Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: PyXr70KCgLjy2IBcULgC8AsSBZS9OfbM3lcXcYkl1Ao=
Subject key identifier: 47:B2:F1:4E:AA:60:09:43:56:9E:50:74:C3:12:2C:13:B2:DE:36:6F
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 019D382E4765F6FC52EFE849E83E16E70208
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 06:00:50 +0000
Manifest this update: Sun 29 Mar 2026 06:00:50 +0000
Manifest next update: Mon 30 Mar 2026 06:00:50 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: Lo3ckxQwQR/NxYasgyUjAcdPK3pQ/1Ezl485JkaelXo=)
2: Fa2Vtt7OBxYgHIfhflgQOmFFexE.roa (hash: nsncXi1fM+9rcTyQmSh9C2tHMk0W4t5U2Q/c/sbGWGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:47:65:f6:fc:52:ef:e8:49:e8:3e:16:e7:02:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Mar 29 06:00:50 2026 GMT
Not After : Mar 30 06:00:50 2026 GMT
Subject: CN=47b2f14eaa600943569e5074c3122c13b2de366f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:cb:c0:d6:ec:5b:83:ec:30:a4:e7:96:1d:
26:86:cf:fb:dd:b0:ab:a0:32:86:ea:3a:c8:56:c2:
55:84:ef:83:90:b6:d8:a5:91:33:b5:3c:8e:af:7c:
07:0c:17:c8:63:22:8f:59:53:34:62:6b:39:3c:20:
86:ff:77:59:e2:6e:86:69:eb:7d:57:2d:29:7e:8f:
62:8a:8c:46:ae:6f:cd:43:24:36:9e:8b:01:32:e3:
c4:c2:dd:8f:51:97:81:99:f7:0c:73:6d:a9:e5:fd:
b1:04:f6:76:13:45:e2:4d:b5:96:49:65:18:ab:2d:
f1:dd:b3:f6:65:a9:43:4c:84:a2:83:a9:6c:f5:bd:
ed:77:5a:6a:ef:9f:bd:f2:68:5c:be:50:a6:35:88:
38:71:89:19:f8:2e:b4:ef:74:a2:66:ee:f3:3e:b1:
96:d2:fc:45:c3:fe:93:ad:e1:19:e4:5a:3d:75:4d:
e3:3c:84:1b:5f:9b:fe:2b:83:21:59:81:38:98:eb:
e3:02:61:08:2d:4c:43:fe:58:92:16:e8:72:eb:90:
e8:02:4c:9a:ad:e1:d4:f9:4c:72:ad:31:c2:7e:e5:
4c:d9:18:05:0d:c9:bd:ae:74:2f:f1:9f:19:fc:1b:
67:be:46:00:98:e2:65:b9:1d:fd:98:af:99:90:ec:
d6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B2:F1:4E:AA:60:09:43:56:9E:50:74:C3:12:2C:13:B2:DE:36:6F
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:79:22:5c:3d:7d:7b:cc:f9:97:18:09:cf:29:70:5d:66:25:
32:a0:fa:80:7c:67:8c:79:5f:94:ea:83:50:91:78:1a:8b:ff:
d6:53:3a:e0:c6:7d:f2:f2:1c:ee:87:91:27:cd:c7:30:03:d5:
65:b9:6c:dc:c2:99:94:bf:4a:b8:8f:ea:53:2b:cc:90:7f:eb:
26:ee:87:f1:15:35:d4:5e:76:70:ef:f9:7e:10:e6:76:50:21:
92:e9:b6:99:ab:44:f6:21:e7:5e:49:fd:a6:27:bc:9b:43:05:
e7:15:de:28:0d:03:7c:25:32:df:44:50:a5:58:52:56:07:45:
28:c9:46:d9:15:88:11:6b:da:4a:48:81:45:96:e9:63:e9:34:
37:5c:67:30:62:3c:fa:e4:47:fe:a0:cd:90:5f:f8:1c:de:25:
9d:34:97:d3:7f:65:9b:33:ac:d6:f5:6f:f2:8e:65:4b:de:c0:
a3:c3:ea:9a:5a:fe:3c:9a:60:ee:d9:dc:cf:25:63:e6:cd:d0:
fc:c2:de:09:77:bf:9a:05:08:3e:39:f6:c2:48:b6:5a:eb:23:
01:0c:6c:ed:0b:ce:d9:a6:9a:d4:64:39:f6:bc:9c:64:ce:de:
e6:5c:f8:f9:65:1b:04:71:df:6a:48:a5:cd:3f:fa:f7:f7:ad:
46:73:22:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:34 2026 by rpki-client