Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json)
Hash identifier: x2lFqd9YSWTWCQZMoCOpqTov/yXzzL8stx2Fr0iw9sA=
Subject key identifier: E9:75:A1:97:BC:2F:0B:07:37:E7:E7:EA:69:D5:B3:13:CC:93:42:4E
Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6
Certificate serial: 019D25F1638850CE415A512CAE0E62708D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
Manifest number: 0283
Signing time: Wed 25 Mar 2026 17:01:09 +0000
Manifest this update: Wed 25 Mar 2026 17:01:09 +0000
Manifest next update: Thu 26 Mar 2026 17:01:09 +0000
Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: xTxAyajiP2QdVgjUlem1xg/6pd7RDjLBzJGFPSXAbFw=)
2: ULNyY9ornMb2XkpkkXNvWN1gP2I.roa (hash: r5UnkkjvCogYCq6Zu3PdGG9tZrgdqzPy7q2Pvmc7Y4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:63:88:50:ce:41:5a:51:2c:ae:0e:62:70:8d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6
Validity
Not Before: Mar 25 17:01:09 2026 GMT
Not After : Mar 26 17:01:09 2026 GMT
Subject: CN=e975a197bc2f0b0737e7e7ea69d5b313cc93424e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:58:39:4c:47:69:72:66:98:70:51:08:97:3e:
e7:6e:dc:7f:70:42:b2:45:d4:37:8d:25:bc:b1:b6:
de:ab:4b:4e:91:74:87:4d:06:96:12:7c:11:e8:19:
32:ea:31:c5:47:df:64:d9:e5:08:5d:76:43:cf:e7:
1e:16:f7:62:5a:f7:8a:11:99:34:d8:4c:92:ce:ac:
35:c1:44:c3:73:30:9f:24:de:6f:30:13:95:f2:13:
8f:a4:0f:d1:ff:f1:b4:2f:c3:e7:61:1e:91:29:f3:
ca:c4:91:54:4c:58:70:ab:7c:64:c2:0e:43:c2:d8:
ba:e8:3c:a6:c8:ba:b0:33:ef:fb:65:69:2a:41:49:
72:2b:e5:fa:d7:80:c2:06:53:1d:23:af:1a:9b:31:
c2:51:af:7a:44:b0:20:73:63:d6:ba:ef:bc:88:9f:
d6:8f:e5:fc:33:86:25:29:54:94:5f:8d:b5:a4:1b:
bd:0a:49:20:5d:23:9b:25:f8:3b:fc:ff:f0:08:b7:
53:e6:eb:1c:fb:de:3d:31:cd:85:b7:0e:15:c8:2f:
61:1e:bd:08:2f:33:28:28:31:de:13:6c:56:bd:20:
c5:63:cb:a6:19:3d:78:49:5b:d0:65:8d:83:e1:a5:
fa:3a:2b:02:f2:16:1d:3b:67:10:1d:f8:9c:4f:bd:
ee:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:75:A1:97:BC:2F:0B:07:37:E7:E7:EA:69:D5:B3:13:CC:93:42:4E
X509v3 Authority Key Identifier:
keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:9a:b7:85:ee:32:85:af:00:c1:cf:e9:9f:0b:7f:5b:c1:44:
c2:7f:a9:b2:e8:11:bc:ee:40:40:07:68:45:ed:89:6d:9d:2e:
fb:e6:f4:b3:e4:71:da:31:ad:df:27:d9:5d:cf:55:29:e4:8d:
7a:b2:ba:27:10:a6:b3:cc:7b:a2:c0:59:01:e4:4c:46:42:b7:
c5:39:6f:31:85:57:cb:d6:18:b2:58:88:a2:8f:9b:e0:84:83:
41:b8:2c:ca:98:e7:f7:57:13:c5:19:cd:db:a9:bb:71:f3:fa:
bb:5f:d7:4e:47:17:5b:d4:cd:ca:8f:7f:85:0d:99:73:9b:8f:
bd:1a:11:17:43:0e:b0:fe:15:d9:f6:76:23:bf:8e:06:a0:ad:
9a:a1:31:1e:f9:2b:92:56:a9:71:2a:25:4b:df:0c:b4:2d:14:
bd:c7:e9:45:05:ea:54:45:75:83:8c:04:fa:b2:1f:4a:72:ca:
2a:7c:2c:50:ee:d4:9d:d9:59:c2:16:3e:25:6a:5f:3b:41:04:
e1:bc:df:21:dc:fa:b4:a8:4b:d6:e7:38:a0:a5:67:4f:d3:02:
b4:b1:a8:9f:80:8b:8e:8a:b4:ae:25:47:f4:0f:d0:2c:cc:9d:
c7:e7:03:7d:20:4b:eb:4d:8e:d2:8e:cf:43:72:51:50:f4:35:
21:ed:a1:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8WOIUM5BWlEsrg5icI1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMjFkMDI0NjRiMzhhZmYzYTMxYzkwODc4ZDYyNzIzYjlj
NzQyYTYwHhcNMjYwMzI1MTcwMTA5WhcNMjYwMzI2MTcwMTA5WjAzMTEwLwYDVQQD
EyhlOTc1YTE5N2JjMmYwYjA3MzdlN2U3ZWE2OWQ1YjMxM2NjOTM0MjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVg5TEdpcmaYcFEIlz7nbtx/cEKy
RdQ3jSW8sbbeq0tOkXSHTQaWEnwR6Bky6jHFR99k2eUIXXZDz+ceFvdiWveKEZk0
2EySzqw1wUTDczCfJN5vMBOV8hOPpA/R//G0L8PnYR6RKfPKxJFUTFhwq3xkwg5D
wti66DymyLqwM+/7ZWkqQUlyK+X614DCBlMdI68amzHCUa96RLAgc2PWuu+8iJ/W
j+X8M4YlKVSUX421pBu9CkkgXSObJfg7/P/wCLdT5usc+949Mc2Ftw4VyC9hHr0I
LzMoKDHeE2xWvSDFY8umGT14SVvQZY2D4aX6OisC8hYdO2cQHficT73uNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOl1oZe8LwsHN+fn6mnVsxPMk0JOMB8GA1UdIwQY
MBaAFNoh0CRks4r/OjHJCHjWJyO5x0KmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMt
NzZmNTJiMWRkNzE4LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMtNzZmNTJiMWRkNzE4
LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAipq3he4y
ha8Awc/pnwt/W8FEwn+psugRvO5AQAdoRe2JbZ0u++b0s+Rx2jGt3yfZXc9VKeSN
erK6JxCms8x7osBZAeRMRkK3xTlvMYVXy9YYsliIoo+b4ISDQbgsypjn91cTxRnN
26m7cfP6u1/XTkcXW9TNyo9/hQ2Zc5uPvRoRF0MOsP4V2fZ2I7+OBqCtmqExHvkr
klapcSolS98MtC0UvcfpRQXqVEV1g4wE+rIfSnLKKnwsUO7UndlZwhY+JWpfO0EE
4bzfIdz6tKhL1uc4oKVnT9MCtLGon4CLjoq0riVH9A/QLMydx+cDfSBL602O0o7P
Q3JRUPQ1Ie2hCA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:43:31 2026 by rpki-client