Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
File: 2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json)
Hash identifier: O+arJGT06jrumQQBOcWtu9Pj+qMQB6e8yL/mkYaPJMY=
Subject key identifier: E1:20:7C:C9:C9:AC:0F:C9:2D:29:AA:27:71:3A:8E:91:76:50:38:42
Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
Certificate issuer: /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Certificate serial: 019D265F6681CE09E4AB96E83AD6111E15CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 19:01:19 +0000
Manifest this update: Wed 25 Mar 2026 19:01:19 +0000
Manifest next update: Thu 26 Mar 2026 19:01:19 +0000
Files and hashes: 1: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: mVdOCoNuJGu6zj2wlAF86Jb8LMqDQmPiCNv6b5hGJmQ=)
2: MzTCg6RlvrZqr-ataKMVV1O3e5c.roa (hash: xDOMJIkLwjQY+zuYlnyDdnhzWqp89fIYV7R0xToj6hQ=)
3: lPNiIoO-88xgrf-h9aWewkSLHYA.roa (hash: KjhtgxSjZ4mC2ErfPJ5twpfop8Y+K4GDpR14iBVhcMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:66:81:ce:09:e4:ab:96:e8:3a:d6:11:1e:15:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Validity
Not Before: Mar 25 19:01:19 2026 GMT
Not After : Mar 26 19:01:19 2026 GMT
Subject: CN=e1207cc9c9ac0fc92d29aa27713a8e9176503842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d5:30:b8:a4:18:fc:e1:5c:20:28:e3:9e:56:
cd:6d:a3:50:53:30:41:a4:48:b5:b1:94:21:d8:6f:
6f:42:a7:63:45:69:aa:bb:7a:ef:61:e0:5a:57:5a:
98:1f:81:f2:a9:de:96:db:63:87:b3:38:32:b5:bb:
51:89:a9:ed:74:80:e0:9e:47:a1:34:75:34:1b:1a:
3b:06:21:d9:55:8b:52:c4:3d:b9:8c:21:2a:78:fc:
7f:12:14:05:df:b0:3b:d0:d2:f1:1a:21:48:56:b6:
8b:c9:93:a8:a5:b5:d1:a2:5e:49:0d:44:e7:d6:71:
fc:a8:ba:bf:4e:dc:fa:64:1b:bf:c1:d6:40:ba:a6:
a2:3d:f5:8b:2d:58:5d:99:49:0b:34:f7:88:94:d6:
3e:f7:ed:e2:97:3b:d1:47:9d:08:6c:fe:6a:8a:67:
99:44:99:08:96:59:91:f1:00:a7:ef:92:88:c4:36:
fe:2b:c3:05:2f:1c:b1:73:92:b8:d6:5e:13:80:7a:
47:53:fe:17:39:e5:ce:83:fb:04:46:d9:dd:66:e8:
b5:8c:5f:e6:ad:5d:cb:92:54:0f:9d:a5:b2:aa:f9:
78:36:bd:7d:78:07:e8:0a:cf:18:b3:04:8d:54:f1:
7c:de:37:d7:67:47:2a:47:a1:e6:2c:31:06:ec:2c:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:20:7C:C9:C9:AC:0F:C9:2D:29:AA:27:71:3A:8E:91:76:50:38:42
X509v3 Authority Key Identifier:
keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:0b:4d:04:91:16:14:cb:63:dc:f8:2f:6f:45:25:4f:2e:25:
00:7c:0f:8e:fb:94:3c:51:12:06:15:49:d0:5c:bc:a3:b7:c4:
e6:0e:f4:33:8a:b0:00:71:cb:88:87:8e:71:4b:ba:62:15:38:
d4:d2:86:6c:2d:ea:e9:31:da:a2:02:0e:ca:d0:b9:c3:64:19:
53:a0:fa:61:1a:d2:1a:9f:07:ed:45:fa:7b:92:84:02:49:fd:
51:48:e1:64:79:e8:55:05:11:e3:89:85:d0:2e:f6:17:0e:21:
0b:a7:5a:e6:f7:a9:1d:62:22:11:0b:51:e8:e4:c5:44:c9:f0:
38:e5:b7:28:98:e4:3f:ba:e2:20:3d:ae:76:28:69:41:21:9c:
e9:63:4d:46:96:01:76:b9:bb:e7:d2:5e:62:ef:2c:17:ac:20:
b2:48:0f:a5:51:7e:d1:0c:d6:a5:1c:cb:4e:d7:43:bb:0f:e1:
14:8f:f8:2b:a0:6c:99:af:ef:0d:cf:02:c4:70:e1:20:46:65:
f4:5b:1b:52:0a:e0:c0:d8:9d:9a:92:19:4a:3a:f1:b3:59:2a:
81:59:23:c1:d4:2d:bb:28:d5:b7:08:33:83:e2:6a:be:a0:62:
7c:76:17:7b:39:5f:9c:e5:23:0f:da:28:cf:47:d6:a8:89:9a:
b8:32:84:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:45 2026 by rpki-client