Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
File: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft (raw, json)
Hash identifier: V36zF+xaQolW5+GTcFT2MEz0R4n/oXo5qJqcS2ua4AE=
Subject key identifier: 04:6A:CF:8F:B0:5F:2C:8A:94:68:E5:40:06:DF:20:3E:D2:A1:E9:4E
Authority key identifier: D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3
Certificate issuer: /CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
Certificate serial: 019D38663D732CD1ED87CB90FECF6521F332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 07:01:57 +0000
Manifest this update: Sun 29 Mar 2026 07:01:57 +0000
Manifest next update: Mon 30 Mar 2026 07:01:57 +0000
Files and hashes: 1: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl (hash: xnUzDNIpnGJIkmGmedvR4vJ6IEDp5nOuQhb0a+7sdGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:3d:73:2c:d1:ed:87:cb:90:fe:cf:65:21:f3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
Validity
Not Before: Mar 29 07:01:57 2026 GMT
Not After : Mar 30 07:01:57 2026 GMT
Subject: CN=046acf8fb05f2c8a9468e54006df203ed2a1e94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d3:f5:7c:5c:fb:bd:82:ad:55:b3:f9:2a:08:
98:88:5a:d9:ca:ea:a7:d5:87:af:9f:c3:07:9b:db:
7c:24:a8:e4:7b:83:c8:61:42:1a:9d:4b:8b:03:2e:
98:58:a4:85:90:7b:1e:ad:7f:51:d2:df:ef:ba:84:
b1:f7:d2:57:00:97:e6:a8:93:c1:07:6d:e7:fe:a3:
e7:15:87:ad:f5:e0:af:59:df:55:f5:2d:51:86:7e:
df:7d:99:32:d0:90:54:52:5a:14:14:08:6a:9e:5f:
00:71:aa:5e:5a:7b:c5:0a:78:02:04:e4:fa:0d:6a:
2f:62:1e:8a:17:71:a7:03:65:ed:57:07:47:4f:62:
ba:5d:9f:ac:9b:fa:fb:09:52:18:89:4f:a3:c3:87:
9d:e1:d4:64:d5:8a:b0:90:c9:fa:ad:e1:19:a1:34:
71:85:4b:9c:91:26:f8:0c:78:aa:23:fb:08:64:61:
f4:ca:59:5d:80:66:e0:d4:b7:4b:e9:82:d3:7f:1b:
97:93:22:ed:80:d6:1a:1a:ca:cc:2d:0c:16:df:3d:
a8:6a:35:6d:67:c6:f9:21:97:0f:35:4a:fa:6b:ab:
3c:37:1b:a3:b0:e2:8a:02:b2:16:00:f2:e3:43:7c:
de:13:f5:87:3f:c4:92:f5:12:66:97:d2:1f:cd:41:
ee:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6A:CF:8F:B0:5F:2C:8A:94:68:E5:40:06:DF:20:3E:D2:A1:E9:4E
X509v3 Authority Key Identifier:
keyid:D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:a9:89:a9:b3:06:ac:77:61:4a:45:32:9c:fe:8a:5b:07:2d:
16:f1:bd:17:2c:37:a4:69:ad:1c:be:8a:3b:f8:31:a7:47:dc:
14:1a:c4:0a:9e:53:e5:5d:e0:2f:f3:12:69:d5:92:50:62:87:
a6:87:ad:82:1a:22:60:d1:dc:0c:70:4b:2d:97:2a:e8:f1:21:
8d:ce:df:c2:07:02:de:11:cb:6c:8a:cf:82:5a:e3:ef:40:29:
b2:6a:8c:38:fc:e6:32:62:40:fb:90:c1:5c:4f:a1:5c:3d:1b:
60:4c:82:99:77:a1:e1:41:12:c4:f3:ac:6f:d4:85:d8:2c:d6:
f3:e9:9b:0c:a6:b4:bf:ef:db:ec:66:c4:f2:32:54:4b:7a:c7:
da:a9:0f:db:2c:ad:b4:f4:1c:b1:f0:5c:bf:46:19:84:8b:ac:
67:fa:c6:2d:ed:20:ca:38:8e:5d:21:a2:a8:4a:3f:84:cb:07:
d7:e0:5c:e9:78:05:03:61:95:cb:df:eb:cb:81:48:02:58:75:
98:79:95:74:de:94:4d:61:63:26:87:4f:1d:e5:f8:48:d0:95:
02:2e:40:39:f2:ac:4a:9b:43:cb:db:2a:15:b1:79:e5:d7:51:
e7:84:d3:e7:0e:fa:2d:cf:1d:3f:7a:72:3f:9b:c8:09:46:31:
d5:bc:61:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zj1zLNHth8uQ/s9lIfMyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDcyYjAzM2ZmNmZhMzhiZjIzNjEzOWFjZGI3N2E3YTBh
MDQ3YTMwHhcNMjYwMzI5MDcwMTU3WhcNMjYwMzMwMDcwMTU3WjAzMTEwLwYDVQQD
EygwNDZhY2Y4ZmIwNWYyYzhhOTQ2OGU1NDAwNmRmMjAzZWQyYTFlOTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndP1fFz7vYKtVbP5KgiYiFrZyuqn
1Yevn8MHm9t8JKjke4PIYUIanUuLAy6YWKSFkHserX9R0t/vuoSx99JXAJfmqJPB
B23n/qPnFYet9eCvWd9V9S1Rhn7ffZky0JBUUloUFAhqnl8AcapeWnvFCngCBOT6
DWovYh6KF3GnA2XtVwdHT2K6XZ+sm/r7CVIYiU+jw4ed4dRk1YqwkMn6reEZoTRx
hUuckSb4DHiqI/sIZGH0ylldgGbg1LdL6YLTfxuXkyLtgNYaGsrMLQwW3z2oajVt
Z8b5IZcPNUr6a6s8NxujsOKKArIWAPLjQ3zeE/WHP8SS9RJml9IfzUHu+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFARqz4+wXyyKlGjlQAbfID7SoelOMB8GA1UdIwQY
MBaAFNnXKwM/9vo4vyNhOazbd6egoEejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80Y2JhZjctYjgzYi00Nzk4LWFiMzYt
ZjgyMWE1YTVjZjZhLzEvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS80Y2JhZjctYjgzYi00Nzk4LWFiMzYtZjgyMWE1YTVjZjZh
LzEvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcKmJqbMG
rHdhSkUynP6KWwctFvG9Fyw3pGmtHL6KO/gxp0fcFBrECp5T5V3gL/MSadWSUGKH
poetghoiYNHcDHBLLZcq6PEhjc7fwgcC3hHLbIrPglrj70ApsmqMOPzmMmJA+5DB
XE+hXD0bYEyCmXeh4UESxPOsb9SF2CzW8+mbDKa0v+/b7GbE8jJUS3rH2qkP2yyt
tPQcsfBcv0YZhIusZ/rGLe0gyjiOXSGiqEo/hMsH1+Bc6XgFA2GVy9/ry4FIAlh1
mHmVdN6UTWFjJodPHeX4SNCVAi5AOfKsSptDy9sqFbF55ddR54TT5w76Lc8dP3py
P5vICUYx1bxh0Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:48 2026 by rpki-client