Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json)
Hash identifier: MJAn+DhHtNoCnXWekt7JBJojumEYxRNphSOK1Xi54do=
Subject key identifier: CD:CB:16:9A:56:42:6B:B5:2A:74:2D:06:79:34:FF:2E:E5:ED:CA:A2
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 019CB9CC3BDC68F41ED375A51EB98D9BD466
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
Manifest number: 1855
Signing time: Wed 04 Mar 2026 17:01:35 +0000
Manifest this update: Wed 04 Mar 2026 17:01:35 +0000
Manifest next update: Thu 05 Mar 2026 17:01:35 +0000
Files and hashes: 1: 0EOOKZ73EuVKb6azhsikToGYTJ4.roa (hash: tOeqHdzaa5uQmGPeE+9GIo5atcoydPGRdU/daaN1H/s=)
2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: vVJPKtVDa1eELCFVTyrAzvBJjPUwRo7GUOFfbmXM+xQ=)
3: EUeWkU0aryB-YkR2M3TsErGD9Is.roa (hash: gK62/o9yO+OyvLt7cRE+ehw4Ouq7VrrbTSmr3DLojOI=)
4: SpICVub50OICM4yiQk6ulqnyBsU.roa (hash: 1SZAmfW+sJIqJsSkqCTN19QGqChFmDq0AZE9eacMzAI=)
5: W9lGuLlyK3oCTZXvmQuqTo4C2yg.roa (hash: G4w7b1CN5DpM/EZuMWQLQvxT+EVuYLv3nYfxDAbKhDk=)
6: jUElcf1JFP10uCVqAsvtMStO4o0.roa (hash: xrxSdpsBwKaZISPc2IK2Gw1lDuUsBX/PpqeA4Z3a8cs=)
7: o09lL4OudMDTh_jmHHeTIRn2L5s.roa (hash: ctwy00D7K53oO1gqUQQpnsVurkNSXddz4U1vX79+KpM=)
8: yn6euPUsjq8bRXFpjTNGPdRM13Y.roa (hash: IGe548/q8hO5ei6AedK5a51FhkUkqFo8BXPppwB9Vlw=)
9: znNyesTwbEHb5GdVovxJsLLM9KQ.roa (hash: WbfDTvPg/i+BiVxKsZsH5gFpX+Sz+6FiIPk4KG/O+AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 17:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b9:cc:3b:dc:68:f4:1e:d3:75:a5:1e:b9:8d:9b:d4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Mar 4 17:01:35 2026 GMT
Not After : Mar 5 17:01:35 2026 GMT
Subject: CN=cdcb169a56426bb52a742d067934ff2ee5edcaa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ad:ec:5b:2f:87:75:6f:4b:3c:da:6d:67:c8:
1e:3c:0a:9b:58:42:44:49:4e:15:25:2d:61:31:c5:
ea:a3:2f:f1:57:c2:ab:c0:b4:74:c6:db:eb:97:d7:
8c:ed:6e:55:8b:7d:0a:b1:83:f9:f1:ea:e3:d4:66:
44:06:e2:ba:06:dc:94:5f:8c:95:c4:e9:1d:c5:9c:
70:b0:4b:88:5c:3f:4f:6b:25:29:a8:ee:7f:9a:4a:
f5:55:d4:82:f4:e7:ce:09:a1:eb:af:8a:c5:bb:44:
e4:bd:19:c8:20:d3:c2:01:2d:76:a9:5e:73:bd:11:
2a:52:95:a7:fa:e9:76:df:a5:c4:5a:60:29:15:9d:
dc:47:b3:d4:b2:cf:c5:85:fd:08:39:1b:fa:18:06:
09:2e:95:dd:6b:38:64:24:c1:17:57:f8:ce:0c:01:
b1:f4:bb:b0:26:58:f1:bb:50:33:25:12:a6:1c:1e:
e5:d5:45:7b:af:82:d2:92:8c:2f:0a:b6:74:7a:a4:
fc:c9:28:6d:14:da:9e:d6:63:75:0d:66:96:fe:fc:
47:98:fe:7d:61:f9:1e:9a:56:2f:e5:a8:11:d2:67:
f2:68:e6:82:ba:63:ac:4b:31:fd:f2:b7:88:54:e5:
bc:cc:bd:f0:ce:55:d6:ca:3a:25:17:25:dc:df:88:
24:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CB:16:9A:56:42:6B:B5:2A:74:2D:06:79:34:FF:2E:E5:ED:CA:A2
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:15:78:df:c0:dd:be:fd:97:33:ec:fa:74:28:99:1e:a7:e3:
cc:23:ce:8d:6b:a3:aa:59:73:c8:ec:6d:8d:13:f0:e1:89:b3:
b7:ce:7e:8b:ed:c0:bf:d9:8e:a1:77:e8:3a:95:97:96:0c:5b:
4e:9e:67:a8:d7:b5:84:cc:b5:ab:e6:68:e9:0d:33:dc:fc:7d:
f8:c5:6a:d8:d6:a5:e7:26:2b:ff:c8:05:42:66:d1:01:f9:c4:
df:73:1c:00:c4:46:3b:84:32:9a:15:9b:b6:da:82:e2:74:1e:
a4:62:21:1b:40:21:a4:d5:67:f2:3b:c8:f6:04:b9:7b:81:6a:
25:ed:0d:91:d1:92:c5:73:fc:76:ed:d4:b8:3e:62:ee:26:5a:
8f:4c:01:69:e6:98:e8:23:a7:69:37:98:7c:9d:f5:f7:75:ac:
61:13:11:d7:e8:26:cf:54:b7:cd:f6:2f:49:71:94:c2:25:79:
95:14:8c:19:cd:3a:54:e4:81:6b:86:47:89:81:20:9d:1f:9e:
8d:9c:c5:5b:b2:8d:ba:f7:2e:8b:51:2a:bd:5b:d9:aa:8d:f0:
58:78:2b:bb:23:26:2b:fb:c4:21:30:7f:7a:53:db:04:06:46:
e2:2a:45:07:0a:2b:62:04:59:c8:02:fb:e1:89:f1:8a:ab:ad:
24:3f:dd:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 02:47:40 2026 by rpki-client