Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: 2zpYP91SwKkVAzsv/ATO50Oet9F/1/ynvw9mMDQ6EY4=
Subject key identifier: E9:43:BC:55:59:2B:32:EF:6B:FC:30:1B:E3:4F:DD:0A:A0:CF:B0:E1
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019D27A8D9713699A2198896DD485B9A0ADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 05E7
Signing time: Thu 26 Mar 2026 01:01:10 +0000
Manifest this update: Thu 26 Mar 2026 01:01:10 +0000
Manifest next update: Fri 27 Mar 2026 01:01:10 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: 71v3PdWf6dDDLgt37dQ2YAGkCAa7i2sh67p78hyZqsQ=)
2: so3uet9HxmTT1e6-Xaeu7Xu47R4.roa (hash: YS3OlsV7nqbX92XpohfbsDi48e2F2cYz3EHfcdxmOmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:d9:71:36:99:a2:19:88:96:dd:48:5b:9a:0a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Mar 26 01:01:10 2026 GMT
Not After : Mar 27 01:01:10 2026 GMT
Subject: CN=e943bc55592b32ef6bfc301be34fdd0aa0cfb0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:98:0f:fa:11:6b:28:62:85:f6:7b:05:46:b2:
e9:4e:59:dd:02:22:aa:8d:89:a7:06:80:03:1e:bf:
6e:27:c8:6b:5f:80:ce:46:85:61:3b:46:7c:f2:72:
57:19:74:73:9b:d6:d6:2c:d1:e0:6c:6f:76:e1:de:
dd:6f:7c:4b:62:48:f1:80:dd:f0:ae:85:0e:3b:05:
9b:ea:dc:b4:4e:9c:59:e0:33:c3:a5:5c:19:9f:66:
08:fe:29:3e:12:9a:ef:e4:b9:5f:a2:cb:38:af:bf:
5a:6b:d5:44:69:f8:e3:af:1e:88:b6:d4:e9:f2:2b:
5c:0c:87:9e:cf:4f:08:96:30:e2:ba:ee:ed:ff:01:
4b:96:b6:47:1d:5d:f9:db:bd:5d:5e:6c:a2:fa:e8:
11:61:72:3e:20:28:56:e4:f2:d8:57:10:e0:c5:df:
a0:b0:27:e0:dd:c3:d5:b1:aa:1b:ba:f6:24:77:c1:
8c:29:32:a4:5b:d4:41:7e:d9:ce:c7:36:21:6a:82:
88:10:8b:04:cb:46:1e:2e:e5:92:5b:b6:71:0c:40:
22:93:fd:84:07:32:1f:e5:b5:e2:62:c6:6b:8b:1e:
5c:ee:58:aa:d8:7e:53:51:ae:17:0e:f7:d6:cf:b5:
c0:d8:24:2e:2a:64:84:4b:f4:8a:d9:1f:40:e5:91:
35:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:43:BC:55:59:2B:32:EF:6B:FC:30:1B:E3:4F:DD:0A:A0:CF:B0:E1
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:bf:85:8c:b2:c4:05:81:30:f1:d6:c0:7f:d4:6a:01:10:17:
53:ed:92:c2:44:90:9e:9a:78:ba:24:a4:f8:87:97:78:d0:7c:
f7:9c:73:75:23:ac:5c:5e:13:34:03:85:9f:13:4d:73:e7:78:
fa:a2:86:42:fd:81:44:ec:74:8b:fd:6a:a1:2e:11:a5:44:5d:
48:fb:81:9e:cc:f8:3b:70:f3:90:7c:23:35:3e:21:37:78:3d:
01:26:32:02:45:5d:18:33:b7:8a:54:b1:4a:06:01:b1:31:fe:
a5:c4:b9:cb:7c:6f:e2:f9:4d:fd:5d:ab:df:c3:9f:c1:b3:65:
27:b9:52:d8:c8:06:d8:c4:ea:76:98:a0:e3:3b:38:97:42:35:
26:69:35:f4:e5:59:53:c1:05:1b:59:4a:ec:bd:92:26:c5:09:
46:fe:b8:76:f9:8c:5e:0c:f6:ff:5c:03:40:9e:a6:7e:32:5b:
cd:13:cc:ec:c3:02:85:0c:24:b4:e6:b2:39:9f:34:84:d8:0c:
82:cc:2c:74:13:05:8c:b6:c6:09:44:80:22:c8:6e:3c:e1:67:
ba:83:2d:5d:60:84:40:4d:08:cd:3e:c7:c1:39:06:8f:fd:66:
03:65:b2:ae:00:86:81:63:0a:2f:1a:fc:83:df:1a:a4:14:f0:
59:f5:43:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:55:27 2026 by rpki-client