Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json)
Hash identifier: wkQlPThjxQ+giVk9WVZL0YOyA/svNUUEQdsNac4unoc=
Subject key identifier: 54:2C:0E:E8:80:65:CF:CC:2A:02:DD:94:9C:C1:85:8F:67:FD:C2:27
Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c
Certificate serial: 019D265F27753F115915635C4F9FBD64A006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
Manifest number: 030E
Signing time: Wed 25 Mar 2026 19:01:03 +0000
Manifest this update: Wed 25 Mar 2026 19:01:03 +0000
Manifest next update: Thu 26 Mar 2026 19:01:03 +0000
Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: 9wbCpMiup18Zpd2qZFuSpN2A1wGUxs2s7ctX6PvRRro=)
2: qIEvRyug51NtPOqrvZlLTZ5-EIQ.roa (hash: BsW/+9betY20XfYjkexlN+8vCvy84YAaJnRdNAcmTYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:27:75:3f:11:59:15:63:5c:4f:9f:bd:64:a0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db05360e9873825f75d671daf1624a52e985390c
Validity
Not Before: Mar 25 19:01:03 2026 GMT
Not After : Mar 26 19:01:03 2026 GMT
Subject: CN=542c0ee88065cfcc2a02dd949cc1858f67fdc227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:68:d0:be:2a:b9:e5:c3:a7:39:62:4c:9f:
8e:94:45:08:79:4e:4d:55:9d:96:a8:1d:2e:a6:c5:
be:06:cf:f8:c3:8a:ae:47:eb:7f:70:a7:89:e2:69:
fb:55:9d:4d:c8:32:7b:f7:78:df:dc:66:ed:bc:cf:
0d:24:e5:2a:81:a3:54:b3:a0:73:92:39:65:5c:d3:
90:36:20:ac:94:b8:e2:bb:f4:69:7f:de:9e:3b:19:
76:a9:e9:28:ee:f5:8a:c8:ad:70:e3:b6:29:a2:2e:
78:8e:80:b5:67:b5:d3:d7:47:a2:e5:66:de:49:da:
2b:0b:26:c2:29:94:30:b9:22:ab:61:90:1b:e0:5b:
b4:9b:bf:48:68:47:12:19:2c:07:c4:0b:29:76:f7:
7d:7f:c2:25:17:5d:66:10:da:4b:c2:ab:4b:db:d9:
31:1e:f2:fd:0a:62:b9:4a:52:e3:14:11:dd:1b:29:
ad:49:cd:c2:1e:94:5c:5a:b4:f4:69:32:eb:23:e4:
07:9d:4a:aa:c2:2d:f0:c2:d7:3f:8c:ce:b3:87:17:
98:74:74:e5:08:5e:2c:1e:58:8b:16:0c:6a:97:d5:
a1:c2:01:c3:cc:09:c7:4f:0e:7d:0f:5e:c7:7c:ea:
bf:bb:c1:1e:2a:c9:03:4c:d8:f1:68:0f:b1:9b:66:
d3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2C:0E:E8:80:65:CF:CC:2A:02:DD:94:9C:C1:85:8F:67:FD:C2:27
X509v3 Authority Key Identifier:
keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a1:3f:f3:ab:01:6e:89:3d:22:a0:2b:d2:07:67:0e:4e:83:
eb:b5:08:39:27:be:1c:e1:68:6f:36:bd:c5:25:a0:f3:8d:49:
99:6b:97:d4:9e:07:b5:da:3a:4c:7d:43:aa:50:70:72:7d:b3:
78:00:ff:b5:22:7a:be:26:cf:f2:6a:b9:c5:3b:a2:a3:6c:d3:
e5:a7:57:28:b0:48:19:7c:ba:0c:45:a8:d7:6f:15:a4:6d:5b:
5d:92:02:82:d9:b1:6d:c5:6c:f6:cb:55:97:50:55:c8:c9:d8:
17:2b:31:10:7e:22:95:fa:17:42:b5:8f:eb:c9:65:93:af:a7:
41:98:01:1a:5f:8b:1a:ca:b8:a1:aa:35:85:77:3c:07:a6:ce:
c4:93:48:13:90:95:16:48:59:39:2c:ee:95:30:86:9b:01:6d:
9c:b7:3b:82:af:be:d5:49:db:13:86:ef:1c:73:20:2e:74:18:
99:11:e6:e8:36:83:0c:f7:41:05:ae:f3:0b:0f:c9:fa:c7:85:
3b:d4:d9:8c:ba:0c:24:c1:a6:62:51:29:8f:af:22:b1:ad:e7:
a1:3e:01:af:04:09:01:3e:69:c5:c6:3a:2f:69:13:57:2b:9d:
94:96:0c:07:56:b3:c2:6a:74:0e:af:f5:52:36:98:a4:17:05:
f0:5b:88:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:58 2026 by rpki-client