Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
File: 2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft (raw, json)
Hash identifier: kZ2+jUAfUu1usjNtGTzohFp9higNA9nIpABbVZryCSA=
Subject key identifier: 60:04:C0:45:60:C5:2A:AE:1F:B9:69:54:BF:76:AC:21:2D:CD:A2:CB
Authority key identifier: D9:08:64:7E:FB:88:21:0F:01:6B:67:56:D3:76:6E:92:95:94:4A:A3
Certificate issuer: /CN=d908647efb88210f016b6756d3766e9295944aa3
Certificate serial: 019D2B4EC8CF0A18D994CB1FDBA98970D9D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
Manifest number: BC
Signing time: Thu 26 Mar 2026 18:01:16 +0000
Manifest this update: Thu 26 Mar 2026 18:01:16 +0000
Manifest next update: Fri 27 Mar 2026 18:01:16 +0000
Files and hashes: 1: 2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl (hash: u3teuBAda9v7yzG+7eFc+b+O/MZl9Oahrl7zLgTu/+Y=)
2: rDV-HF7LJZhsd6a2pYtuqFyF2-0.roa (hash: WTgx+WW8HPCr9gNUjFMSj5I6ouN0hb4HGics98eX288=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:c8:cf:0a:18:d9:94:cb:1f:db:a9:89:70:d9:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908647efb88210f016b6756d3766e9295944aa3
Validity
Not Before: Mar 26 18:01:16 2026 GMT
Not After : Mar 27 18:01:16 2026 GMT
Subject: CN=6004c04560c52aae1fb96954bf76ac212dcda2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fb:43:ba:95:14:f9:99:60:4d:41:9c:33:82:
8b:bc:7a:a0:3b:85:31:86:ec:3d:e5:a8:5e:35:6a:
a2:96:7f:f6:49:e5:59:dd:26:0f:5c:cf:92:6d:e3:
57:07:8f:de:6c:49:6a:82:f3:b0:24:c1:31:cd:7e:
b3:2f:ea:d6:d0:40:69:fb:bd:13:2e:5c:53:c7:1e:
96:d5:46:41:6b:cf:04:ac:f7:f7:9f:36:6a:00:cd:
28:7f:30:2d:6c:cb:a4:97:65:39:06:72:a9:62:bf:
56:e9:b8:a3:5a:ec:de:40:e2:18:d2:0c:14:b4:de:
74:34:8c:3f:a3:0b:ac:96:de:b1:79:ad:34:5d:51:
6b:48:14:04:5d:41:45:07:70:8c:e6:51:11:3a:6c:
7a:c3:c6:3d:a1:81:fe:c4:99:7f:f9:fc:23:b7:b5:
c0:6c:6d:eb:4e:54:db:e7:a3:ef:f0:07:95:6f:2e:
22:d3:d5:a6:4a:fc:04:29:cd:85:6d:88:59:61:d5:
1a:17:1e:3d:91:cd:af:7b:c5:32:65:69:be:d6:f0:
85:75:e2:71:0b:dc:e4:7c:b3:53:dd:5a:aa:37:8d:
0b:50:23:f2:80:34:a6:15:f7:9a:b0:fd:99:f3:34:
25:91:e9:99:9c:3e:05:35:ac:d7:ac:0d:46:d4:67:
b0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:04:C0:45:60:C5:2A:AE:1F:B9:69:54:BF:76:AC:21:2D:CD:A2:CB
X509v3 Authority Key Identifier:
keyid:D9:08:64:7E:FB:88:21:0F:01:6B:67:56:D3:76:6E:92:95:94:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/019d5e-0d5b-4231-bdad-43265ef95d92/1/2QhkfvuIIQ8Ba2dW03ZukpWUSqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:2e:12:e0:5c:fe:24:81:48:1c:38:75:de:e5:60:6d:a3:22:
ef:87:51:1d:6f:38:fa:9d:a3:01:e9:ec:c2:57:96:36:3f:91:
33:c1:59:ed:e4:be:b9:9f:e1:de:79:66:97:d2:38:a4:2a:53:
5f:62:1a:43:f8:c4:a7:f2:33:9f:8a:d6:de:2b:0e:28:44:b0:
cc:81:15:f9:ab:00:79:27:73:d7:6a:16:d4:b8:6f:03:7c:ec:
33:7a:3e:0f:29:67:f8:50:a9:e1:cf:0a:76:20:56:95:90:97:
3e:f4:86:88:55:c7:3b:f6:a0:d9:89:98:c2:c6:4f:87:af:19:
ef:b9:f5:a2:38:2f:36:f2:77:98:f4:eb:8e:a0:f3:80:dd:e6:
3d:5e:4c:63:82:68:87:cb:87:26:01:b6:2e:e6:f4:3f:c6:0c:
e3:16:11:22:18:bf:03:fa:67:e8:0a:aa:1b:72:e0:fb:57:6a:
13:e9:5b:13:0f:cd:fb:b1:54:01:50:5d:e8:f1:5a:3a:c7:56:
45:a7:bf:d9:88:ff:aa:2c:d9:1c:32:10:06:d8:52:86:78:62:
28:7e:e5:13:be:c6:f4:6f:1b:b9:63:28:27:dd:88:d7:59:5f:
b8:d6:91:1e:20:7e:7b:b7:cf:69:c7:8a:86:8f:eb:63:4a:1c:
38:82:45:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rTsjPChjZlMsf26mJcNnWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MDg2NDdlZmI4ODIxMGYwMTZiNjc1NmQzNzY2ZTkyOTU5
NDRhYTMwHhcNMjYwMzI2MTgwMTE2WhcNMjYwMzI3MTgwMTE2WjAzMTEwLwYDVQQD
Eyg2MDA0YzA0NTYwYzUyYWFlMWZiOTY5NTRiZjc2YWMyMTJkY2RhMmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPtDupUU+ZlgTUGcM4KLvHqgO4Ux
huw95aheNWqiln/2SeVZ3SYPXM+SbeNXB4/ebElqgvOwJMExzX6zL+rW0EBp+70T
LlxTxx6W1UZBa88ErPf3nzZqAM0ofzAtbMukl2U5BnKpYr9W6bijWuzeQOIY0gwU
tN50NIw/owuslt6xea00XVFrSBQEXUFFB3CM5lEROmx6w8Y9oYH+xJl/+fwjt7XA
bG3rTlTb56Pv8AeVby4i09WmSvwEKc2FbYhZYdUaFx49kc2ve8UyZWm+1vCFdeJx
C9zkfLNT3VqqN40LUCPygDSmFfeasP2Z8zQlkemZnD4FNazXrA1G1GewAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAEwEVgxSquH7lpVL92rCEtzaLLMB8GA1UdIwQY
MBaAFNkIZH77iCEPAWtnVtN2bpKVlEqjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlFoa2Z2dUlJUThCYTJkVzAzWnVrcFdVU3FNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8wMTlkNWUtMGQ1Yi00MjMxLWJkYWQt
NDMyNjVlZjk1ZDkyLzEvMlFoa2Z2dUlJUThCYTJkVzAzWnVrcFdVU3FNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8wMTlkNWUtMGQ1Yi00MjMxLWJkYWQtNDMyNjVlZjk1ZDky
LzEvMlFoa2Z2dUlJUThCYTJkVzAzWnVrcFdVU3FNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmS4S4Fz+
JIFIHDh13uVgbaMi74dRHW84+p2jAenswleWNj+RM8FZ7eS+uZ/h3nlml9I4pCpT
X2IaQ/jEp/Izn4rW3isOKESwzIEV+asAeSdz12oW1LhvA3zsM3o+Dyln+FCp4c8K
diBWlZCXPvSGiFXHO/ag2YmYwsZPh68Z77n1ojgvNvJ3mPTrjqDzgN3mPV5MY4Jo
h8uHJgG2Lub0P8YM4xYRIhi/A/pn6AqqG3Lg+1dqE+lbEw/N+7FUAVBd6PFaOsdW
Rae/2Yj/qizZHDIQBthShnhiKH7lE77G9G8buWMoJ92I11lfuNaRHiB+e7fPaceK
ho/rY0ocOIJF1w==
-----END CERTIFICATE-----
Generated at Fri Mar 27 01:33:35 2026 by rpki-client