Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: mZQbiE28fpXo5Olh7VtBoR/xbwFp0S6IxA6OHTm0E0Y=
Subject key identifier: EE:F3:7D:7F:EB:16:6E:1E:D5:34:BB:A7:DA:61:75:A0:37:E0:BE:9D
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 019D2583974367109CD29BB92F5F28191F7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 0FFD
Signing time: Wed 25 Mar 2026 15:01:14 +0000
Manifest this update: Wed 25 Mar 2026 15:01:14 +0000
Manifest next update: Thu 26 Mar 2026 15:01:14 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: RfviDs8E+ooxYMFZ+B5cnXEqewOrLdfewk16IyOEP24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:97:43:67:10:9c:d2:9b:b9:2f:5f:28:19:1f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: Mar 25 15:01:14 2026 GMT
Not After : Mar 26 15:01:14 2026 GMT
Subject: CN=eef37d7feb166e1ed534bba7da6175a037e0be9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:01:2e:4d:57:19:40:b2:86:9b:ca:f1:0d:
39:bd:eb:b6:60:d8:d3:08:4d:e0:6a:b0:94:72:a2:
18:34:3d:ee:b1:59:e7:b1:c9:83:4b:a3:89:41:c0:
c8:6b:04:7b:4d:4c:5e:19:a3:e0:3f:fa:e9:04:28:
33:0b:ea:13:92:7d:ca:ea:7e:81:66:d7:1b:41:bf:
07:24:c8:99:85:be:f6:cf:9d:6e:c0:f9:32:68:fa:
f3:fe:24:58:3e:83:ba:e7:19:05:68:3d:c8:47:83:
f7:20:02:dd:00:95:99:2e:34:2b:a2:05:49:ef:b1:
72:63:b1:0d:48:61:0c:91:34:cc:e8:0d:e5:d7:08:
7e:ff:68:0f:c2:7b:62:26:fc:f9:08:09:19:dc:80:
da:8d:fb:c9:40:45:65:1b:c8:fa:c6:60:22:eb:aa:
f0:60:5d:23:4e:dc:40:01:7e:75:8b:79:0d:81:b2:
2d:a0:77:d8:2e:b3:3f:c7:bc:64:48:19:46:c2:56:
5c:d6:23:e4:3b:ef:50:15:2d:cd:8a:ca:40:1e:23:
9a:01:59:ac:6f:3b:e3:45:9a:f5:6e:66:fb:b9:e9:
59:df:e8:d2:b3:ce:a2:19:49:43:73:4c:1c:15:23:
50:aa:6a:8b:dd:c0:7d:85:25:e2:8a:2f:dc:10:93:
7b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F3:7D:7F:EB:16:6E:1E:D5:34:BB:A7:DA:61:75:A0:37:E0:BE:9D
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:e6:91:d8:7e:18:a7:43:8d:bf:aa:3a:a2:e5:c6:8c:54:47:
3c:e5:80:c9:d9:fb:34:df:11:ca:99:8b:95:6d:d8:a8:fb:69:
51:f2:04:25:6f:55:f5:0c:44:5b:a5:17:03:23:1c:d1:e4:80:
06:ad:50:f0:15:3e:2c:be:ff:39:94:25:e4:1c:52:b8:6e:ae:
39:b0:14:76:f9:09:37:89:95:d5:d1:aa:45:09:47:e1:89:e8:
68:8a:a3:e2:07:d5:9c:f8:4c:f8:43:e7:21:03:95:e3:b3:6c:
91:c3:b0:a8:bd:f0:6f:16:60:29:dd:fb:ea:15:83:c1:6a:dc:
5e:82:d7:8e:f4:51:54:66:60:14:5f:35:fc:b3:bf:f3:53:c5:
0e:9f:41:a2:96:5d:f6:1a:93:76:95:ab:f8:a8:8f:f6:36:59:
d2:5a:13:b4:10:6a:fb:f1:f8:07:57:66:0d:8f:7c:37:e1:74:
4d:59:d6:21:42:74:c1:ce:90:93:d5:52:39:f3:6f:26:56:9a:
f7:e2:af:8c:7d:3c:cb:69:9b:50:1d:8b:2c:df:7a:fa:22:cb:
d9:b1:59:1d:56:5d:2e:08:2e:bb:e5:59:42:5b:62:bb:7b:11:
91:0f:3c:32:bd:9a:94:21:37:5f:6b:40:f9:d3:d3:81:0b:81:
71:6b:c3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:41 2026 by rpki-client