Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: yPeY3R0ut6gYKyo7hocJ8NwwCOBxlJkVX2n0zw1Jm+A=
Subject key identifier: E6:76:03:B1:79:6E:F9:4B:FB:2C:69:03:40:2E:B1:80:0E:63:40:BA
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019D26CCDDAB843949414580C7A87C16C377
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 21:00:53 +0000
Manifest this update: Wed 25 Mar 2026 21:00:53 +0000
Manifest next update: Thu 26 Mar 2026 21:00:53 +0000
Files and hashes: 1: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: OlQtFstAGJqrShD7eSzODdgveiD11IXtB+OFur4MFQA=)
2: 7-BHgIfd8UJXQcrdaeCEGNqT0DU.roa (hash: r7iG2JSHeb88gixTYl7AFD1jnKrQ0a+iH+yjlWvhS9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:dd:ab:84:39:49:41:45:80:c7:a8:7c:16:c3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Mar 25 21:00:53 2026 GMT
Not After : Mar 26 21:00:53 2026 GMT
Subject: CN=e67603b1796ef94bfb2c6903402eb1800e6340ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c8:61:e2:30:aa:0f:2c:83:76:a5:14:7e:30:
05:a4:be:5a:6a:3f:a4:bd:50:e0:8a:fe:7d:79:a9:
d5:f8:70:15:4b:6a:09:d4:94:9c:08:6c:48:c4:19:
0f:6b:70:8a:d2:96:a9:f0:70:31:4a:94:b4:59:40:
56:70:fd:fc:9f:00:32:8b:c6:6a:ab:52:30:c6:60:
1d:e5:7f:ca:be:48:54:61:56:94:c3:72:25:5f:14:
9a:21:08:b2:2b:f0:85:65:ec:d2:e0:db:a4:e6:00:
05:5b:aa:e8:a4:82:89:2c:e8:22:b7:7b:42:13:af:
64:51:0a:af:e0:42:60:b7:f8:bb:b7:7c:3e:30:87:
d3:54:c4:e8:3e:23:ea:35:92:c1:41:2c:c3:49:6e:
e6:3e:85:34:47:81:7c:35:c5:73:18:c6:27:5f:92:
8b:a3:25:ff:ff:1b:69:27:06:f5:f7:18:ea:3b:93:
43:16:e6:5d:30:18:9b:06:15:ad:7b:a8:03:0a:6d:
27:39:1c:9b:63:b1:79:22:ff:38:8f:8f:cb:ea:dc:
b6:8f:4e:d1:56:a1:2b:46:68:e5:a7:79:2c:3c:8a:
7b:12:fb:c3:ec:c1:f3:40:92:df:67:ab:83:89:a6:
74:9a:ce:71:e8:cf:2c:7e:c6:c9:60:65:a5:7c:39:
aa:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:76:03:B1:79:6E:F9:4B:FB:2C:69:03:40:2E:B1:80:0E:63:40:BA
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:43:d4:2e:d2:5d:93:33:52:76:b4:1c:d2:3b:9b:60:05:b2:
da:36:a6:84:9d:52:51:8a:25:1c:10:c2:87:26:08:b8:40:a8:
c6:20:d3:22:84:b9:3e:4c:01:ca:bf:d5:a4:e5:86:16:30:25:
f5:c9:8c:19:82:e5:95:04:33:82:42:fc:4f:cc:ee:04:6c:90:
ed:47:a9:d0:9f:dd:97:be:1f:88:65:e2:8c:c2:9c:2e:6e:dc:
18:d3:1f:1a:27:87:11:55:d3:cd:78:d5:cb:45:77:5e:da:03:
2c:02:d2:4a:1e:7d:6d:47:7a:18:24:15:de:b5:8e:bc:df:97:
ec:a5:60:b6:26:e4:4c:68:f9:27:74:e2:cb:e1:b0:51:6a:bf:
a2:6a:1d:c3:ac:aa:82:08:2d:ad:a1:d6:8d:5e:e3:4c:62:43:
da:b2:55:a3:d1:b3:56:78:81:12:10:28:ff:9f:38:69:e6:1c:
e3:44:9e:68:22:17:45:be:72:7c:97:df:06:98:22:aa:d6:52:
ca:83:24:1b:2f:5f:f3:0e:40:26:79:a3:98:63:d0:5f:ef:75:
e4:5b:3f:22:f6:87:01:ac:90:4c:1a:b8:90:4d:6b:ca:ce:83:
45:5e:0d:f1:de:0e:cd:fd:4b:21:96:bc:ef:80:3f:1a:dd:09:
83:d8:32:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:53 2026 by rpki-client