Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: x1upMfut/bj0yA7Fo1QUEKTDBDNLKl+oKbfryQuGbi4=
Subject key identifier: 8B:32:C8:16:15:F8:86:10:56:DB:43:CF:B4:D6:EC:DA:90:37:3B:82
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019D2A72DFC84D65ACEF83D9C5401AB6E53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 188C
Signing time: Thu 26 Mar 2026 14:01:04 +0000
Manifest this update: Thu 26 Mar 2026 14:01:04 +0000
Manifest next update: Fri 27 Mar 2026 14:01:04 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: Lv2hdkDQYN/lVhqpO+c9Aj8/poBn1Itcg+a0YGSZ1Sk=)
2: H5rz4CYgzmbUmnfGasi4U65AvKk.roa (hash: TO3cNYf9xWtPGa2S3JS5FwJuRn8xpuHQxouafZFM9ao=)
3: qrZor_4iuHhjWECNHuPoqjZgwRM.roa (hash: jTjQTNz6GwiMBlghpXe7c+6S4Cn1ehIr1K8g9CB/9Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:df:c8:4d:65:ac:ef:83:d9:c5:40:1a:b6:e5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Mar 26 14:01:04 2026 GMT
Not After : Mar 27 14:01:04 2026 GMT
Subject: CN=8b32c81615f8861056db43cfb4d6ecda90373b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b1:39:c4:34:68:1e:27:02:1e:69:15:3a:f4:
21:8a:91:3d:14:a3:95:31:69:8c:31:d5:7e:96:58:
1c:c5:1f:f8:f6:ad:85:a4:1b:f6:ad:72:63:7f:75:
0a:d2:dd:b4:54:0f:1d:18:ad:00:a2:83:72:20:06:
c2:19:ea:9f:e4:0b:7b:26:e2:71:59:88:aa:d4:8a:
c2:1c:99:d2:f9:92:7a:bf:06:b5:47:f1:89:9b:9d:
fa:77:e1:4f:e8:ab:e6:15:35:07:6e:98:47:ed:dd:
7d:8c:c8:e3:f1:13:34:56:f4:f6:0a:a9:bd:5f:c6:
6c:da:1b:23:20:9f:44:07:04:73:b8:8e:fc:e5:c9:
92:75:ec:79:20:be:0d:4e:2e:b7:db:83:d4:b3:18:
25:1d:c4:61:6c:f0:28:96:c9:19:8c:7c:26:04:3a:
bf:d3:7f:49:02:37:a7:cd:24:63:7e:1f:29:29:3a:
1e:2b:a9:a8:2d:ca:10:e8:38:dc:63:e4:37:5a:76:
a3:12:91:8a:ae:45:db:26:38:46:84:80:d1:99:93:
8c:12:f3:e7:8c:22:15:ec:17:eb:4a:d7:95:95:12:
3f:e8:99:5e:0b:60:f8:0a:ac:b1:a0:0d:03:02:c9:
f0:71:6f:98:10:60:55:ce:25:ef:81:38:52:4c:ff:
35:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:32:C8:16:15:F8:86:10:56:DB:43:CF:B4:D6:EC:DA:90:37:3B:82
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:27:2e:00:1e:e5:ee:00:91:61:32:ed:17:e0:11:98:3a:3f:
99:48:f4:75:28:b7:70:08:1e:13:31:c3:35:2e:68:c6:50:42:
a6:d5:69:61:41:a7:e9:7a:ee:64:11:0e:41:e3:17:f0:82:7c:
ed:67:3a:40:76:78:13:94:09:f9:b0:47:4b:0c:b7:b1:aa:5b:
53:c9:88:2b:b9:07:02:0c:5b:90:7d:ea:a8:69:ee:72:9d:77:
f6:b6:df:5a:ee:94:0f:fd:b8:70:bd:cb:b3:57:59:c6:80:49:
0a:a9:8b:55:f6:71:58:eb:9e:cd:a3:d1:cb:5e:c7:47:8a:53:
6f:4a:0c:81:ab:15:e6:ed:e0:fe:16:03:b6:49:55:26:9b:cf:
5b:46:31:67:b4:f9:ff:75:8c:f5:ec:b2:6e:2d:4c:96:c2:4a:
11:14:25:7f:78:51:ec:5a:29:75:4d:0d:8a:ff:bb:35:43:34:
ae:e6:0b:05:be:e5:a6:c4:b4:58:df:48:39:52:68:03:8a:fa:
97:4c:0f:b1:db:f2:31:81:39:9c:6a:51:af:11:28:a6:8c:24:
0c:82:5b:07:74:88:aa:03:f6:80:af:e2:cc:d9:a7:f1:7f:10:
a7:29:1a:91:77:19:6c:f1:b3:95:f6:dc:93:ad:aa:e7:e0:6a:
dd:2f:78:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qct/ITWWs74PZxUAatuU8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTU2ZTJkNjNhYzVkYTliZWQzNWRhMDFjYmZhZDIyNWYw
NGJlYjAwHhcNMjYwMzI2MTQwMTA0WhcNMjYwMzI3MTQwMTA0WjAzMTEwLwYDVQQD
Eyg4YjMyYzgxNjE1Zjg4NjEwNTZkYjQzY2ZiNGQ2ZWNkYTkwMzczYjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6bE5xDRoHicCHmkVOvQhipE9FKOV
MWmMMdV+llgcxR/49q2FpBv2rXJjf3UK0t20VA8dGK0AooNyIAbCGeqf5At7JuJx
WYiq1IrCHJnS+ZJ6vwa1R/GJm536d+FP6KvmFTUHbphH7d19jMjj8RM0VvT2Cqm9
X8Zs2hsjIJ9EBwRzuI785cmSdex5IL4NTi6324PUsxglHcRhbPAolskZjHwmBDq/
039JAjenzSRjfh8pKToeK6moLcoQ6DjcY+Q3WnajEpGKrkXbJjhGhIDRmZOMEvPn
jCIV7BfrSteVlRI/6JleC2D4CqyxoA0DAsnwcW+YEGBVziXvgThSTP81eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIsyyBYV+IYQVttDz7TW7NqQNzuCMB8GA1UdIwQY
MBaAFNilbi1jrF2pvtNdoBy/rSJfBL6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4Njct
ZThkNDdiYmEyNWJmLzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4NjctZThkNDdiYmEyNWJm
LzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPycuAB7l
7gCRYTLtF+ARmDo/mUj0dSi3cAgeEzHDNS5oxlBCptVpYUGn6XruZBEOQeMX8IJ8
7Wc6QHZ4E5QJ+bBHSwy3sapbU8mIK7kHAgxbkH3qqGnucp139rbfWu6UD/24cL3L
s1dZxoBJCqmLVfZxWOuezaPRy17HR4pTb0oMgasV5u3g/hYDtklVJpvPW0YxZ7T5
/3WM9eyybi1MlsJKERQlf3hR7FopdU0Niv+7NUM0ruYLBb7lpsS0WN9IOVJoA4r6
l0wPsdvyMYE5nGpRrxEopowkDIJbB3SIqgP2gK/izNmn8X8QpykakXcZbPGzlfbc
k62q5+Bq3S94OA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 19:41:45 2026 by rpki-client