Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: Ng5JqI9GXiVWszNQ8ZBIsxQQEvZp0kL1nRzw00L1pno=
Subject key identifier: 30:31:7F:3D:EC:DF:05:92:AF:77:A4:DB:5E:3D:3D:FA:3B:47:6D:9A
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 019D2772A8A568FE4E6247163837963BFAD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 158E
Signing time: Thu 26 Mar 2026 00:01:58 +0000
Manifest this update: Thu 26 Mar 2026 00:01:58 +0000
Manifest next update: Fri 27 Mar 2026 00:01:58 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: zlUdWbrNJsewzHFUFFrW9iiAEm2gjUZww4mMHKeM76A=)
2: t90Pf8i78ir-qZaXDxbGjf9fnfQ.roa (hash: xVvLDALVTXA20CqaVC5YheWUUzGYCzjMpdYIhNnbISE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:a8:a5:68:fe:4e:62:47:16:38:37:96:3b:fa:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: Mar 26 00:01:58 2026 GMT
Not After : Mar 27 00:01:58 2026 GMT
Subject: CN=30317f3decdf0592af77a4db5e3d3dfa3b476d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:76:84:17:d0:75:bf:e4:9f:27:0b:16:c6:8d:
ce:32:28:37:4e:a5:21:92:f5:08:3a:ba:c9:49:62:
52:48:12:d8:49:fe:d0:b0:68:fa:2b:3e:3a:2b:1f:
b8:b8:d7:62:c4:be:14:29:e8:79:70:73:19:41:61:
84:e5:64:f9:4e:18:0f:44:bd:e1:23:e6:cd:d7:9c:
a9:00:ef:50:32:c5:52:98:e7:3f:d4:3c:9f:a4:51:
11:a6:12:fa:df:bc:3e:ff:fc:30:c3:3a:d6:21:a0:
47:d1:a6:90:4a:d9:34:87:0d:45:6e:b8:92:9c:64:
e8:50:74:ae:02:d1:5f:04:e6:dc:98:7d:0b:27:68:
68:ea:65:75:0e:29:1e:ce:fb:30:2d:d7:2f:a2:8e:
15:5e:2b:18:f7:35:53:80:56:1e:5c:6b:fb:a1:82:
04:3d:a8:25:fa:c8:a6:48:19:15:84:f3:ff:c2:99:
00:ad:e4:b4:71:9f:4b:98:85:c9:b5:eb:be:23:89:
cc:54:61:6e:57:0b:69:05:50:bb:4c:05:94:4c:27:
cd:be:2e:a6:3a:da:ca:f8:f4:fd:33:1f:35:f2:ca:
34:35:12:2a:8f:e5:c0:44:fc:79:84:49:fe:07:e8:
81:00:52:7a:2b:1b:3c:7c:65:f2:5f:bf:9f:d2:28:
98:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:31:7F:3D:EC:DF:05:92:AF:77:A4:DB:5E:3D:3D:FA:3B:47:6D:9A
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:95:7c:00:fd:62:03:df:73:a2:7f:65:0a:57:77:54:16:90:
76:e3:d5:3a:89:40:b7:6a:7d:23:f8:ca:88:59:58:c0:45:c4:
59:13:9b:b3:3b:f7:e5:d2:99:9b:b4:d6:06:cd:cb:84:5d:d4:
6d:30:27:12:78:48:51:3a:12:26:aa:43:66:dc:b9:77:e8:24:
f7:c7:f7:db:31:64:eb:7b:56:dd:b1:b3:28:c9:92:eb:c2:fa:
9f:3f:7b:35:63:47:9a:19:a6:00:02:55:76:86:56:ab:e7:da:
ae:e3:31:4e:2b:94:d6:b7:e5:47:18:22:36:29:77:49:e1:a3:
48:33:92:4a:1d:11:1b:33:64:b6:6d:77:b8:d1:b7:fa:6e:fc:
73:ad:82:56:2c:c8:91:40:7d:e1:5a:e9:ae:e0:db:9b:80:d1:
1c:07:cd:cc:77:d1:2b:48:42:67:5f:e6:2b:de:48:99:89:e3:
0d:42:e8:39:bd:56:5c:44:ae:84:ca:a4:04:d5:65:9e:26:2e:
f3:99:03:bc:66:0b:3a:f6:c6:34:25:ad:f0:73:e4:df:91:17:
0d:6c:13:e5:ae:e2:97:74:6b:27:14:6b:fe:a7:b4:db:78:13:
4c:b7:5f:dd:7a:7d:44:f2:59:87:0a:2a:89:db:47:ec:ac:7b:
ba:0a:33:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:35:03 2026 by rpki-client