Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: 1e8ROKRtToYM0gh0F7X0dwExvOSjFCstfNdOggI7OxM=
Subject key identifier: EA:B6:1F:C9:29:C3:2E:07:00:4D:90:A9:EB:BC:B8:D5:64:89:BE:3A
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 019D2928F0AFFA05897B45F68031E4770341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 1711
Signing time: Thu 26 Mar 2026 08:00:41 +0000
Manifest this update: Thu 26 Mar 2026 08:00:41 +0000
Manifest next update: Fri 27 Mar 2026 08:00:41 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: 1kGrTQVLagJG1NjCD7iFzO+lZ+eREqUwQn1D0sYMFSk=)
2: LbDAcjZRmfBvnYit-qN-3rlzTKY.roa (hash: +vYoAsDEQG/i2Ib8tFZBcU6HYqtLxdIh9g5RpOOfFc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:28:f0:af:fa:05:89:7b:45:f6:80:31:e4:77:03:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Mar 26 08:00:41 2026 GMT
Not After : Mar 27 08:00:41 2026 GMT
Subject: CN=eab61fc929c32e07004d90a9ebbcb8d56489be3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:fb:8b:cf:22:71:c9:68:37:15:82:1c:d1:
24:f7:d5:51:10:cc:48:a5:1b:b5:d2:32:f6:0d:e9:
f0:56:2b:f6:3d:c8:93:b8:0e:68:bb:98:cf:b0:3c:
3c:10:4c:c0:73:11:3b:4c:a1:92:7b:5f:f6:ca:af:
c3:bf:d3:9f:24:30:cf:21:94:34:d0:90:99:b3:92:
ce:36:69:02:25:b5:e2:ab:2d:be:47:b9:b4:e9:b4:
90:ac:97:49:4d:8c:25:53:cb:9b:e9:ab:69:d2:61:
a4:75:6c:15:93:e6:fc:f3:f1:09:e0:de:55:c5:7c:
23:3f:de:81:2a:b9:95:0f:19:3f:c7:64:03:68:9a:
62:dd:34:85:cc:cc:74:d9:ae:98:1b:41:54:08:c1:
91:36:c7:e6:35:3e:a5:02:3c:5b:01:70:11:bf:ff:
d8:5d:8e:f8:f0:4f:ed:e6:73:da:78:68:20:56:91:
bf:4b:0c:c3:cc:0f:e9:12:56:bb:27:16:81:18:05:
85:bb:0c:83:0b:2a:3f:d3:5c:50:33:04:46:59:d4:
c4:b4:24:ab:e4:17:09:8b:19:7a:e4:86:72:67:70:
c0:9a:8b:3f:a1:dc:82:d5:e8:a5:71:b2:0b:3f:9d:
5b:57:a0:88:db:c3:fd:9b:1c:d4:e7:f7:b6:95:d6:
82:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B6:1F:C9:29:C3:2E:07:00:4D:90:A9:EB:BC:B8:D5:64:89:BE:3A
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:d4:75:5a:e7:d2:5a:4f:d0:60:79:32:7e:7e:50:31:43:9c:
7b:cf:0b:ae:ce:c7:22:d5:f2:0b:dc:0e:90:09:66:0b:27:a8:
5e:ed:6e:bb:77:2a:6a:83:0e:5c:9e:00:0e:d2:0e:f7:76:aa:
d4:58:72:15:8e:21:3a:4b:61:08:c2:7c:92:52:17:32:82:4c:
9a:4b:82:fc:c5:14:2c:b0:22:c8:f1:88:71:5a:38:a3:86:69:
7c:6e:45:a3:97:b2:bf:21:26:8d:06:25:0f:43:1c:51:d5:75:
b4:b2:4b:c1:e5:5b:f5:c4:7b:2c:ff:4f:80:64:4c:46:b6:17:
08:d0:c5:f2:de:e1:35:74:c7:b4:f6:6e:ad:d2:e9:d3:48:fc:
49:f9:8a:09:d3:c8:74:fe:b5:54:74:d0:4c:a0:93:98:fe:96:
6b:9b:d5:53:0d:09:b3:d2:06:d1:a8:22:59:d5:6a:c0:1e:00:
0d:a1:ec:a7:56:3c:46:ac:32:e9:f9:b0:bb:17:5e:20:15:bb:
26:e0:da:76:89:68:55:a9:31:06:46:f5:c7:e7:21:9b:d4:48:
7b:a5:70:37:73:5a:68:98:ef:45:28:2c:2f:dc:92:95:b0:ef:
a3:92:7b:7b:97:34:91:bc:23:60:de:82:06:5d:7e:cd:ad:7b:
99:0c:6a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:02:10 2026 by rpki-client