Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: uChhdd98lk9JXAGchlHPWDSGIamlszpI8ut8DuSzW5I=
Subject key identifier: FB:D5:6B:5B:8E:F1:4C:C3:A0:75:0B:1E:6B:B7:D0:31:FE:B0:BD:B5
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 019D27E03DD81057D0B29F66F65F7723F06F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 0BDC
Signing time: Thu 26 Mar 2026 02:01:40 +0000
Manifest this update: Thu 26 Mar 2026 02:01:40 +0000
Manifest next update: Fri 27 Mar 2026 02:01:40 +0000
Files and hashes: 1: 1JQv5SOtSeXXkOrfiZJVS0aL7xU.roa (hash: AMT4fhj0NQTYFJqA1ljnLjH+q0LAKk7Eo+Nf4uYT4Lg=)
2: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: YdR51rdsIUlnUPRqaDPhTj2oq0wlFSm++5dty9YWeZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:3d:d8:10:57:d0:b2:9f:66:f6:5f:77:23:f0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: Mar 26 02:01:40 2026 GMT
Not After : Mar 27 02:01:40 2026 GMT
Subject: CN=fbd56b5b8ef14cc3a0750b1e6bb7d031feb0bdb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:08:37:ff:59:2b:3f:55:fd:aa:c3:7c:fd:2f:
e6:1f:c8:67:b4:7c:8f:78:26:91:f6:94:1e:c8:8b:
ac:18:2b:d0:9c:ca:50:cf:63:09:8a:c1:e5:0b:a1:
5b:de:76:5c:1e:cd:99:a4:aa:fc:e4:ff:0c:90:a3:
ed:e3:85:52:60:eb:50:9c:05:1f:3b:8b:e7:8d:1c:
57:1c:12:28:51:77:6f:db:3d:6e:5e:62:a9:3b:66:
4e:5f:10:89:30:7d:ab:50:43:44:82:61:c9:93:89:
27:4c:5b:77:4d:95:f4:61:b9:c6:7c:88:1d:9f:ee:
8f:f4:d1:ba:a0:53:76:6c:2d:57:87:97:27:83:ce:
d4:aa:e7:44:2b:9d:0f:f3:ee:bb:cd:08:5a:ec:ee:
dd:05:9f:50:69:35:1e:14:c3:b6:9e:dc:b6:46:3c:
16:13:2d:b2:bb:01:d6:2e:b8:89:16:7a:33:ca:94:
9f:5c:4d:c2:bb:92:e9:3e:a7:5f:43:3c:12:3e:37:
1c:ef:48:5e:86:e2:79:ba:d2:35:4c:56:11:02:9c:
15:91:5a:cd:48:d8:a7:2a:25:66:0a:68:84:3b:68:
87:47:2d:87:a5:d6:ac:44:ac:72:6a:23:00:32:5a:
a6:3d:9c:d0:0f:62:8c:42:a4:68:83:0b:81:4e:80:
78:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D5:6B:5B:8E:F1:4C:C3:A0:75:0B:1E:6B:B7:D0:31:FE:B0:BD:B5
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:cc:4b:cf:85:f4:2b:5f:c3:84:f2:66:23:58:49:76:c9:a7:
de:d4:71:4e:8f:c4:e5:16:01:96:1c:ca:a1:36:4f:22:f2:22:
95:75:e1:7d:e1:79:29:ae:07:41:04:75:c6:ba:03:14:2c:48:
b7:66:d2:66:83:b3:a8:a2:4a:e8:bb:f0:f8:66:24:5e:8c:2a:
9d:18:38:12:6b:f0:79:57:b7:6b:60:c2:e2:20:95:4d:e6:a9:
b4:13:25:19:5a:d1:2b:c1:07:5f:c5:f5:4a:d4:b2:51:3d:d7:
a1:69:0a:44:09:29:b2:95:4e:16:ac:20:ab:d1:d1:58:80:5c:
e5:99:2c:ce:fb:a3:fc:9e:0a:f1:5f:6f:09:25:30:16:dc:77:
87:4b:f3:0c:c5:b7:66:f9:60:f8:26:ad:8b:90:26:02:af:44:
7e:26:66:ee:33:b3:e7:f1:01:8d:61:fc:f8:4c:8a:f5:ed:21:
1c:29:cf:da:66:34:c1:7d:01:12:bd:eb:9c:4c:3e:60:36:e8:
55:72:81:b8:86:c4:ac:7d:c0:eb:33:b3:71:75:6b:1b:f1:fc:
c3:c2:b2:91:4e:1d:bc:0e:2d:11:24:94:d8:8d:50:69:87:a3:
63:8f:bd:16:93:a6:f7:08:03:2a:cf:f2:f5:f6:58:8d:eb:b1:
2c:c5:99:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:14:25 2026 by rpki-client