Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: wD37WDUxbI8QNFF8N0bQE7Il6+NT8nEN9+hZ0tQZ4Xc=
Subject key identifier: 4C:1C:53:E3:1A:AA:6C:60:B6:69:22:CF:12:96:3D:52:3A:63:11:0D
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019D273ADDE205EFC18F3655969A2412AE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1197
Signing time: Wed 25 Mar 2026 23:01:02 +0000
Manifest this update: Wed 25 Mar 2026 23:01:02 +0000
Manifest next update: Thu 26 Mar 2026 23:01:02 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: 0myjDek6y+hXBWoOLCYUVqOn4TXsGiWjyT36AfhV09A=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:dd:e2:05:ef:c1:8f:36:55:96:9a:24:12:ae:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Mar 25 23:01:02 2026 GMT
Not After : Mar 26 23:01:02 2026 GMT
Subject: CN=4c1c53e31aaa6c60b66922cf12963d523a63110d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:01:a1:f1:da:fa:13:c3:54:30:cf:60:17:ef:
c4:82:c3:85:0b:a4:13:50:68:d8:cd:fc:38:68:0d:
26:c6:eb:68:2c:b9:38:af:46:88:21:12:c0:0b:60:
ac:e5:44:3a:15:3f:b2:33:db:4d:72:56:ed:d5:16:
c8:27:43:07:e2:22:20:82:13:e5:79:b2:ee:af:32:
07:0c:a5:83:d8:9c:49:ea:bc:96:ef:19:ee:7d:2b:
95:d0:4e:a6:54:bc:a0:66:31:f3:63:74:04:51:e6:
78:6e:28:5c:a9:90:df:d0:d3:34:04:eb:18:4d:1d:
a0:ea:7b:8d:42:dd:3b:99:0d:f5:c8:97:4a:31:cf:
1e:26:7d:14:8a:c5:74:80:59:d4:99:db:a0:92:f9:
bf:2e:1c:60:8f:be:eb:28:cd:a5:22:fe:81:17:e3:
7b:65:ba:81:20:29:f3:1a:fc:d2:f4:39:2b:cb:72:
18:ff:80:cf:15:f8:2d:4e:ef:79:45:e0:0e:ad:a1:
58:69:d2:10:da:af:d6:40:f9:8e:2a:3d:a7:c4:54:
fc:51:22:46:23:8c:61:98:a0:0a:f1:07:db:4c:5f:
9d:81:19:47:6f:3a:ee:14:04:e8:15:e3:49:e3:8c:
62:c0:d4:0e:a0:61:6e:00:b0:a4:53:65:1a:14:a4:
13:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1C:53:E3:1A:AA:6C:60:B6:69:22:CF:12:96:3D:52:3A:63:11:0D
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:c8:3b:87:ff:15:eb:ec:53:1c:c0:00:fd:19:c6:67:65:f1:
c9:39:50:ee:27:76:2a:db:6d:45:ba:a6:10:45:08:d5:71:c9:
27:e6:93:6e:92:8e:e3:ed:72:7e:a2:f4:70:e8:bd:4a:8f:51:
ad:08:e3:75:63:dd:5c:ab:d0:bd:fe:9d:85:89:b4:75:f2:6f:
e3:3e:11:1c:b3:51:99:3f:8c:b7:c4:77:07:93:dc:54:80:09:
92:cb:9a:8a:41:d9:fb:db:64:78:82:56:44:65:b5:d0:9c:46:
26:9b:82:14:fd:20:2b:37:26:92:35:7b:f1:6e:36:34:bf:da:
f6:56:6e:ed:37:80:d1:3c:98:1f:9d:4f:45:27:54:5e:20:9d:
c7:e9:66:8f:08:be:0f:2e:31:f4:5e:d7:2a:71:78:80:00:f4:
c0:2b:c6:76:c2:cf:87:a5:ac:6f:0b:10:7e:ff:15:e8:b1:e4:
c2:b3:a2:85:5e:af:da:de:39:23:15:03:b6:3d:c4:ea:77:7b:
4d:03:fc:fe:8c:d4:3a:6c:eb:dc:b8:c2:e9:10:49:08:2d:4b:
5e:da:58:5f:1c:fe:7a:da:bb:08:b1:91:55:ab:3d:ab:c0:84:
33:ad:ec:1e:fa:b1:34:34:15:c7:9f:9e:ed:0e:3f:32:04:aa:
0d:9f:46:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:43:01 2026 by rpki-client