Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
File: 2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft (raw, json)
Hash identifier: OLvBzLOx+HqVxsvVYFc/lTItmdzcVS/gELisCnOHT8w=
Subject key identifier: 4D:C7:03:0A:E2:C2:BD:97:8F:4E:EF:42:EF:08:BA:68:B0:6E:70:F5
Authority key identifier: D8:DD:0F:06:6A:3E:24:F1:A6:63:11:2A:1F:28:E9:D8:3B:2E:CD:73
Certificate issuer: /CN=d8dd0f066a3e24f1a663112a1f28e9d83b2ecd73
Certificate serial: 019D32638D45D70249CD2A050BDAE5CD8BDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
Manifest number: B3
Signing time: Sat 28 Mar 2026 03:01:18 +0000
Manifest this update: Sat 28 Mar 2026 03:01:18 +0000
Manifest next update: Sun 29 Mar 2026 03:01:18 +0000
Files and hashes: 1: 2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl (hash: b4pi/KjqLCxPD7523RPpehYUkNXgeygnz3GXtppknCs=)
2: kpMx_jDvAD2J4w_3QrPa_7EmM7k.roa (hash: s8PvuEvsSULDst+nlshWZnZoN6R6lxtcg9VvUqcdZGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:63:8d:45:d7:02:49:cd:2a:05:0b:da:e5:cd:8b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8dd0f066a3e24f1a663112a1f28e9d83b2ecd73
Validity
Not Before: Mar 28 03:01:18 2026 GMT
Not After : Mar 29 03:01:18 2026 GMT
Subject: CN=4dc7030ae2c2bd978f4eef42ef08ba68b06e70f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:92:d2:d3:f8:b5:ff:29:11:41:77:e7:48:f4:
08:75:3c:b6:79:3a:c2:86:a8:c7:27:df:e9:a4:e3:
63:44:94:05:1e:16:f7:65:ca:e6:11:ea:1a:cd:ad:
e9:26:c9:90:69:7b:85:de:e7:83:0a:cd:42:6b:1a:
09:b9:36:cd:02:f0:dd:5c:b5:0f:75:fb:d9:98:6f:
aa:6f:d2:57:42:b2:84:f6:13:5b:b7:bb:e9:5b:52:
8d:79:fb:98:41:31:e7:23:6f:8a:fc:4a:aa:4d:7c:
19:ca:d6:16:83:44:06:5a:7c:1d:d3:64:23:2d:d6:
a9:cf:e2:4c:af:34:e5:ee:a7:f7:66:59:ea:6b:e9:
39:71:35:89:9e:38:b9:7b:45:1c:0e:42:27:f2:d7:
4d:ec:dc:c9:f0:c4:5c:c3:f4:a2:50:82:14:91:5c:
62:49:bd:21:4e:22:91:ff:04:de:e7:a2:0c:51:85:
ad:75:0a:a0:f7:63:89:36:8f:d8:d1:70:4a:cf:57:
ad:e1:5c:d3:5a:e1:69:d6:c4:52:0b:5b:41:90:cc:
1f:ec:f5:59:61:23:49:98:1f:c6:17:3a:54:8f:b7:
e2:24:7f:a7:b5:5d:ea:44:94:58:73:81:90:c9:0d:
8d:b6:c4:28:a3:30:62:3d:7a:eb:99:ab:6b:ca:bb:
30:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C7:03:0A:E2:C2:BD:97:8F:4E:EF:42:EF:08:BA:68:B0:6E:70:F5
X509v3 Authority Key Identifier:
keyid:D8:DD:0F:06:6A:3E:24:F1:A6:63:11:2A:1F:28:E9:D8:3B:2E:CD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:69:8f:17:05:fa:49:a3:09:07:fa:0a:f8:6e:84:1c:c7:05:
d7:54:46:6b:e6:8d:9f:71:a6:9d:fb:cd:e9:8f:6b:4a:82:b0:
f3:b1:40:ab:4c:03:07:f4:83:65:7d:8b:4f:ce:74:8d:07:70:
5c:ac:38:88:73:b5:22:17:94:95:d3:6b:b5:75:df:0e:3a:65:
1a:c0:63:57:00:05:c9:aa:8e:43:ba:75:38:8e:ff:9b:21:3b:
5a:f4:8a:b8:4d:07:1c:87:32:e6:09:80:8b:2c:0b:73:5a:30:
fd:a4:9d:ff:53:1e:c0:22:33:9d:4f:39:a9:5d:e5:5d:f0:9a:
93:ce:cc:ec:a8:e4:7b:23:01:d0:fd:64:03:30:ab:bd:40:5c:
9b:ef:d3:12:ea:90:05:e2:d0:5e:28:e5:17:13:36:20:85:b9:
f5:29:1d:1a:e6:c5:88:40:07:72:3d:32:2b:03:f6:21:36:82:
fc:13:0d:68:6c:65:fc:04:66:c2:c4:da:86:05:93:c4:22:f2:
06:19:0a:92:57:c0:a2:08:c3:b0:1d:d2:6f:6c:33:5b:64:6c:
ff:9b:20:8e:7d:4c:e3:65:ed:e2:53:13:2e:c4:2b:d0:84:30:
c8:ba:47:cd:c0:95:c2:5a:a5:5d:99:3a:43:96:e6:85:43:e0:
da:36:6a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 11:28:05 2026 by rpki-client