Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json)
Hash identifier: QhCwzDGhYIpkdJCBzuZvEQCpGa6t7RoegPjVJ718zUo=
Subject key identifier: DF:05:EC:25:D1:B9:2C:35:D0:46:34:DB:45:D0:34:8D:1B:50:F1:CE
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 019D25F1DBEDF15BA559CC3F14BB2EFB04D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
Manifest number: 0FC9
Signing time: Wed 25 Mar 2026 17:01:40 +0000
Manifest this update: Wed 25 Mar 2026 17:01:40 +0000
Manifest next update: Thu 26 Mar 2026 17:01:40 +0000
Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: RmqzCxrKVVA2gUtCcrbfaKh0dHGmyz7sLnqWcPsbKmg=)
2: BTAvCBcRqPKnpuDR5p2Gq8wAQ3o.roa (hash: PhNCstC0mG6N6OSSLCaGAFo+BJH+pelpZfoyx1/vinI=)
3: LZIb0ymnvJVoat3eKMXkwKhNB3s.roa (hash: MiIObMs9Gh9JbmWmMRy+8OGwOPF9Eqpf22VuDL3pf3g=)
4: zWYuzq0jad5Hmb8WA-NfP-3d2Zw.roa (hash: Yyyb//vmnQwxfSQUibaXnsRT2TgMJg/Syp1I0vzXlrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:db:ed:f1:5b:a5:59:cc:3f:14:bb:2e:fb:04:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Mar 25 17:01:40 2026 GMT
Not After : Mar 26 17:01:40 2026 GMT
Subject: CN=df05ec25d1b92c35d04634db45d0348d1b50f1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a2:2e:f1:5b:2f:6d:91:93:69:b1:8c:df:65:
63:60:8b:04:e5:bc:f0:1f:4f:b2:64:4d:5d:55:6d:
13:46:89:1d:fa:49:59:7e:f6:3f:ac:42:08:3a:98:
82:09:52:23:76:6d:22:e2:f4:fc:67:1b:16:a9:79:
4e:66:ad:85:1a:b5:1e:22:4d:f0:a6:ee:fc:17:47:
1b:fc:56:1d:2d:79:04:f4:7f:42:40:aa:25:12:02:
a2:1b:e6:8e:ef:59:c5:05:46:7f:d3:36:38:b1:9f:
c2:69:c0:70:c6:f3:9a:78:6e:88:1f:eb:e9:df:8c:
42:7e:ea:f3:51:9d:81:05:9e:02:2b:47:9c:6d:1c:
5e:0b:74:94:52:32:9d:f8:92:48:9a:a7:13:b9:85:
aa:4b:da:3e:59:1f:87:b6:e7:93:de:47:bb:41:f8:
4e:0f:03:71:57:6a:85:4b:73:07:b0:ed:a8:a8:55:
a7:f3:b9:6d:00:21:13:60:d2:0e:07:45:24:bc:57:
55:31:8d:08:22:48:51:ed:c5:ba:8c:68:40:72:ce:
73:d3:89:c7:8e:ae:13:f2:fe:21:6a:45:53:41:a1:
a2:ae:28:e2:d5:91:12:b3:92:7c:b1:91:60:36:72:
96:a6:45:c7:b9:aa:91:bd:2c:a3:65:3a:00:e3:99:
7e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:05:EC:25:D1:B9:2C:35:D0:46:34:DB:45:D0:34:8D:1B:50:F1:CE
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:32:87:f7:28:fa:e0:e8:64:d9:33:ee:76:24:48:25:8d:f1:
a8:0e:d3:8c:db:a8:59:2e:ab:32:99:4d:45:20:8a:63:f3:6c:
05:a6:2a:45:5c:03:30:08:b3:bd:5e:cb:36:8c:af:6f:d3:85:
20:84:40:77:8d:b5:1b:3a:27:c8:cb:35:8a:c5:e6:8f:1b:41:
3f:cf:08:6e:0a:04:4f:9c:22:78:7f:45:12:f0:a7:ed:af:1b:
09:4e:b7:0a:fc:ec:7d:98:53:3a:9d:1b:4a:e1:f3:ae:ac:1b:
42:41:58:de:64:fe:2d:3f:93:bb:23:06:96:15:13:06:69:09:
6d:b8:5a:69:f2:ce:65:84:07:c2:d5:56:ae:67:c7:5c:eb:95:
2c:62:8e:4d:d5:4d:b6:3c:8e:4d:c2:ff:0c:ce:0e:65:69:55:
5d:0c:9c:5a:99:b6:02:05:b7:af:eb:a9:a2:ba:73:2c:e9:41:
38:3c:08:68:58:2f:70:d7:01:18:68:40:ef:e1:b7:15:9f:01:
d2:86:e1:65:94:bd:c8:10:eb:95:70:03:44:25:26:50:f3:98:
be:5e:ae:92:8a:20:9a:1a:2c:e4:bd:c9:d5:84:fb:75:ce:06:
51:6b:ce:d8:02:da:10:06:7f:14:72:ed:a4:bf:ec:27:9f:b9:
b0:02:e4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:35 2026 by rpki-client