Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: x7afRsjWt/1E4ze5fcNnY/Exg1QaRnsTRVe1FYsYcWA=
Subject key identifier: E0:8E:36:F6:AB:C1:35:4D:79:AD:A2:B9:CD:9B:26:6A:0E:AD:92:A5
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019D26CD6D70A08FE1DA71A5651F27BD6670
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 21:01:30 +0000
Manifest this update: Wed 25 Mar 2026 21:01:30 +0000
Manifest next update: Thu 26 Mar 2026 21:01:30 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: ytxbKK4RIxhivERcAeMaH1dsnXKbnd5CznkcIAEouPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:6d:70:a0:8f:e1:da:71:a5:65:1f:27:bd:66:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Mar 25 21:01:30 2026 GMT
Not After : Mar 26 21:01:30 2026 GMT
Subject: CN=e08e36f6abc1354d79ada2b9cd9b266a0ead92a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ae:d2:e0:db:ae:a1:c0:6e:23:f4:e4:a9:4a:
50:46:1c:e1:b2:1a:c7:03:45:29:4a:06:7c:b3:43:
48:ed:95:5b:41:ad:1a:71:72:27:f1:c8:20:fd:91:
6f:ce:10:fc:f1:1c:4a:44:1c:11:01:3f:03:90:23:
c9:66:11:f9:f5:04:5d:3f:53:47:a2:6b:c9:04:86:
63:4a:9b:63:72:f4:58:29:18:b9:56:d5:64:9b:f4:
be:ab:09:be:f2:6d:aa:8a:c1:f4:c8:bf:e4:7e:c4:
53:60:94:b7:73:0d:67:85:51:ea:91:b6:23:c8:23:
5a:1f:81:47:9c:21:ef:53:8a:92:2c:34:93:a6:7d:
c0:7b:9b:42:a1:4a:f7:75:7b:78:db:3f:84:43:2b:
18:23:aa:89:e7:ac:01:60:58:1a:77:58:95:7d:cb:
8e:8e:aa:5a:84:f5:dd:fd:64:39:15:44:2a:a7:d3:
b3:9e:b4:87:35:67:7d:36:17:80:95:9b:84:3c:a4:
ae:60:a7:de:28:f6:d6:c5:4e:2f:56:9c:59:5b:cb:
0b:8b:34:bf:a6:ba:62:56:fe:9c:cc:1c:01:6b:28:
15:01:d2:d1:05:b6:92:d9:c7:1d:a3:56:03:85:30:
64:f0:fe:8a:6e:59:0b:44:28:1a:1f:2e:0c:8f:db:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8E:36:F6:AB:C1:35:4D:79:AD:A2:B9:CD:9B:26:6A:0E:AD:92:A5
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:38:3b:49:cb:2c:49:44:a1:97:cd:8e:43:d2:28:ab:d5:0e:
26:42:53:34:4e:a9:41:32:0c:a3:1c:a6:51:26:55:2e:78:4c:
12:63:19:86:ca:b0:18:7b:e4:a0:89:f8:54:0d:df:0e:9e:a8:
e1:09:9a:d9:4c:26:39:8c:fe:f6:58:b8:00:1d:52:5c:59:95:
8b:98:b6:86:93:c1:1a:37:a1:ec:b7:d9:2e:59:ff:c6:ed:de:
d7:da:c7:04:99:a6:e7:d1:94:8e:85:82:63:6a:d3:61:2d:86:
44:71:0a:a1:90:4e:7d:78:76:c3:db:73:bb:63:3e:e5:44:7f:
e5:a7:36:c5:02:6b:fa:09:f7:37:bf:8d:1f:54:36:49:c2:4e:
9c:20:b6:96:2c:e8:94:d2:58:4b:c3:66:59:71:72:59:b3:c0:
1e:b1:f9:4c:4a:a2:f8:b3:fe:9d:1f:30:2f:5b:b4:d9:16:49:
4e:61:f8:5c:ac:40:47:4e:a7:40:20:b2:fa:3b:57:09:f8:ba:
87:47:bd:87:ce:cb:38:50:b5:98:02:aa:77:03:9f:55:f0:91:
1b:dd:f1:4c:c4:72:cf:37:8c:db:5d:24:a8:9f:cd:a1:95:4a:
50:43:99:99:9f:ce:71:56:d5:8b:19:6b:3c:da:0d:a7:96:8f:
a0:fd:57:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzW1woI/h2nGlZR8nvWZwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw
MjA2ZDEwHhcNMjYwMzI1MjEwMTMwWhcNMjYwMzI2MjEwMTMwWjAzMTEwLwYDVQQD
EyhlMDhlMzZmNmFiYzEzNTRkNzlhZGEyYjljZDliMjY2YTBlYWQ5MmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlK7S4NuuocBuI/TkqUpQRhzhshrH
A0UpSgZ8s0NI7ZVbQa0acXIn8cgg/ZFvzhD88RxKRBwRAT8DkCPJZhH59QRdP1NH
omvJBIZjSptjcvRYKRi5VtVkm/S+qwm+8m2qisH0yL/kfsRTYJS3cw1nhVHqkbYj
yCNaH4FHnCHvU4qSLDSTpn3Ae5tCoUr3dXt42z+EQysYI6qJ56wBYFgad1iVfcuO
jqpahPXd/WQ5FUQqp9OznrSHNWd9NheAlZuEPKSuYKfeKPbWxU4vVpxZW8sLizS/
prpiVv6czBwBaygVAdLRBbaS2ccdo1YDhTBk8P6KblkLRCgaHy4Mj9sEpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCONvarwTVNea2iuc2bJmoOrZKlMB8GA1UdIwQY
MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt
NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1
LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYzg7Scss
SUShl82OQ9Ioq9UOJkJTNE6pQTIMoxymUSZVLnhMEmMZhsqwGHvkoIn4VA3fDp6o
4Qma2UwmOYz+9li4AB1SXFmVi5i2hpPBGjeh7LfZLln/xu3e19rHBJmm59GUjoWC
Y2rTYS2GRHEKoZBOfXh2w9tzu2M+5UR/5ac2xQJr+gn3N7+NH1Q2ScJOnCC2lizo
lNJYS8NmWXFyWbPAHrH5TEqi+LP+nR8wL1u02RZJTmH4XKxAR06nQCCy+jtXCfi6
h0e9h87LOFC1mAKqdwOfVfCRG93xTMRyzzeM210kqJ/NoZVKUEOZmZ/OcVbVixlr
PNoNp5aPoP1X8A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:48 2026 by rpki-client