Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: fT3/pFVpjET7NpvOUjVLcRF1ncDB/YnsQ6C0J8nIcvg=
Subject key identifier: A0:33:7B:CB:44:35:78:11:26:95:F0:8F:54:38:25:AC:DE:0C:46:C4
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 019D27A8BD29AE41EFA5AD44B540CF77565D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 01:01:02 +0000
Manifest this update: Thu 26 Mar 2026 01:01:02 +0000
Manifest next update: Fri 27 Mar 2026 01:01:02 +0000
Files and hashes: 1: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: ID7jkfGi2zaG6avkvHxL52akd5A60Qvizn11Ppw4F7I=)
2: xxmUvxGlUTZYlS1fzfDsE1LRkDY.roa (hash: LHuMkoFuyABxZJIkd6bMQ80Etxt39qZubcGAijE5D7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:bd:29:ae:41:ef:a5:ad:44:b5:40:cf:77:56:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: Mar 26 01:01:02 2026 GMT
Not After : Mar 27 01:01:02 2026 GMT
Subject: CN=a0337bcb443578112695f08f543825acde0c46c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:09:b5:23:0b:98:04:c5:1c:12:c4:50:6f:15:
0f:81:9e:f2:db:bb:39:b5:ea:52:6c:c3:cb:de:34:
e0:43:97:5a:11:27:89:2e:25:20:f9:4f:35:41:99:
84:95:37:98:a5:46:c1:8d:a1:7a:25:e8:77:13:76:
37:83:c9:a0:71:04:07:85:a2:3b:bd:17:ec:b9:cc:
db:d0:6f:f5:a2:09:74:9d:92:9b:c8:80:28:bf:df:
cb:c0:ee:72:d6:66:4a:da:25:d3:b1:08:a5:48:1c:
fc:fa:d1:7c:11:84:e1:8e:d7:1b:25:f3:6c:30:39:
e3:ab:26:15:61:a6:44:46:b6:73:38:dd:39:b0:00:
ad:f6:11:e5:82:cb:1b:83:8b:55:a1:93:91:c9:a8:
31:d5:d8:2f:e0:17:98:49:d8:a2:7e:b8:6a:8a:13:
b7:db:4f:91:c6:c2:62:a6:84:43:e6:7c:e2:3e:6b:
39:26:9c:47:ba:4f:06:96:ea:b7:65:f6:38:78:2e:
17:4a:8f:9a:10:a9:b2:4b:90:5a:f8:48:cc:fe:01:
26:de:60:d9:a8:b1:e8:04:2b:6f:dc:99:dd:a5:fe:
85:01:6b:80:2a:04:af:64:f2:f1:d4:46:96:f7:a4:
7d:29:1a:f8:fc:6b:a3:b9:09:e6:69:e9:4f:11:fd:
e7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:33:7B:CB:44:35:78:11:26:95:F0:8F:54:38:25:AC:DE:0C:46:C4
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:20:ae:0d:2b:37:9e:8e:52:69:13:8b:c5:81:f4:56:29:21:
7f:cb:d9:00:4c:b7:94:66:17:29:63:b1:48:b6:5e:f9:0a:3f:
bc:1b:e6:d5:df:13:d2:a4:35:89:97:c2:7d:ec:66:e8:a1:e8:
b1:d0:16:f5:ac:8f:e7:1d:f8:d1:93:59:62:78:72:a5:11:2b:
cf:b9:78:2b:9e:bf:2f:8d:cb:62:6a:ac:58:6d:e9:4f:4a:05:
8d:89:32:69:c2:6a:39:43:5f:d7:32:0b:b4:7b:72:ac:5a:00:
49:8e:5d:ff:e9:bd:70:d2:78:8f:75:b8:19:e7:70:4d:ed:8b:
bf:b1:f8:2a:e9:dc:c2:15:b4:7b:ed:00:98:cb:48:3f:29:3f:
bc:5a:6d:c9:42:b1:78:d8:d6:e0:39:1e:65:d7:b2:da:81:a2:
08:7d:92:d3:1a:e7:43:c5:b4:c8:5c:93:f2:b2:60:fb:9b:f0:
fb:b4:d2:d7:40:bb:64:1d:73:95:2a:6e:15:7c:55:6d:6c:11:
93:89:2c:fe:7b:28:e2:6b:38:7e:be:5a:fe:fb:dd:bf:79:02:
2a:9e:9d:2b:72:4a:2b:ee:f0:eb:92:f9:38:b1:a7:e7:74:e8:
cb:dd:5e:70:85:15:fd:80:13:b8:f3:a0:72:3a:0f:2d:5b:5e:
db:a1:8d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:12 2026 by rpki-client