Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
File: 2ko-wHuXhY5oNKWh-I64_jG_eyA.mft (raw, json)
Hash identifier: XIxXeeAmYzk216cN84ZAO0Y4TWxdFgAze9Z7mESsknw=
Subject key identifier: C8:B4:90:E2:0E:55:F3:7F:4B:42:CB:3E:3A:60:14:D2:50:AE:AA:B5
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 019D39AEBD2C3B7566D7166E7480F85BDC56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
Manifest number: 093C
Signing time: Sun 29 Mar 2026 13:00:46 +0000
Manifest this update: Sun 29 Mar 2026 13:00:46 +0000
Manifest next update: Mon 30 Mar 2026 13:00:46 +0000
Files and hashes: 1: 2ko-wHuXhY5oNKWh-I64_jG_eyA.crl (hash: vuMLyuJ7e/un54yVJlLAO+Pcl4RYfoeS/gmK9bi9URk=)
2: f9tprzn73NPBvx0H90-TwMxhyIM.roa (hash: dYV4lQF2uey+ETFDptmt+QtnWsUqIvYU1FjU0+ewYLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:bd:2c:3b:75:66:d7:16:6e:74:80:f8:5b:dc:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: Mar 29 13:00:46 2026 GMT
Not After : Mar 30 13:00:46 2026 GMT
Subject: CN=c8b490e20e55f37f4b42cb3e3a6014d250aeaab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:fc:48:16:bf:0b:e6:d8:f3:e5:73:52:eb:
63:cb:ab:80:17:ff:8d:06:8e:99:80:03:2c:9d:16:
34:49:63:f0:79:3c:38:d4:85:84:16:01:c4:05:c1:
5f:69:1e:45:2b:cd:15:9f:77:96:95:70:a3:e4:88:
59:61:e3:f3:3a:93:49:66:64:b6:eb:80:e5:c5:55:
1f:0c:83:b9:ff:29:a8:56:e8:ef:5b:51:bc:03:6a:
af:ba:f5:d7:d3:19:36:c0:5e:72:ff:78:37:97:c9:
24:4a:ce:e7:f3:89:fe:88:e1:42:ad:ff:8e:d7:66:
bf:5b:f6:d4:21:ff:f8:13:82:b1:5e:33:34:b2:b2:
f2:73:2a:c2:39:6c:ea:33:db:a4:30:17:da:23:58:
f7:99:78:36:72:9b:41:f6:a2:df:cc:5d:38:c8:e3:
c5:c1:4c:ae:6e:be:6b:b6:25:93:5e:10:ef:d1:42:
18:9f:97:3d:35:01:7b:de:46:16:71:b3:bf:b5:a5:
fe:d9:59:1b:90:2b:d1:6a:98:91:10:77:c5:b6:27:
60:d1:9b:da:6c:19:bf:ad:12:7f:ad:84:9b:16:56:
93:cd:af:8c:c3:f4:50:35:8d:44:3e:ef:d3:bc:1e:
a8:36:5c:2b:94:bf:e3:ad:e5:4b:c1:3a:37:b6:c8:
de:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B4:90:E2:0E:55:F3:7F:4B:42:CB:3E:3A:60:14:D2:50:AE:AA:B5
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ba:48:77:1e:2e:7d:ee:e3:ba:fe:bd:ec:4f:1e:db:ed:11:
b4:af:82:27:b7:23:11:15:c6:a0:3a:2f:e5:5a:d8:94:c2:ad:
64:2f:f2:df:f7:b1:fc:a0:d8:77:ec:32:3d:1d:75:ee:9d:bf:
db:75:ef:74:1d:d3:01:23:4f:41:5d:d7:04:8c:54:04:28:c3:
a7:80:60:7c:98:26:e6:85:77:7e:cd:41:dc:b5:98:c0:ae:05:
98:58:8f:a9:77:11:2f:74:87:64:7d:5a:79:15:8b:6c:b7:65:
71:ef:e9:46:06:63:d0:33:48:fb:7e:8b:ed:91:4e:43:ee:6e:
76:49:67:e7:c8:75:18:81:e7:8d:30:59:56:f7:62:dd:3a:41:
0c:cc:5d:1d:c8:17:04:6e:49:0e:52:51:ea:27:81:c2:b8:e8:
21:97:68:e5:86:19:56:97:7a:c3:16:f7:dc:56:c7:34:ca:8e:
7e:cc:21:5e:be:b6:c6:ce:da:66:3a:82:ca:b1:22:1b:49:b5:
fe:b5:b8:1f:4f:57:51:72:c1:4e:54:01:3c:68:5a:86:89:ef:
66:4b:b2:89:f5:07:90:69:d5:e7:f6:79:c7:39:e1:dd:9f:85:
bf:21:d2:ce:40:e9:bc:66:8d:33:95:2a:a8:76:75:b5:7a:04:
42:91:ea:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rr0sO3Vm1xZudID4W9xWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNGEzZWMwN2I5Nzg1OGU2ODM0YTVhMWY4OGViOGZlMzFi
ZjdiMjAwHhcNMjYwMzI5MTMwMDQ2WhcNMjYwMzMwMTMwMDQ2WjAzMTEwLwYDVQQD
EyhjOGI0OTBlMjBlNTVmMzdmNGI0MmNiM2UzYTYwMTRkMjUwYWVhYWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsI78SBa/C+bY8+VzUutjy6uAF/+N
Bo6ZgAMsnRY0SWPweTw41IWEFgHEBcFfaR5FK80Vn3eWlXCj5IhZYePzOpNJZmS2
64DlxVUfDIO5/ymoVujvW1G8A2qvuvXX0xk2wF5y/3g3l8kkSs7n84n+iOFCrf+O
12a/W/bUIf/4E4KxXjM0srLycyrCOWzqM9ukMBfaI1j3mXg2cptB9qLfzF04yOPF
wUyubr5rtiWTXhDv0UIYn5c9NQF73kYWcbO/taX+2VkbkCvRapiREHfFtidg0Zva
bBm/rRJ/rYSbFlaTza+Mw/RQNY1EPu/TvB6oNlwrlL/jreVLwTo3tsjeBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMi0kOIOVfN/S0LLPjpgFNJQrqq1MB8GA1UdIwQY
MBaAFNpKPsB7l4WOaDSlofiOuP4xv3sgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmtvLXdIdVhoWTVvTktXaC1JNjRfakdfZXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9mZTAzMDYtYWY4NC00ZThlLTg4ODUt
Yjg0YTk4MTllYWQ2LzEvMmtvLXdIdVhoWTVvTktXaC1JNjRfakdfZXlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9mZTAzMDYtYWY4NC00ZThlLTg4ODUtYjg0YTk4MTllYWQ2
LzEvMmtvLXdIdVhoWTVvTktXaC1JNjRfakdfZXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQrpIdx4u
fe7juv697E8e2+0RtK+CJ7cjERXGoDov5VrYlMKtZC/y3/ex/KDYd+wyPR117p2/
23XvdB3TASNPQV3XBIxUBCjDp4BgfJgm5oV3fs1B3LWYwK4FmFiPqXcRL3SHZH1a
eRWLbLdlce/pRgZj0DNI+36L7ZFOQ+5udkln58h1GIHnjTBZVvdi3TpBDMxdHcgX
BG5JDlJR6ieBwrjoIZdo5YYZVpd6wxb33FbHNMqOfswhXr62xs7aZjqCyrEiG0m1
/rW4H09XUXLBTlQBPGhahonvZkuyifUHkGnV5/Z5xznh3Z+FvyHSzkDpvGaNM5Uq
qHZ1tXoEQpHqhQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:57 2026 by rpki-client