Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json)
Hash identifier: EdbASGWLZS0ED+dWRTf17vPYr9PY0mYWNlNKOs2+qKA=
Subject key identifier: 1C:0A:B8:A7:18:25:B5:AF:49:71:71:ED:B3:68:B8:FA:64:A8:53:35
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 019DA378C3BF074084FE762F8DFB42D2B0F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
Manifest number: 18CE
Signing time: Sun 19 Apr 2026 02:01:33 +0000
Manifest this update: Sun 19 Apr 2026 02:01:33 +0000
Manifest next update: Mon 20 Apr 2026 02:01:33 +0000
Files and hashes: 1: 0EOOKZ73EuVKb6azhsikToGYTJ4.roa (hash: tOeqHdzaa5uQmGPeE+9GIo5atcoydPGRdU/daaN1H/s=)
2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: n9qBhFgNSefFeR5q0p4LlAYVqmSDcYdh6GwHPWe2tNA=)
3: EUeWkU0aryB-YkR2M3TsErGD9Is.roa (hash: gK62/o9yO+OyvLt7cRE+ehw4Ouq7VrrbTSmr3DLojOI=)
4: SpICVub50OICM4yiQk6ulqnyBsU.roa (hash: 1SZAmfW+sJIqJsSkqCTN19QGqChFmDq0AZE9eacMzAI=)
5: W9lGuLlyK3oCTZXvmQuqTo4C2yg.roa (hash: G4w7b1CN5DpM/EZuMWQLQvxT+EVuYLv3nYfxDAbKhDk=)
6: jUElcf1JFP10uCVqAsvtMStO4o0.roa (hash: xrxSdpsBwKaZISPc2IK2Gw1lDuUsBX/PpqeA4Z3a8cs=)
7: o09lL4OudMDTh_jmHHeTIRn2L5s.roa (hash: ctwy00D7K53oO1gqUQQpnsVurkNSXddz4U1vX79+KpM=)
8: yn6euPUsjq8bRXFpjTNGPdRM13Y.roa (hash: IGe548/q8hO5ei6AedK5a51FhkUkqFo8BXPppwB9Vlw=)
9: znNyesTwbEHb5GdVovxJsLLM9KQ.roa (hash: WbfDTvPg/i+BiVxKsZsH5gFpX+Sz+6FiIPk4KG/O+AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:c3:bf:07:40:84:fe:76:2f:8d:fb:42:d2:b0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Apr 19 02:01:33 2026 GMT
Not After : Apr 20 02:01:33 2026 GMT
Subject: CN=1c0ab8a71825b5af497171edb368b8fa64a85335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e6:50:f0:23:b7:23:5a:64:2f:e3:e3:fd:53:
14:50:50:e9:8d:d4:7d:dd:6b:71:25:86:64:63:7a:
6a:aa:3e:ce:38:d2:19:e8:38:b8:0a:86:b6:3d:86:
ac:d0:23:b0:68:9a:a6:6f:db:bf:c2:ac:11:aa:56:
de:52:f0:a5:b6:30:46:ff:82:8c:86:86:05:b6:82:
d9:af:05:95:20:27:c9:2b:a9:ac:97:0e:ff:5e:ea:
6b:98:1a:6d:3c:ca:48:88:65:f8:d1:21:ac:34:10:
aa:df:a1:c4:6d:12:1d:d8:7a:47:2e:9c:65:a0:1f:
af:1f:d3:73:e9:9d:ab:83:e7:e8:87:7e:6a:e8:a3:
d4:ff:c8:b7:ec:2a:dc:cb:76:99:80:43:1d:70:f9:
71:9f:26:ce:1d:6f:0a:2a:9d:58:f3:02:ea:82:be:
71:b4:fd:a0:80:10:d0:b3:58:6c:a2:9b:8a:00:ac:
71:c0:09:f1:13:1b:bb:91:d8:a3:68:41:53:63:61:
f0:e0:29:d6:13:16:6b:1b:e5:d7:83:e4:a7:f8:3f:
8d:34:43:1c:a9:70:ea:85:33:15:62:d7:9e:3e:53:
00:32:04:e0:e6:c4:fd:14:4a:5c:c7:00:76:af:7a:
1c:d4:8d:d5:d8:d5:37:d3:e4:de:b1:f0:71:de:23:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0A:B8:A7:18:25:B5:AF:49:71:71:ED:B3:68:B8:FA:64:A8:53:35
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:dc:0a:2c:4d:44:3b:6e:e8:01:e3:5a:88:33:55:bc:38:83:
10:35:af:40:e1:ad:b6:a3:c2:d6:c7:1c:2f:7c:cb:f9:97:2c:
55:5a:5b:39:26:0a:11:fd:42:4c:5f:e4:88:59:d1:be:28:e3:
20:fd:9d:09:9e:e6:8e:0e:8e:8e:4f:5d:6c:0b:7e:bf:a0:72:
48:5a:f3:a3:8e:70:43:86:49:ab:b1:67:07:8c:73:d8:85:72:
f1:10:96:e4:98:e7:98:7e:ed:63:3d:e4:5e:cf:01:c6:b4:f2:
fa:62:9f:f3:11:25:35:a6:fa:32:e1:7c:3a:87:58:71:03:2c:
cd:64:38:d3:5f:ee:4c:d4:f8:ae:c0:1e:04:ca:33:8f:d6:d1:
ee:de:5c:1b:7b:4d:90:6b:e5:55:01:64:28:1e:c9:d5:af:ab:
76:c9:32:06:05:5d:ff:d6:2d:0e:cb:cd:55:09:73:57:7d:cd:
f6:b5:d9:51:41:2c:c4:c8:af:ff:c8:d9:b5:55:b4:c6:f6:a1:
37:bc:6b:f4:21:ff:f7:a7:00:55:ff:af:c0:6c:8f:5b:69:95:
2d:9b:9b:c0:df:b5:fc:ec:e3:ad:b3:3f:d6:70:34:50:83:65:
49:5f:22:d6:01:03:e2:00:df:dd:37:00:77:29:fa:e1:65:b0:
ca:a3:10:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 06:59:07 2026 by rpki-client