Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: kbLmLqGKrcq8SRzWA0xhzaiTWQSqL77kcv7H6R2vzPU=
Subject key identifier: 81:E3:AD:BA:EB:BB:3D:25:C5:B4:3B:F5:59:0D:4F:48:26:6B:FD:EA
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019CE5FF09E2B6092E219909807D75CF57A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 05C5
Signing time: Fri 13 Mar 2026 07:00:22 +0000
Manifest this update: Fri 13 Mar 2026 07:00:22 +0000
Manifest next update: Sat 14 Mar 2026 07:00:22 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: wnbmJadJ1tQMhxvRsQI0lIBCJ4/qW2QHnD6rQ+4kYhE=)
2: so3uet9HxmTT1e6-Xaeu7Xu47R4.roa (hash: YS3OlsV7nqbX92XpohfbsDi48e2F2cYz3EHfcdxmOmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:ff:09:e2:b6:09:2e:21:99:09:80:7d:75:cf:57:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Mar 13 07:00:22 2026 GMT
Not After : Mar 14 07:00:22 2026 GMT
Subject: CN=81e3adbaebbb3d25c5b43bf5590d4f48266bfdea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:13:e9:59:d4:cb:de:14:b0:0c:69:61:61:
1c:bc:7d:5c:51:0b:66:90:93:fc:a4:69:a3:4d:6c:
db:89:d6:cc:e7:f3:3a:bb:58:32:23:e8:ff:89:4b:
aa:d4:f4:69:09:c1:8c:13:37:b5:e4:0d:c7:ac:b4:
fb:d5:89:8c:02:cb:ba:eb:b3:39:aa:96:98:f9:7a:
4c:6d:09:0e:3d:19:78:aa:e8:12:42:b6:8e:b0:9b:
73:70:10:2c:ec:d7:b8:73:71:16:26:41:41:2f:8a:
89:de:1c:21:56:07:ac:bd:0e:a9:87:93:df:54:b4:
29:2d:16:1c:37:f9:1d:95:38:e5:13:05:dd:d1:a3:
72:84:05:bc:80:06:e0:a9:58:7b:c4:d6:17:c6:d1:
84:13:3a:6d:03:65:2e:f6:7b:e5:98:a7:f7:ae:f2:
ff:94:97:50:dd:7e:31:13:ae:e0:69:ea:ff:9f:f0:
21:f3:e6:df:2f:ae:11:ab:73:7f:6d:bf:3e:0d:4d:
97:3c:68:a3:b1:81:a6:16:c3:79:07:97:6a:f3:61:
71:36:9f:a1:7b:99:3a:69:06:79:88:14:b5:22:80:
a5:0a:6c:af:1d:eb:26:d6:95:cd:9e:1a:c4:47:11:
74:26:64:c9:42:33:82:b0:07:9b:b9:c4:28:6d:b2:
72:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E3:AD:BA:EB:BB:3D:25:C5:B4:3B:F5:59:0D:4F:48:26:6B:FD:EA
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d5:94:5e:81:5f:49:20:a0:44:b8:54:58:39:e6:2a:20:c1:
bf:91:13:d6:6a:02:30:f2:7e:8d:c4:d0:2b:97:67:8a:5e:ba:
c0:e6:bf:f6:cd:41:f7:31:8d:c1:55:99:e7:a6:86:9c:50:32:
85:50:40:f7:6b:22:03:db:6b:4e:64:4e:c8:6e:ce:c6:5a:0d:
d8:d9:c9:1b:32:19:d8:91:35:b1:cd:f8:49:22:db:41:f3:43:
a8:4b:96:89:60:bc:1e:52:86:8c:35:5a:17:dc:c9:b3:c4:b6:
3c:59:96:3e:65:61:69:ac:e6:d0:c5:11:1e:30:49:fe:77:de:
0b:77:e1:c8:b5:5d:17:c8:15:96:c4:63:1c:5d:b8:ae:24:42:
ca:3a:b2:0e:f2:1b:b3:f4:90:7e:47:4d:5d:62:e0:dd:f7:62:
b5:37:b9:e9:bf:b2:95:89:08:70:db:8f:36:e8:82:b8:26:94:
7b:aa:af:5d:b6:43:e4:38:48:23:60:28:66:45:73:9c:0c:5d:
7f:54:11:34:3a:61:13:3d:60:a2:eb:42:66:eb:85:00:28:7c:
48:45:79:48:8c:2d:bc:ca:b7:a5:d2:12:78:3d:7c:fb:f8:22:
d7:a3:45:c2:eb:bf:57:e0:35:00:ed:47:8f:c0:a6:97:58:fc:
58:fe:59:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:56:55 2026 by rpki-client