Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: uqoHPZfEN5HyxFQ36CuIZcMHmwmAdOKa25QImvrrvwg=
Subject key identifier: DD:22:30:E5:48:87:EB:21:F9:E8:49:04:66:DA:BD:8E:73:77:3A:D7
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 019D25834AB23A05D369DCD6D51F4C15E6C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 093B
Signing time: Wed 25 Mar 2026 15:00:54 +0000
Manifest this update: Wed 25 Mar 2026 15:00:54 +0000
Manifest next update: Thu 26 Mar 2026 15:00:54 +0000
Files and hashes: 1: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: szKYY7Q0IHZkCue0at2AYHQORGZ+phVy1cZx5loj1ds=)
2: 48OS4sWYglwtZBn1YxiPqc26nTU.roa (hash: NBM10gWvuZSa38kRQAx40WjX3amxqFeb96LnMyUj85Q=)
3: HUZvsXoFqmpwitLw4aku7m5jYa8.roa (hash: rhpAJ7/RvlTCzRrbypi+sM57yT9OZ8RJ46KD4H90XuY=)
4: Rl0xX2L5u9e-WU3LxVTHfDCZoEQ.roa (hash: iB5ApjU6OfFGOZU2O/uqHAaYYGIEkIhRygeaclVc054=)
5: hih4fzkJ3O9yEk3BE5UpAZ6h-8Q.roa (hash: R7mk0homAMVaYBl/kyf6p+7Cu/DPi0srKaEKzzxe+Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:4a:b2:3a:05:d3:69:dc:d6:d5:1f:4c:15:e6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: Mar 25 15:00:54 2026 GMT
Not After : Mar 26 15:00:54 2026 GMT
Subject: CN=dd2230e54887eb21f9e8490466dabd8e73773ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:19:80:c9:de:f1:99:ea:78:46:cf:81:61:
79:6e:c7:8c:b7:82:a5:6f:81:df:2f:b8:9a:8c:8a:
ca:13:14:e0:b7:c1:9c:fd:b3:50:1c:c5:f1:b8:b1:
86:b4:91:08:b8:a2:07:3f:8a:36:c3:ec:bf:20:98:
6f:38:a6:55:ca:ee:51:c4:cc:66:dc:83:d6:4c:c7:
56:3b:41:d5:c9:a1:44:dc:21:fc:34:88:70:41:ee:
51:b2:a3:e3:60:1f:82:24:8a:b3:57:f6:53:49:56:
73:6e:d4:ec:b1:30:dd:fd:01:a5:a4:71:3a:22:37:
f8:39:c4:20:0e:6e:97:96:7b:43:74:16:24:6c:71:
7d:93:7c:3a:df:4d:31:d5:8c:64:21:1c:0f:9e:94:
aa:47:03:e0:6d:fc:b2:a4:9b:12:ad:79:93:cc:c2:
14:30:0c:d7:fa:33:f4:cc:74:f3:bf:1b:29:f1:86:
ad:06:10:da:c2:86:01:e0:39:f5:62:94:e7:9b:8c:
3e:ce:ae:db:22:e6:a3:8f:d8:5c:5e:81:0f:69:f1:
b2:a7:4d:7b:86:d9:62:3e:21:08:90:05:e1:38:99:
af:08:d4:7c:4d:c4:4f:18:ba:20:e2:94:51:86:e0:
11:79:da:60:7b:a1:07:4c:be:b7:d1:b5:03:c7:bb:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:22:30:E5:48:87:EB:21:F9:E8:49:04:66:DA:BD:8E:73:77:3A:D7
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:fb:62:91:2d:e8:5e:d0:8f:b6:8a:1a:40:99:8d:a7:9b:3b:
85:c5:16:b9:74:7d:91:6a:e1:90:7d:b1:85:4e:ac:f8:55:15:
c4:86:a5:8f:6e:0e:b9:69:95:1d:d5:07:c1:c4:58:3c:f3:6d:
e7:61:84:4a:99:c5:62:cb:1a:a2:27:34:fb:f6:98:ea:3d:ee:
7c:68:88:f1:47:14:e5:49:ed:73:65:17:2c:a0:31:e4:5c:67:
e9:86:a3:dc:08:3e:1b:76:af:e2:1b:23:86:88:29:6d:60:9f:
2e:90:a3:a4:ad:9d:c3:67:76:8e:31:09:3f:21:a2:e0:30:37:
50:c1:7a:fe:14:f7:9f:2c:b4:e6:07:45:b8:5f:b7:2f:f9:41:
7e:f3:6f:b8:b5:45:1a:a5:34:69:80:fb:1b:90:95:9d:67:bf:
b2:5a:f5:f0:b3:bf:4c:f2:3c:95:55:82:a0:54:04:39:37:40:
0c:f2:00:b6:99:4f:a9:ac:fb:b0:ac:32:37:2b:d9:5a:11:c5:
ed:64:a1:d5:32:a7:c6:ad:12:25:f9:4d:6d:69:dc:c5:e0:fe:
7f:d0:61:f2:66:c3:91:09:fd:a9:53:4c:3a:07:90:73:17:70:
7b:8b:15:73:4b:5e:8b:6a:ba:75:93:ce:03:40:ea:8d:20:ec:
96:aa:42:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:18 2026 by rpki-client