Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
File: 2m3EGSZFyEKk-i-II08uWhhMdmQ.mft (raw, json)
Hash identifier: s8Mr1gD769EYqu3439t5SaLqFD5WjRRMFWI6N3OemEU=
Subject key identifier: 89:5B:D2:78:E4:2B:16:E2:02:24:AB:D0:11:0C:D5:76:75:E0:C3:C0
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 019D2816DD515EE6D03EF949070078868B27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
Manifest number: 09E4
Signing time: Thu 26 Mar 2026 03:01:20 +0000
Manifest this update: Thu 26 Mar 2026 03:01:20 +0000
Manifest next update: Fri 27 Mar 2026 03:01:20 +0000
Files and hashes: 1: 2m3EGSZFyEKk-i-II08uWhhMdmQ.crl (hash: eWpCkL+NBzncnkZ7zqfiGB1xpmfR6YcSjNO68WviMb4=)
2: cb6RT1EIH2UE1qS6xuvmhoSY90w.roa (hash: w0eimh8eUGbfM3xNdHnghVn9Aj2SOX0pDoX2BzEu2Mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:dd:51:5e:e6:d0:3e:f9:49:07:00:78:86:8b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: Mar 26 03:01:20 2026 GMT
Not After : Mar 27 03:01:20 2026 GMT
Subject: CN=895bd278e42b16e20224abd0110cd57675e0c3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:02:7d:dc:42:1b:31:d0:d5:a3:e4:b7:94:7a:
df:93:b5:45:57:d4:2a:0d:22:4e:cd:79:58:15:28:
1c:bd:c8:be:f1:07:8d:74:09:a4:ef:8a:e7:93:31:
fe:11:75:cc:e7:93:ee:46:e0:c7:8d:41:fe:04:99:
9b:ad:74:f3:c6:39:af:d4:1c:90:50:1f:5d:4f:03:
fb:f8:d0:c0:0a:5d:9b:47:fe:b5:e5:27:34:93:fe:
8e:86:77:ac:92:09:43:5f:76:70:6e:26:1c:46:8e:
b0:a3:0d:eb:ea:18:92:6d:f9:7a:45:dd:5b:e8:4f:
a6:54:17:08:22:ef:34:15:74:14:54:87:0a:61:5d:
0d:ae:75:9f:b2:ee:ce:06:e2:21:8a:4d:15:d6:7e:
2b:83:6c:b7:c1:71:3e:ab:b2:a1:62:62:78:ad:e4:
32:8d:1f:e6:99:de:5c:45:62:d5:67:3e:d9:67:80:
29:23:0a:2b:86:eb:08:46:36:60:b2:44:a9:d1:37:
7b:0d:59:ff:48:2d:60:81:80:a0:a9:e1:0a:96:7a:
fe:0f:b7:32:69:5e:1f:61:79:ec:1e:06:e8:89:8a:
bc:04:d1:b9:33:55:71:f5:21:0d:6f:c5:b9:d7:2e:
a3:f6:e3:d4:aa:1e:f9:04:31:1c:d1:7f:e6:03:6a:
70:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5B:D2:78:E4:2B:16:E2:02:24:AB:D0:11:0C:D5:76:75:E0:C3:C0
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:8a:b5:54:0b:df:52:4d:3e:48:ca:54:ce:01:04:5e:2b:c5:
5b:32:85:db:ae:2e:c9:87:3d:7e:14:95:bc:da:e9:3e:f9:48:
08:ad:90:68:e0:10:d7:a9:13:41:55:19:74:0d:87:57:59:c2:
2e:82:8f:23:84:5e:d3:6e:65:46:1e:ec:8b:78:17:44:da:23:
02:21:69:21:85:16:2c:44:ed:7f:75:da:69:a3:82:26:27:b3:
61:ba:14:d2:e7:02:16:9c:97:8a:d2:c4:f1:ad:41:f5:cb:72:
f7:0e:04:1d:ca:45:74:f6:d2:e8:36:20:6a:65:b4:33:70:b0:
38:63:12:6b:cd:d1:0b:9d:e0:ae:4f:56:b5:a8:16:04:4e:88:
94:8b:4e:5f:87:d3:f2:e2:7e:1b:6f:60:03:1a:30:3d:4f:b3:
5e:15:91:ec:ee:bb:66:a5:03:e4:ca:cf:15:83:c2:e6:c5:94:
a5:41:d4:a2:b8:3b:d4:c0:ed:61:e0:81:a2:54:a8:69:ee:09:
0b:1a:b5:07:42:aa:85:54:39:9a:87:c3:43:5d:b7:7d:e8:6b:
40:4c:f8:e3:6e:68:18:ed:6a:4a:92:9c:75:6b:21:3f:8d:12:
03:29:59:ce:98:ba:93:35:4e:bb:1d:df:c9:e2:05:f8:6e:0c:
3a:6c:a5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:10:15 2026 by rpki-client