Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
File: my2tSBy6VIO6qw16DM3BregyrRY.mft (raw, json)
Hash identifier: 2l0N0e4fiCoeBJ44+ahk7F5HpZFomofLeP3iZXDmgrU=
Subject key identifier: 2C:B8:93:1E:A6:FD:5A:D7:8E:44:A4:CC:EC:6C:34:FE:9F:3A:86:F5
Authority key identifier: 9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
Certificate issuer: /CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Certificate serial: 019D37C0437C41EC1F2B1ED5E6D15C79FC2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
Manifest number: 0A2A
Signing time: Sun 29 Mar 2026 04:00:40 +0000
Manifest this update: Sun 29 Mar 2026 04:00:40 +0000
Manifest next update: Mon 30 Mar 2026 04:00:40 +0000
Files and hashes: 1: my2tSBy6VIO6qw16DM3BregyrRY.crl (hash: KinOz+7XIg8RxEuP0TgQ0Obyl3y0sdUwqDvWbpAcgOM=)
2: qi2McZp71fHBoWBI2ZHbtQCvE4o.roa (hash: i0mtBmOyDYgRrM3+GxWl4R2NJ84ChiPy81fprThNQJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:43:7c:41:ec:1f:2b:1e:d5:e6:d1:5c:79:fc:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Validity
Not Before: Mar 29 04:00:40 2026 GMT
Not After : Mar 30 04:00:40 2026 GMT
Subject: CN=2cb8931ea6fd5ad78e44a4ccec6c34fe9f3a86f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ff:f1:4c:9b:e3:14:01:54:2c:95:4b:7a:42:
70:8b:47:7c:1f:92:94:84:f3:b7:a0:35:e9:b9:bc:
89:33:db:a1:f2:d0:f1:7a:f7:6b:fb:54:d9:86:53:
83:75:8c:89:41:3f:ab:ae:5b:ad:56:75:d7:e8:52:
a5:82:64:f9:46:e6:dc:18:36:c8:dd:72:cb:84:8e:
29:4e:2b:fd:4c:e1:8b:2f:99:07:37:13:2d:e3:fe:
a3:35:90:5f:dd:3b:11:d1:ab:9f:04:c9:ef:4f:92:
10:64:c2:a7:f1:13:7b:93:a8:bc:e2:54:7c:28:9b:
72:83:23:cf:ff:92:69:2b:98:fd:f3:75:8f:8f:8b:
15:95:c9:9f:98:21:4d:d3:70:f5:20:62:a7:d4:73:
0f:67:54:45:a2:87:1c:c4:19:3c:4b:e2:93:1d:a1:
b0:f6:b8:87:72:28:d9:3f:f9:aa:48:c4:52:46:35:
24:37:d1:e9:12:38:be:2a:00:50:fc:03:88:fa:65:
64:2e:86:64:67:b7:cd:f3:06:63:ea:fb:50:b8:7d:
6f:79:cd:71:34:48:bf:ec:43:59:98:9a:af:97:ee:
f3:19:e2:15:18:77:88:9e:60:ac:5e:55:f9:55:a9:
c0:92:6c:d8:e6:d1:7a:19:5a:6b:b3:eb:b3:88:de:
4a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:B8:93:1E:A6:FD:5A:D7:8E:44:A4:CC:EC:6C:34:FE:9F:3A:86:F5
X509v3 Authority Key Identifier:
keyid:9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:96:b1:b1:f4:55:85:16:c1:8b:cd:e0:89:9c:b2:91:8f:80:
ef:86:39:a4:3d:a3:56:5c:fa:09:c7:b6:0f:d7:16:10:e6:a3:
ae:fd:cf:fd:c5:fe:3e:e4:dd:11:e2:4b:5b:2c:f7:cc:86:50:
fd:48:ab:3b:f5:ae:ea:48:e1:6b:cd:07:5a:cf:f9:08:84:e6:
f9:60:76:c0:86:4a:5b:2d:60:91:9f:57:07:fe:91:6c:49:1e:
e2:f6:23:ec:1c:9c:8a:14:b2:8b:c8:eb:2a:34:1e:2e:67:b6:
7e:12:39:b9:71:3d:39:7d:78:85:7b:c5:7d:cb:89:b0:83:0d:
64:89:4a:fd:40:b7:66:70:c1:ce:ef:b0:fc:9f:3c:5a:40:09:
f8:e2:6d:04:3b:dc:a4:9f:a6:b6:2a:68:b2:35:e9:8d:56:02:
cd:61:58:69:ee:ac:9c:87:65:41:44:30:fb:97:ba:03:d2:69:
29:f6:b7:ce:6e:32:35:1a:c3:11:eb:da:c3:26:f3:e2:66:e6:
12:83:2c:2b:6a:01:84:6e:a9:a2:10:f4:74:fd:6a:83:a3:b8:
11:b4:1f:3e:e4:85:b3:56:02:86:0f:97:3e:22:b6:ea:5a:1f:
33:39:2e:cc:36:2d:9a:11:23:fb:aa:88:71:c1:4b:fb:5b:51:
ab:a9:c3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:36 2026 by rpki-client