Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
File: 2gKPaUMDSrdg84rkIJFU4iVciek.mft (raw, json)
Hash identifier: PF/WVKPiTYUZMEDW+mRpFMX59gc+2HVVdHwWTjYb2EE=
Subject key identifier: 37:11:C4:02:52:47:7B:1E:8D:5F:F4:13:BB:7C:8B:5F:BF:25:FB:7B
Authority key identifier: DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
Certificate issuer: /CN=da028f6943034ab760f38ae4209154e2255c89e9
Certificate serial: 019D284D298E964F52F40B1664CC2CDC3795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
Manifest number: 07E7
Signing time: Thu 26 Mar 2026 04:00:38 +0000
Manifest this update: Thu 26 Mar 2026 04:00:38 +0000
Manifest next update: Fri 27 Mar 2026 04:00:38 +0000
Files and hashes: 1: 2gKPaUMDSrdg84rkIJFU4iVciek.crl (hash: xRJGwiAedrouqQe3Flr9rCPyCLo1CNKNBWrnVyTcjaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:29:8e:96:4f:52:f4:0b:16:64:cc:2c:dc:37:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da028f6943034ab760f38ae4209154e2255c89e9
Validity
Not Before: Mar 26 04:00:38 2026 GMT
Not After : Mar 27 04:00:38 2026 GMT
Subject: CN=3711c40252477b1e8d5ff413bb7c8b5fbf25fb7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2b:cc:3b:aa:4d:54:61:73:ee:6a:a0:00:3b:
ac:9d:ae:64:fa:1f:c4:4a:86:a3:e8:2c:59:27:3b:
b8:92:9d:e3:f0:13:40:2c:c8:97:08:41:f3:59:f3:
45:87:67:69:1b:16:1e:fa:26:41:02:14:a6:41:ae:
fd:f9:1a:74:e0:79:7d:ef:29:bd:7d:a3:94:14:d5:
ca:93:76:a5:49:40:04:33:2d:d3:88:a3:36:bc:4f:
db:84:c4:37:ea:ed:0c:4d:bf:fb:3b:2d:59:2e:42:
4a:e0:91:a9:3b:69:80:45:bd:30:01:73:f9:ad:74:
53:dc:ca:ac:18:ec:9f:2e:eb:b2:e0:f1:f3:f9:36:
a5:e9:3b:b4:8d:8e:75:d9:6c:b0:a3:ca:ec:57:02:
71:6f:bb:22:15:f8:e6:e5:61:9f:71:d4:a3:88:f8:
1d:21:96:95:ef:c2:8b:48:da:27:dc:24:63:90:11:
e2:2f:66:78:ba:e7:7e:2f:2e:89:5f:83:ab:00:c2:
4e:16:48:2f:0b:49:59:4a:4b:14:c2:16:a3:7c:c4:
33:8c:e1:d9:fa:36:1d:c7:31:76:fc:2c:65:bc:84:
63:34:f4:51:d5:49:ce:c2:97:6d:0d:f1:97:51:f9:
c5:2d:61:ce:9a:63:da:17:2a:e8:53:41:64:b2:99:
55:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:11:C4:02:52:47:7B:1E:8D:5F:F4:13:BB:7C:8B:5F:BF:25:FB:7B
X509v3 Authority Key Identifier:
keyid:DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:03:bb:7b:0f:db:f6:0b:3f:f0:ff:fe:73:5f:b1:31:34:b4:
67:bf:04:6b:4d:02:03:d4:85:af:3d:67:7d:5e:64:aa:07:ae:
14:98:f0:ee:84:06:42:fb:14:5b:b4:5a:21:b6:cb:24:7a:86:
72:35:54:fa:a8:48:b4:d6:3e:2a:18:f0:65:8c:4d:64:65:bb:
16:db:07:7a:01:18:17:2b:2b:44:84:52:d1:d2:76:1a:c5:b8:
66:c2:0a:08:d3:cb:45:28:77:1f:2d:dc:27:b6:f5:20:a4:98:
f3:33:44:d6:72:db:39:07:18:39:85:fd:47:dd:cc:b8:ed:7f:
0c:fc:6c:19:c4:da:44:27:f5:f7:4b:ff:b1:1f:71:fe:d6:3d:
43:86:79:08:78:02:d4:48:22:ee:dc:b4:d5:21:d2:b7:3b:a4:
ad:de:bb:18:3c:c8:64:56:3f:25:9a:0d:27:a8:45:63:3a:7e:
a1:4a:33:4b:98:39:d3:7f:04:7e:86:bd:4c:e5:58:59:40:4b:
b3:ad:1b:77:05:d1:d0:e4:84:7a:ba:bc:24:00:7b:57:0d:74:
da:f7:75:94:d7:08:7a:27:9c:3a:d9:12:32:e1:c3:4b:bd:be:
3c:54:3b:ea:c6:89:11:77:a5:4f:7b:bd:88:bd:bc:70:c6:b0:
ca:f7:fc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:30:54 2026 by rpki-client