Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: FBdwGiDAhsWNNSFcpiO0vIxD9v3LlQXEg26JiuZnVfE=
Subject key identifier: 53:16:05:00:10:95:97:21:12:07:02:F0:1A:78:D0:4B:17:FA:4B:8F
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019D254CA19D01C3566BF4F5551A9D62FE6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 17E8
Signing time: Wed 25 Mar 2026 14:01:12 +0000
Manifest this update: Wed 25 Mar 2026 14:01:12 +0000
Manifest next update: Thu 26 Mar 2026 14:01:12 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: CcE1DiTafj1US+ULMSLsz1NpB1cgEKXSRcHjjXl+5Zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:a1:9d:01:c3:56:6b:f4:f5:55:1a:9d:62:fe:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Mar 25 14:01:12 2026 GMT
Not After : Mar 26 14:01:12 2026 GMT
Subject: CN=5316050010959721120702f01a78d04b17fa4b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:60:6d:b9:6e:8d:6d:60:8e:b6:04:46:53:75:
3f:63:2e:88:da:cf:06:44:ec:68:f9:06:7d:14:a7:
d9:68:c8:bb:e0:48:fd:b6:26:b8:3b:f3:97:1d:c0:
de:ab:da:da:7c:1a:e0:06:89:6a:bc:a3:06:a0:d7:
45:29:92:10:c8:5a:d7:30:5a:05:ee:2e:93:0d:0e:
a6:fb:7a:59:28:1c:e8:39:99:cd:73:fe:65:21:a7:
e1:08:8e:b8:ca:71:62:26:bf:f9:9f:96:ec:25:5b:
f6:97:ff:71:4f:9d:ff:17:02:f4:3a:6e:12:9c:64:
94:c7:7d:94:99:88:80:09:9d:c6:b7:46:a8:ed:79:
f5:69:c7:cc:74:e0:89:bf:e9:70:0d:9a:de:83:01:
74:a5:fa:61:30:81:c9:a0:0e:66:30:f6:f4:e1:32:
34:fe:32:df:72:45:cd:71:0b:4c:24:c2:93:8a:6e:
d9:4c:bc:1c:9e:af:6a:50:59:e7:13:db:3d:90:76:
b9:dc:7f:77:c6:bd:0a:f1:e9:7e:f1:80:83:7a:f0:
38:55:fa:ba:de:a5:84:2c:b5:82:cf:4d:09:6e:7d:
21:42:ad:9f:f2:3c:36:0b:3e:e5:42:2c:60:78:c5:
b0:60:dc:e6:7f:0e:eb:c2:a5:56:32:c7:e2:31:93:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:16:05:00:10:95:97:21:12:07:02:F0:1A:78:D0:4B:17:FA:4B:8F
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:32:b9:cd:6b:c2:14:46:e2:dc:1c:7c:71:25:a2:95:71:c0:
12:7f:49:37:4f:82:3b:1b:c8:7c:47:e0:f9:90:40:52:e3:a0:
a1:5f:17:9a:51:b0:f3:98:77:f7:ef:1a:6e:d1:4a:d9:8a:57:
53:75:20:9f:c5:2c:86:9a:49:cc:ab:ef:d0:30:d3:78:ad:c2:
14:25:72:1e:9f:5b:df:b7:a7:c1:11:b6:8c:25:b9:dc:f7:6a:
1b:13:1d:2e:e4:8e:55:8b:5b:41:7c:d2:48:d3:c6:8f:8b:1f:
9f:9f:f3:6c:ee:98:38:11:10:e8:c8:7f:45:f2:a9:f7:f5:ad:
d7:dd:b7:ba:b0:40:e3:e7:81:28:77:b5:06:62:ae:4f:0f:8c:
dc:70:f7:c8:2a:73:6c:1b:64:15:1c:2f:b4:26:31:e0:c7:d9:
8c:4c:9a:f8:84:af:4a:11:a3:d6:1a:52:3e:3d:78:8b:c5:7e:
5f:2e:eb:6a:de:fc:94:9d:f3:cb:be:94:f4:b8:f5:95:e4:d3:
50:7b:82:bb:89:85:a7:79:16:32:fc:8f:c6:5d:c3:4b:0d:21:
d4:2e:52:bc:3e:a2:5f:07:26:f9:f8:61:d3:2d:a4:08:21:d3:
2b:4f:e1:06:b5:36:75:ab:3d:7f:ff:a0:db:fb:38:a4:83:09:
90:0f:b3:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:58 2026 by rpki-client