Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: ZQLAA2geBGHe6l/99uuC2rcvnOj/b9GqCASz0XfXw7g=
Subject key identifier: 51:75:8E:52:A2:53:FE:79:34:31:3E:10:28:6E:2E:B8:1D:F7:5C:62
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019D25BAC4D1E330AE2FA4C109E1A4717036
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0E54
Signing time: Wed 25 Mar 2026 16:01:30 +0000
Manifest this update: Wed 25 Mar 2026 16:01:30 +0000
Manifest next update: Thu 26 Mar 2026 16:01:30 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: FQe1o4GWmCJGZeuSA1LDDhb+sXM2B055hK/s1XcnsdQ=)
2: 4FYy4IVc0E0edu7Aspaqd269s3k.roa (hash: AewBAICqPk/AoyYo2Nui0QpeK5+BqYlSJNp/7pYYLxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:c4:d1:e3:30:ae:2f:a4:c1:09:e1:a4:71:70:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Mar 25 16:01:30 2026 GMT
Not After : Mar 26 16:01:30 2026 GMT
Subject: CN=51758e52a253fe7934313e10286e2eb81df75c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ef:ee:ec:7f:43:df:03:b4:e3:99:f3:5d:4c:
83:ca:5b:b8:98:6a:85:48:9b:f4:b0:b0:bf:93:8a:
10:02:48:ad:df:90:c1:20:47:eb:bb:ca:87:31:94:
07:9b:0d:15:6b:da:f5:2b:da:03:2f:14:09:c5:66:
f8:56:42:88:6e:56:30:e4:55:18:a7:a1:a4:d6:c3:
45:e2:fd:09:55:6a:5a:4e:ef:57:6c:fa:63:f5:a1:
2b:70:32:41:70:26:d7:00:62:36:42:6b:d5:71:74:
86:26:c1:22:37:f5:26:ed:b3:43:4a:03:56:9d:51:
46:92:c5:26:56:a8:61:8b:be:d1:6d:ab:75:4d:d2:
0a:ca:9b:47:b3:3f:b2:9a:33:bc:18:88:31:a8:7f:
59:95:39:db:79:6e:6c:6f:30:16:10:e2:68:93:f2:
63:75:2d:a3:e8:86:ef:eb:f0:3b:aa:56:81:8c:2d:
af:01:b3:ed:7c:d2:89:f0:cb:0f:81:2c:38:f4:71:
e7:de:d5:0a:a8:64:58:e9:94:90:0b:71:53:2e:22:
d3:b9:36:7d:d6:e3:50:5f:53:56:d2:c4:2b:e2:b9:
e9:ae:bb:da:7d:82:95:24:ef:99:fb:c2:4d:65:a4:
e7:af:29:39:8d:fd:dd:23:7c:11:1a:c8:cb:4f:3b:
77:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:75:8E:52:A2:53:FE:79:34:31:3E:10:28:6E:2E:B8:1D:F7:5C:62
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:95:7e:08:e9:40:41:55:25:37:4d:8a:5c:49:3b:c9:ca:72:
22:b1:bb:35:a3:7f:21:0b:b2:0b:39:40:58:4b:1a:aa:ac:52:
39:ea:24:31:fe:c5:ec:cb:91:0c:e6:b1:bd:dc:7d:ba:3a:c1:
6c:07:2d:f8:b9:86:d0:aa:ff:45:e6:f5:9a:da:b3:6a:e3:0f:
a2:ac:03:02:ba:5d:f2:fc:3e:37:50:e6:a9:56:20:25:ca:67:
f6:3d:7c:b1:5b:39:92:20:db:a6:c5:d3:3d:a1:4b:d9:ea:2e:
a9:2b:94:43:a1:b5:36:4b:e4:f6:83:90:eb:9c:70:82:37:ee:
9c:dc:0c:88:a7:e9:0d:28:ff:98:41:8a:9e:1e:a0:25:4c:ca:
8b:f8:f6:f0:6e:b2:ff:1b:91:bc:fe:2c:5d:5d:28:8d:9c:c2:
ee:12:db:8c:9b:15:fc:c8:2d:b0:a7:fb:15:2c:f5:87:5d:94:
3a:a4:e1:e8:59:b0:8e:af:04:91:8a:93:a7:ef:10:85:95:32:
2f:68:1a:a4:ae:a1:32:35:26:8e:e9:53:3c:ee:5a:7b:9f:d7:
44:9c:e3:47:eb:80:a7:48:b0:d3:1b:cd:0a:1b:ea:93:75:7a:
ad:09:f3:09:93:57:d2:31:3a:b3:7d:1c:06:e7:72:72:e2:7a:
9f:82:a1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:34:25 2026 by rpki-client