Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json)
Hash identifier: QfWiltNpvMEBwUIEQvPF4ZRxry74Fm68XMgv6TkGNr0=
Subject key identifier: 4E:C9:77:82:C9:8B:D5:8D:42:9A:90:25:A3:AE:95:08:20:33:F5:A0
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 019D2704B95E2200814D6725DDA594CE0158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
Manifest number: 1054
Signing time: Wed 25 Mar 2026 22:01:54 +0000
Manifest this update: Wed 25 Mar 2026 22:01:54 +0000
Manifest next update: Thu 26 Mar 2026 22:01:54 +0000
Files and hashes: 1: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: XvtQ2nZD6uspyT0i/PBkp1hM5SqnYAu0Xt5eozMuGlg=)
2: tpy9FJHevA7odk2TH7YsmtN7UFs.roa (hash: HA5XrfWMN5EyPeGIHUHIkCKTU3wDBfCSNcRoSlAlDv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:b9:5e:22:00:81:4d:67:25:dd:a5:94:ce:01:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Mar 25 22:01:54 2026 GMT
Not After : Mar 26 22:01:54 2026 GMT
Subject: CN=4ec97782c98bd58d429a9025a3ae95082033f5a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ba:de:fe:7d:fa:42:a6:e3:f0:67:19:25:0f:
23:b7:b8:79:4f:95:48:02:4c:19:ad:27:65:7b:53:
14:00:b7:8b:57:80:d6:01:0a:35:b4:5a:f3:09:2f:
e1:da:32:b7:96:c7:66:d5:1f:64:a1:e6:f4:2b:b6:
a1:12:0c:44:d4:25:d2:e6:67:c7:f5:96:a4:dc:a0:
34:74:d2:86:bf:9a:8c:e3:c2:73:d6:f7:66:cc:d8:
ca:b1:26:40:18:af:d5:00:81:93:7e:82:85:38:cc:
32:dc:16:06:e2:dd:1d:4e:ba:15:47:db:27:f5:81:
93:09:d7:2b:36:b4:b2:69:a1:ff:76:d4:e4:38:e9:
4b:51:e9:85:a8:81:7e:0e:70:a9:f9:6b:1d:86:2a:
08:48:cf:61:ba:c0:d4:bb:7d:9f:27:8c:5e:d9:b1:
35:21:5b:6a:29:39:31:65:f0:da:a4:93:90:52:49:
a8:ba:d2:5c:02:cb:1d:e6:11:8e:2e:91:3c:5f:75:
8a:ba:a4:63:b3:fd:82:ab:cc:fd:9c:85:e9:d5:4b:
c9:72:a5:5e:13:19:83:b3:04:69:d3:12:23:2c:a3:
62:6d:3f:f3:72:6c:a6:48:61:ee:6e:09:d9:fc:66:
31:45:8e:1a:56:e9:f1:2e:56:dd:6d:39:9c:df:06:
fc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C9:77:82:C9:8B:D5:8D:42:9A:90:25:A3:AE:95:08:20:33:F5:A0
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:c7:42:98:ed:c2:df:dc:57:3c:18:3c:20:2b:0f:78:79:ca:
47:69:44:73:4e:ac:e2:36:4f:8c:8b:bc:74:1c:59:04:f6:2d:
94:1b:73:af:35:da:0a:cc:66:a6:fb:ea:dd:bb:9b:4c:1c:61:
5f:60:71:a1:a1:dd:ee:7d:be:8f:39:35:b9:39:26:a5:b4:bb:
78:35:0d:f0:d3:38:e7:c9:a2:8f:64:8a:4d:2b:09:9e:e2:00:
5f:1b:b1:ae:ef:53:52:64:c8:f9:19:f5:ab:9f:c4:af:de:9d:
bd:62:26:3a:2b:7a:74:10:bb:da:a6:66:8a:90:56:9c:e4:7c:
24:99:fd:34:a2:7a:c2:05:9e:1c:a1:ab:90:8a:a5:92:cf:cd:
25:d1:f5:c3:dc:72:bd:03:55:01:ab:00:33:9c:57:58:c3:ae:
e9:8a:ac:6a:e0:f7:13:64:04:2f:06:d3:09:74:dc:d8:30:6d:
c6:37:64:ab:71:bb:8f:f1:cc:f7:69:5a:ac:38:10:07:2a:1e:
94:b2:2a:86:ba:6b:67:7b:e3:aa:9e:89:77:c0:26:60:4d:ba:
74:8a:48:4c:d9:c8:55:98:a8:10:bf:7a:4b:01:49:c4:b2:75:
a6:29:a5:e7:85:aa:ae:1d:ea:7d:c5:b5:d0:d6:31:b2:ac:84:
63:c1:85:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:16:05 2026 by rpki-client