Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
File: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft (raw, json)
Hash identifier: HK7Px3tJ+CxP1EFyE/1cE1Fk+TwUFzP5N2SNQxNsCzc=
Subject key identifier: 44:09:2F:81:30:27:63:9E:69:6F:5E:3C:BF:C6:53:92:C2:7D:5E:F4
Authority key identifier: D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64
Certificate issuer: /CN=d99becd088794b11daf34c7f54e59f6939fe9864
Certificate serial: 019D3940CBBD34B1AC2FDAD2A10A31E22DAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
Manifest number: 05AD
Signing time: Sun 29 Mar 2026 11:00:40 +0000
Manifest this update: Sun 29 Mar 2026 11:00:40 +0000
Manifest next update: Mon 30 Mar 2026 11:00:40 +0000
Files and hashes: 1: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl (hash: bDkkRYX6CIJmZMYHXIQX73SOVEAz+GDxY8wVmzZ39GQ=)
2: S6JRzdPpGObhz0VldQpk2KnV2uI.roa (hash: lJGmLlkU+7M1+xw3eyjs66v6c+81KsPPae1DO4AI0OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:cb:bd:34:b1:ac:2f:da:d2:a1:0a:31:e2:2d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99becd088794b11daf34c7f54e59f6939fe9864
Validity
Not Before: Mar 29 11:00:40 2026 GMT
Not After : Mar 30 11:00:40 2026 GMT
Subject: CN=44092f813027639e696f5e3cbfc65392c27d5ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:04:f4:85:5c:91:42:81:9b:4d:52:39:83:a2:
ef:b8:d2:18:f1:19:23:16:04:6d:16:34:7e:73:64:
5f:a6:84:e7:89:de:07:8d:97:22:a3:9c:15:1b:2a:
82:c1:67:a4:35:63:a4:ee:30:19:18:fc:cf:12:4a:
47:ba:2f:14:a5:44:88:0e:e6:b8:80:b0:0e:bb:78:
39:f5:e8:ed:d6:6b:11:93:6d:32:2f:21:29:8b:ad:
68:f8:17:49:23:a5:14:bb:5b:fd:c7:a3:01:41:e9:
56:51:b0:7c:e5:40:ac:57:88:19:4d:15:d8:b5:a6:
60:3b:55:4f:d8:79:e8:95:2b:c8:53:fe:2e:83:37:
8a:0c:78:0e:c2:b7:4f:c6:e0:fc:f2:ef:1b:7d:c9:
12:cc:a0:68:1f:bf:13:2c:10:3d:e6:1b:f6:7b:b3:
26:ab:85:18:b5:44:8b:d4:ae:f8:6d:f2:81:82:be:
5e:47:cd:5a:26:f6:19:3c:9f:bd:74:da:08:70:68:
87:54:e3:07:99:85:0e:da:a3:b1:c8:d8:b8:21:c5:
d8:6c:8a:c7:6b:79:e4:07:5e:9a:e8:ed:f1:f7:b6:
33:e7:50:87:7b:35:2f:b6:3d:03:fe:d0:1f:6c:9a:
6d:dd:4d:a0:b7:ff:6e:73:a5:0c:56:42:b8:4f:c2:
b7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:09:2F:81:30:27:63:9E:69:6F:5E:3C:BF:C6:53:92:C2:7D:5E:F4
X509v3 Authority Key Identifier:
keyid:D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:9d:e3:cb:57:f9:c3:53:b3:81:ab:f4:0b:ce:ce:21:58:3f:
07:ea:bc:14:4e:b2:91:79:76:81:88:24:b5:48:0b:8b:21:28:
1c:1a:b4:1c:8a:4b:7b:d5:d6:c0:62:97:4d:24:30:61:c8:68:
a5:5d:69:a1:6b:e4:20:6c:d8:91:cf:08:92:6b:65:09:f6:73:
77:eb:ee:2f:6c:61:29:73:9f:4e:80:cc:4e:f6:50:15:f6:8c:
d0:07:63:80:ae:00:cd:50:77:c1:93:86:34:54:e1:97:24:2c:
9a:fc:60:df:b9:10:67:9f:cc:88:20:d4:85:ca:0f:83:c0:76:
23:2b:d8:8e:09:fd:d6:9e:57:eb:de:7c:35:90:2c:c7:9a:00:
c0:65:a8:52:b0:84:bd:b2:5d:f4:ba:2e:d9:c8:01:0b:ae:b0:
41:4f:71:6d:93:d8:fc:1f:69:bc:a5:ac:30:a5:62:6f:d5:ad:
97:0f:48:e5:50:ff:77:0d:bc:49:94:cb:db:61:b1:2f:42:b0:
cd:bf:ae:a7:8f:23:10:2a:f5:91:7b:9c:cb:78:d0:5a:e9:34:
5b:b8:c1:df:c0:ce:43:45:42:7a:8b:18:22:a9:02:d1:78:f5:
30:06:23:b6:1b:0e:42:22:4a:a2:65:c7:9f:0b:87:4f:8a:4f:
7a:74:48:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:25:14 2026 by rpki-client