Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: 7xnjb/DogwKo4fMeL6/j9YSBI3oZID5JjSmktL7Y1fw=
Subject key identifier: 9A:09:73:59:91:66:9B:07:17:D5:61:D0:4C:4E:E6:2F:B0:72:82:70
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 019D28F2576A80B55EAF667AA04FE29FDE94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 033B
Signing time: Thu 26 Mar 2026 07:01:03 +0000
Manifest this update: Thu 26 Mar 2026 07:01:03 +0000
Manifest next update: Fri 27 Mar 2026 07:01:03 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: 2Tt6zvXFqbSecUaPGDHcYQaojoNM5Xu6zLAm8iyNqDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:57:6a:80:b5:5e:af:66:7a:a0:4f:e2:9f:de:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Mar 26 07:01:03 2026 GMT
Not After : Mar 27 07:01:03 2026 GMT
Subject: CN=9a09735991669b0717d561d04c4ee62fb0728270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7a:0c:41:3f:73:9b:f7:a7:9f:5a:71:dc:5e:
6b:aa:9c:5d:99:cf:6f:64:ba:c2:68:bc:7e:27:76:
77:32:a1:11:59:6a:54:24:d1:4f:18:15:db:ac:eb:
73:39:10:6f:8a:02:6a:65:db:32:57:01:ba:a0:a3:
73:e2:50:87:9e:ae:95:41:ec:06:ee:4e:3f:0d:09:
a8:34:76:ba:30:a3:0c:a4:2a:f9:d5:74:0b:b3:94:
4a:0c:fa:a7:c4:4c:12:02:5c:33:28:27:99:80:3f:
21:dc:66:8e:f3:e4:47:d8:0e:fc:3a:d9:03:cf:f7:
20:2c:a6:ea:d4:5e:00:73:bc:69:38:b6:be:7a:85:
23:1c:9d:d5:e7:fd:73:89:32:c4:3e:8d:c4:70:d6:
de:85:d1:0b:e5:4c:9f:63:d3:d8:51:4c:df:74:f8:
e0:26:42:b1:61:13:6d:fe:b1:b1:b9:c6:a5:b5:80:
dd:4e:96:3e:df:6a:ee:2e:52:cf:67:0b:e5:b1:a8:
63:15:9d:59:fc:eb:6b:a1:73:bc:e5:b5:3b:3f:25:
cc:58:02:ee:8b:eb:f1:6f:15:22:4a:d2:d6:06:f8:
ba:a1:21:c2:7a:58:36:bf:1b:a1:ac:c1:47:a5:bb:
e0:73:bf:5c:11:cb:13:c2:27:8b:c9:15:a0:f0:f2:
01:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:09:73:59:91:66:9B:07:17:D5:61:D0:4C:4E:E6:2F:B0:72:82:70
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:12:b2:d7:03:bf:7f:8b:25:4b:97:ed:22:3c:7f:88:1c:94:
a6:2d:21:9f:46:4c:bc:2a:5c:93:c8:26:ca:95:ed:58:71:5f:
c7:3c:9c:28:84:94:1b:68:6d:98:1e:20:20:63:f2:9f:b7:4c:
49:1c:f8:73:a7:f2:2f:29:5b:7f:61:50:b2:f3:07:aa:d0:ca:
eb:33:4a:d3:e2:8c:1a:58:53:85:83:2a:e5:73:b7:dd:a1:0b:
94:df:8e:4d:b1:77:8c:99:62:12:17:47:6e:60:a0:cc:28:8b:
be:cb:33:23:db:8c:29:dc:c0:d3:93:0d:6a:8c:fb:b6:af:63:
09:5d:06:e6:fd:16:41:03:b1:26:ea:68:ce:86:1c:f3:3c:97:
5d:59:fe:50:e2:78:91:d3:73:2c:be:f4:2f:65:15:f6:f8:5d:
84:9a:77:75:95:5f:64:a4:26:8b:35:a7:4a:b0:6c:c4:43:35:
56:4b:50:70:56:d2:28:57:8f:91:3d:22:fe:5e:3b:bd:d1:fe:
59:ef:f0:0c:54:e9:f7:d7:ff:29:55:50:99:fc:6d:55:f5:63:
7e:16:6a:7b:49:7b:d7:59:df:47:e6:d9:99:de:62:a5:85:c9:
31:2e:20:e7:dc:cd:33:c3:70:f4:f2:2a:4d:96:02:b1:a8:6e:
8d:89:9f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:27:10 2026 by rpki-client