Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
File: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft (raw, json)
Hash identifier: a6fanFceKcC6WLE5aCyVtr5eiHJ5jaW0sOwxmaOuDuY=
Subject key identifier: 8B:04:26:CE:4E:5A:25:69:D1:12:05:DB:C5:C8:27:A6:A5:56:5B:98
Authority key identifier: DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
Certificate issuer: /CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Certificate serial: 019D3299EB1688CCE37D0452C1BDB272A624
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
Manifest number: 167C
Signing time: Sat 28 Mar 2026 04:00:41 +0000
Manifest this update: Sat 28 Mar 2026 04:00:41 +0000
Manifest next update: Sun 29 Mar 2026 04:00:41 +0000
Files and hashes: 1: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl (hash: /LeE4CaqdcwSwENnINbvVUVTEhvXaDbMqudbk4WRmhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:99:eb:16:88:cc:e3:7d:04:52:c1:bd:b2:72:a6:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Validity
Not Before: Mar 28 04:00:41 2026 GMT
Not After : Mar 29 04:00:41 2026 GMT
Subject: CN=8b0426ce4e5a2569d11205dbc5c827a6a5565b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:70:82:54:33:d6:b5:3f:f7:f0:e7:82:15:fd:
d2:e1:b7:b4:9d:51:41:3b:51:66:5e:ee:53:51:cb:
fe:b1:46:df:a2:22:4b:18:a3:0c:3f:16:d2:26:d7:
1e:3b:27:34:3b:4f:e2:88:41:96:61:cf:ec:80:2f:
23:ab:da:37:b6:4b:29:da:50:b8:9f:ba:aa:1a:00:
0a:f7:bb:fd:31:ba:9a:07:18:1a:cc:e7:76:89:fd:
36:95:69:14:a8:ef:3e:ea:20:6d:82:8c:26:27:78:
1d:d6:31:8f:ba:11:e7:c4:70:7d:2c:b8:1b:ea:cc:
47:2a:38:1c:80:20:aa:82:55:94:cb:48:c3:bc:91:
52:c1:fb:a1:4f:4a:aa:65:4b:b6:10:5b:3e:04:83:
80:9c:a7:ea:69:d4:85:2e:bf:fb:8d:14:ef:86:f5:
23:2e:26:5f:85:86:73:10:82:09:3a:6e:e1:6a:d1:
42:c5:61:76:7d:78:a0:f6:51:17:64:4f:5d:95:23:
46:50:ef:0e:37:fd:be:20:88:3c:bf:13:03:a1:59:
60:b4:90:89:09:c0:91:b5:74:88:17:09:7a:41:cc:
3c:5d:b2:7a:3d:83:9d:1d:0c:e1:42:a8:e4:c5:c9:
f2:97:cd:da:39:dc:30:17:58:21:19:dd:cf:cb:7e:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:04:26:CE:4E:5A:25:69:D1:12:05:DB:C5:C8:27:A6:A5:56:5B:98
X509v3 Authority Key Identifier:
keyid:DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:d3:7b:da:0e:cc:ff:e5:2c:2c:fe:56:c3:9d:c6:82:ab:e8:
03:e4:5a:82:30:7b:a4:70:20:78:48:9d:12:61:62:b1:83:a0:
31:fb:f6:aa:ed:6b:da:cb:61:21:4b:c8:99:c6:d2:1f:90:eb:
c2:01:4b:96:c0:3c:08:fb:ad:2b:37:bc:67:05:de:e1:72:c8:
e0:ed:81:e0:3e:eb:50:8c:30:20:37:a2:84:69:6a:c7:14:ca:
22:06:6d:62:9f:df:e0:4f:93:88:39:74:45:44:a1:28:a9:23:
8b:a8:03:39:58:6b:c1:e7:16:59:81:87:d3:a7:68:4d:99:2d:
25:e0:12:be:64:e6:98:83:e6:b3:7f:67:e3:53:6f:4c:09:91:
38:c8:2f:18:55:ff:07:f3:4b:3a:c9:96:ce:a3:a4:09:37:8c:
41:da:cc:66:4b:c3:e4:64:31:7f:d6:2e:33:d5:0b:ee:ca:37:
7d:48:7f:7f:cd:8d:85:8f:88:93:fb:67:b7:54:6b:f0:ed:ac:
c2:cd:90:57:96:20:25:32:fd:8b:90:e5:a4:66:a8:dc:65:f2:
e3:21:24:38:3e:eb:f1:ad:20:5d:1b:9e:2d:75:91:f3:31:fe:
5f:af:68:80:f1:f9:99:ee:e3:4f:60:76:7c:cd:d0:8f:c6:67:
40:d8:16:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 13:23:15 2026 by rpki-client