Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
File: g2pzvtdapO-ld-2QrTVi4hlR0bI.mft (raw, json)
Hash identifier: T9f/MiOwmp+STSbqiF4U8tTvNyoynpWhWZNbE3hCSjw=
Subject key identifier: 25:05:01:7B:F5:A4:E1:3A:3A:3D:97:CA:80:A1:FC:3F:BB:2E:38:25
Authority key identifier: 83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
Certificate issuer: /CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Certificate serial: 019D2997A5A5CE0AE91E740B9FE37F2885EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
Manifest number: 168E
Signing time: Thu 26 Mar 2026 10:01:37 +0000
Manifest this update: Thu 26 Mar 2026 10:01:37 +0000
Manifest next update: Fri 27 Mar 2026 10:01:37 +0000
Files and hashes: 1: 59bhtOK6yzS6oYph8px6Z8lHYRg.roa (hash: dll8gFNBmYkHjUeAlM416fSamZ/Pr3+ONw0kxccS04c=)
2: g2pzvtdapO-ld-2QrTVi4hlR0bI.crl (hash: /9U776a+r/MXBD7qNaWZA7DJwvTzazypOnpoD09e6ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:a5:a5:ce:0a:e9:1e:74:0b:9f:e3:7f:28:85:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Validity
Not Before: Mar 26 10:01:37 2026 GMT
Not After : Mar 27 10:01:37 2026 GMT
Subject: CN=2505017bf5a4e13a3a3d97ca80a1fc3fbb2e3825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fa:ce:33:5a:71:8f:67:69:7e:27:6c:8f:68:
72:fc:2f:2c:43:41:0d:d4:30:05:84:72:ae:ba:a7:
c3:db:f8:21:35:88:f4:71:6b:50:c9:8a:25:bf:b9:
7c:48:46:34:5b:48:76:78:ce:21:5d:e7:78:75:0e:
fa:4e:4a:69:3a:9d:52:0f:f8:5c:e0:cc:08:41:20:
29:23:30:33:3b:77:33:1e:d0:c8:3e:c3:7c:d3:51:
a4:ff:89:39:d0:31:9b:98:db:be:a2:48:ac:c9:3a:
18:82:b4:ed:7f:47:e2:08:76:cc:34:60:70:5a:e3:
b5:8b:20:ba:b7:8e:05:51:8d:8d:0d:51:1e:28:d9:
50:78:d7:bf:17:95:03:97:98:eb:f7:9a:53:85:71:
b9:92:99:5a:16:f2:bb:2b:96:5e:cd:d5:c8:f8:2e:
28:b0:5d:47:44:69:a5:cf:d3:62:ce:de:6c:81:0f:
dd:d2:2e:1b:17:d2:80:3e:ab:ab:48:3f:a6:00:08:
b4:d2:25:d8:bf:92:46:38:5a:c3:a4:f0:56:26:84:
9d:df:f7:c7:ef:e0:c8:0e:2d:ad:0d:b3:75:25:d8:
d5:d6:43:85:49:2b:15:62:6c:46:5c:6c:82:95:02:
47:a4:b6:01:51:fb:21:5f:96:f4:40:f9:88:c8:01:
dc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:05:01:7B:F5:A4:E1:3A:3A:3D:97:CA:80:A1:FC:3F:BB:2E:38:25
X509v3 Authority Key Identifier:
keyid:83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e3:96:fc:69:6e:89:51:e6:54:1b:03:c9:d5:ae:8f:ce:bd:28:
8f:18:55:bd:63:05:fc:a5:9a:90:0a:d6:c9:4d:f5:99:6e:6f:
94:71:12:93:42:a7:c8:cc:e0:2d:79:4d:d8:74:f6:39:41:49:
40:25:31:c2:29:02:ec:8b:b0:56:9c:44:f1:04:10:2e:45:2f:
11:52:ee:12:13:38:95:ec:7c:68:f5:e0:f8:ff:09:ed:f7:6b:
c2:d1:4d:ac:97:05:45:93:91:3c:c3:e6:c2:9a:d8:a5:c9:17:
6b:a2:80:90:b9:35:a7:2d:28:47:9e:e5:36:d7:2c:85:ca:14:
49:79:53:ef:ef:44:8a:44:a6:8b:7f:fb:74:66:40:92:92:a1:
44:f4:6c:b5:b8:7f:a2:d8:38:06:15:79:e4:66:fb:c2:c4:a0:
d7:5c:30:e7:e2:95:4e:4a:34:29:55:fd:73:06:2d:64:06:aa:
c1:58:d2:2a:cc:cf:3d:62:52:59:e4:e3:c6:10:10:6f:0f:ae:
3d:c3:e1:a9:20:85:32:a6:69:6a:21:fa:07:e7:8a:64:d0:97:
5f:85:72:48:71:09:b8:88:eb:80:cb:21:76:00:09:b2:93:1f:
60:80:d9:85:6e:f5:e6:ef:ee:3d:24:59:40:a9:e6:bc:31:ab:
e9:ef:c7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:35:41 2026 by rpki-client