Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: tWAIZ2IJgJvzjYzmsiA4yl2vZnouuANStThpLV+fG2o=
Subject key identifier: 23:65:B3:F4:FA:0A:50:BF:C7:94:FA:70:4E:5E:9D:5E:D9:D2:A9:97
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 019CE5C8ED64F75C1C00C5E6DA5E5606DCFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 091A
Signing time: Fri 13 Mar 2026 06:01:16 +0000
Manifest this update: Fri 13 Mar 2026 06:01:16 +0000
Manifest next update: Sat 14 Mar 2026 06:01:16 +0000
Files and hashes: 1: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: /r89EED9K23zM2FDJ7f5/xAqpuD25X4zx0FrfdGGkks=)
2: 48OS4sWYglwtZBn1YxiPqc26nTU.roa (hash: NBM10gWvuZSa38kRQAx40WjX3amxqFeb96LnMyUj85Q=)
3: HUZvsXoFqmpwitLw4aku7m5jYa8.roa (hash: rhpAJ7/RvlTCzRrbypi+sM57yT9OZ8RJ46KD4H90XuY=)
4: Rl0xX2L5u9e-WU3LxVTHfDCZoEQ.roa (hash: iB5ApjU6OfFGOZU2O/uqHAaYYGIEkIhRygeaclVc054=)
5: hih4fzkJ3O9yEk3BE5UpAZ6h-8Q.roa (hash: R7mk0homAMVaYBl/kyf6p+7Cu/DPi0srKaEKzzxe+Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c8:ed:64:f7:5c:1c:00:c5:e6:da:5e:56:06:dc:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: Mar 13 06:01:16 2026 GMT
Not After : Mar 14 06:01:16 2026 GMT
Subject: CN=2365b3f4fa0a50bfc794fa704e5e9d5ed9d2a997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:23:8b:3e:43:23:b4:66:b5:ad:1e:25:1c:
eb:8f:9d:2c:a9:8f:b9:c9:02:37:f0:8c:0b:5f:89:
eb:86:25:cc:85:94:ac:f9:5d:40:66:7c:8f:9d:3c:
33:91:7b:f2:75:29:6e:cf:7a:c0:af:4b:28:c9:83:
e8:04:f6:a4:10:be:9a:cf:1c:18:bb:da:11:2a:d1:
6f:1a:34:d0:fd:5c:76:b6:83:37:60:aa:cc:e3:f2:
a4:81:d8:7e:5b:be:56:7b:47:7f:4c:f7:bc:9a:68:
c9:f1:61:26:8b:73:57:26:72:d5:3d:df:e0:27:b6:
9a:d1:52:6d:85:28:db:be:3e:c1:b1:6d:40:10:ff:
f3:0f:4d:c6:71:13:ee:e4:8c:6d:ba:1d:d2:16:d3:
b5:1e:f8:2f:2c:bf:8d:62:ff:c6:77:e0:e7:65:5e:
7f:bd:f5:a1:7e:a1:ea:c6:d4:65:fa:9d:b3:c8:2c:
3f:ee:1d:d7:c4:74:07:0c:86:d3:f2:dc:3f:f3:d9:
ae:a4:8f:3a:51:74:a9:96:6d:66:85:4f:d7:b2:6c:
7c:5b:6a:d9:9e:04:6b:74:84:88:19:cb:da:82:ab:
35:1c:aa:95:e4:2a:8a:b7:d4:91:a6:1c:f7:ac:a3:
75:ae:9a:30:38:52:93:d4:1a:b0:61:2a:26:e1:37:
3e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:65:B3:F4:FA:0A:50:BF:C7:94:FA:70:4E:5E:9D:5E:D9:D2:A9:97
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:02:eb:74:fe:4d:d5:95:bc:08:ce:68:c0:b2:3a:df:da:a5:
2b:73:79:f7:c3:87:0c:b9:b6:f1:29:7d:da:43:73:d5:b2:04:
f2:e1:7a:aa:0c:9e:cc:84:a9:54:bd:f2:d0:e5:9f:48:7d:dd:
60:dc:f4:bd:d5:88:59:b5:71:ac:f4:af:b4:0f:a3:7f:2c:b7:
9f:f8:b0:cc:e7:f9:f6:ea:f8:85:3a:c0:d4:22:58:da:80:8a:
d8:85:fe:d4:4e:a2:f3:68:a9:b3:2b:2a:d0:63:41:8b:7b:76:
4f:fb:43:4b:ec:ca:7e:98:9f:30:47:27:35:4f:bf:67:6f:7e:
ad:d4:c6:11:e2:8c:e3:12:47:0e:6c:75:9e:47:7e:c6:66:fd:
e1:b0:cf:c1:4a:f5:4a:3b:8e:c7:a1:20:49:49:32:62:0f:23:
bd:9a:46:5a:68:d9:8c:0f:04:d7:75:19:9d:d7:11:d1:20:39:
8a:cf:80:07:28:39:94:2f:c1:bd:bf:37:4c:97:a7:b1:a0:5c:
3c:c4:32:db:a8:1e:04:d0:51:00:13:83:e6:d5:4b:d3:82:0c:
cc:8e:d8:e0:f9:57:99:3d:63:42:72:e7:c2:86:eb:95:5d:bc:
33:81:12:2d:bf:6b:65:e1:9a:70:46:e7:57:28:d5:9b:42:35:
be:37:c2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:56:01 2026 by rpki-client