30:24:d9:56:da:a3:8b:7d:c6:a1:5c:e5:9d:82:06:e8:
a8:64:4a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:06 2026 by rpki-client