Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: 1yECky/nB4FWSFOkjSDh1BoQhvALNuTNCfd1ZIU8s2c=
Subject key identifier: 09:35:DC:5E:83:70:15:7C:BD:86:9E:81:75:D6:83:87:30:1E:2A:26
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 019D27E0699430E5B53B5CB944C9C4A423F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 0938
Signing time: Thu 26 Mar 2026 02:01:51 +0000
Manifest this update: Thu 26 Mar 2026 02:01:51 +0000
Manifest next update: Fri 27 Mar 2026 02:01:51 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: Ifc5FugCkQ7olsyd6MvCgfclSZEUdMreVDKcxYkiuUY=)
2: lEdgyLdP8h_0PnTyGx915-RyS6g.roa (hash: tVEhNOEOaWiBJykoJU0Gzu7c+ZGByjMKsOzSEHCMGFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:69:94:30:e5:b5:3b:5c:b9:44:c9:c4:a4:23:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: Mar 26 02:01:51 2026 GMT
Not After : Mar 27 02:01:51 2026 GMT
Subject: CN=0935dc5e8370157cbd869e8175d68387301e2a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:30:a9:94:bb:27:a9:7f:a8:e4:87:54:5e:63:
e3:37:b0:1a:f0:6c:ee:cf:a7:ed:c0:91:c6:8d:b5:
31:90:4a:ef:0b:b7:32:32:24:84:83:fe:2c:39:9a:
4f:4c:53:ef:d7:c4:a2:3e:fb:9e:b8:5b:f1:70:95:
1b:bd:cb:82:2b:56:77:cd:df:ab:ba:58:2c:3e:9c:
55:72:9d:39:b5:8d:6f:a5:8c:21:43:b8:f3:0f:56:
b9:4e:f4:49:4b:8c:c3:e8:23:0c:cc:f4:c1:0a:a8:
fd:e9:d5:e9:89:b9:fb:d3:92:11:1b:d5:0e:c7:5e:
e1:3b:07:97:ea:2e:7d:66:15:7b:71:57:91:c5:e3:
d7:89:20:84:54:ba:b1:a1:fe:b8:02:a1:23:ac:2a:
c8:00:59:0c:2f:3b:54:9c:64:7b:20:11:c7:53:1a:
8d:1d:c1:07:f7:51:02:88:0f:a6:1a:34:2a:89:cc:
6d:5e:17:9c:b4:d5:a3:65:4a:d7:ee:49:c0:d8:16:
62:a2:14:72:e7:09:9a:9f:6c:d9:81:0b:0a:23:1e:
70:c2:ed:ab:cc:99:a4:ff:1d:0c:af:ac:08:c2:db:
ce:d3:ea:c6:71:20:0e:c3:58:2e:01:6c:b2:8a:87:
64:e1:aa:50:08:aa:83:7f:92:60:27:87:53:87:9b:
f3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:35:DC:5E:83:70:15:7C:BD:86:9E:81:75:D6:83:87:30:1E:2A:26
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:07:bf:af:f1:8e:6d:1e:90:f8:05:a5:37:b0:a9:c1:0d:1d:
a7:d7:56:1a:d1:00:ee:28:93:e9:f4:62:ba:53:c0:85:96:aa:
77:85:f8:cd:da:e8:64:80:a7:43:0b:e0:1d:58:ee:a7:cd:b8:
1f:38:aa:26:5b:65:fa:05:ab:58:0c:8c:19:42:ef:08:62:c5:
28:34:b0:83:3f:f3:f4:cf:13:7d:97:84:a2:15:7f:c2:7e:c4:
01:d0:6b:b3:d8:fe:0c:e8:d2:39:26:02:e2:ee:e5:65:2c:c1:
ba:f2:e2:e6:e8:a7:f0:78:8d:3f:7b:8a:99:06:11:2b:fe:b4:
ea:14:ae:e8:00:a6:be:5b:56:5f:1d:e5:6e:8f:53:55:e5:b9:
b0:86:0e:0d:76:0b:74:cf:ef:7e:65:81:97:e3:d6:11:9b:26:
db:20:ad:4a:0a:9d:f3:9b:dc:e7:ff:0e:6c:92:2d:41:d6:42:
97:df:e8:7b:8d:37:95:96:91:47:12:ab:87:03:ee:49:c9:d3:
82:81:6a:e5:5a:1f:2c:9c:16:4a:8a:03:26:7f:db:f1:c8:60:
99:80:50:37:19:81:25:86:f7:ea:a3:9f:45:af:79:6d:66:23:
c1:81:49:16:27:b9:19:01:35:d2:b9:83:c4:1a:32:45:f1:cb:
2d:b5:e9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:00:01 2026 by rpki-client