Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: StjSHWTnXjL+vgrl3QYcVpJlTWNvTc45t/K2QO82T7k=
Subject key identifier: A6:D4:01:3C:D5:1E:7C:78:B3:02:57:5A:75:E6:79:48:B6:1F:BA:AB
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019E1D908B694E3A086E0D1F9216DE1556E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 1689
Signing time: Tue 12 May 2026 19:01:12 +0000
Manifest this update: Tue 12 May 2026 19:01:12 +0000
Manifest next update: Wed 13 May 2026 19:01:12 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: 2Buvqc7n+ueJGLhm7gDC0RStYvmPfr++gxXi9NeJmp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:8b:69:4e:3a:08:6e:0d:1f:92:16:de:15:56:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: May 12 19:01:12 2026 GMT
Not After : May 13 19:01:12 2026 GMT
Subject: CN=a6d4013cd51e7c78b302575a75e67948b61fbaab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:dc:51:97:cb:d8:b9:4d:0c:3e:c8:25:7f:
38:39:5c:b4:00:d5:f9:04:19:1a:de:c8:9b:a1:29:
7e:1e:cc:c4:f6:59:a5:40:1d:c8:61:8f:d7:3c:93:
6e:e9:a1:7b:1c:d0:12:d0:34:c7:e4:63:50:20:aa:
05:8d:99:02:dd:b8:99:63:ad:f5:82:ed:a1:6f:b6:
49:03:d8:6b:d3:ac:79:92:75:a8:3b:c0:d8:b3:7f:
b9:2f:fe:11:10:a5:fe:59:c9:1f:5b:7b:4e:32:92:
db:c2:6a:06:f2:f5:d4:6f:ba:f8:87:07:ac:14:2f:
16:e2:b4:b8:e9:1a:19:63:9a:75:85:75:43:ef:c3:
fa:78:69:52:d3:ba:c3:e1:a7:dc:c8:b6:b1:61:1c:
c3:25:fe:8a:88:64:fb:5f:db:5d:d0:35:87:db:b6:
db:63:69:d7:aa:a3:d0:ec:f4:11:1b:bf:df:42:94:
21:3d:9c:e2:40:09:df:ee:d6:cc:4e:8d:75:94:59:
27:3b:49:79:32:8e:3d:f3:47:af:67:0a:e1:8a:d0:
0f:92:61:09:42:a0:fc:8c:d9:22:91:de:18:02:aa:
4f:39:a4:f9:1d:bb:6e:8b:1f:9b:50:34:c4:51:e3:
d3:d2:74:e7:53:61:c2:52:9e:6f:32:49:22:50:b9:
ae:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D4:01:3C:D5:1E:7C:78:B3:02:57:5A:75:E6:79:48:B6:1F:BA:AB
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:40:28:d3:da:83:90:f1:ff:3c:e7:da:8b:68:2c:ae:c7:fc:
e2:0b:6f:a9:9d:6e:bf:1b:48:ff:d8:85:53:59:84:42:05:6a:
1f:4b:15:2e:93:dc:8d:62:43:3b:d0:89:6a:13:5f:3b:4e:b6:
e7:33:ed:41:df:2a:b9:e0:f1:ef:2e:15:c8:32:a2:7b:c6:ff:
84:f9:49:ba:20:79:5a:c8:c0:d8:52:3f:a9:76:78:06:bf:21:
6d:00:6b:a5:55:ce:e4:3a:bc:93:64:f4:23:9b:55:35:9a:6e:
64:78:2d:2f:d2:e1:13:7c:6b:00:50:fd:63:2b:22:0e:58:8f:
38:4e:91:4d:50:1c:8e:1d:1c:c4:4b:7f:a7:31:10:ad:d2:24:
86:83:b4:52:56:08:b8:89:71:0f:5d:95:02:60:eb:34:60:08:
4d:43:81:fd:cf:e3:26:61:77:3f:94:da:9b:1e:b2:74:5a:67:
71:fe:a8:78:59:cf:37:07:92:2c:16:33:98:b2:65:5c:6f:11:
83:d9:bc:e0:3d:a5:bf:7e:5b:9e:31:96:01:30:f4:dd:7a:14:
bf:d0:a1:7a:df:35:6f:74:8f:85:5f:0c:84:2e:82:a2:a7:ce:
7c:49:2a:55:de:9c:79:27:d2:cc:26:ab:a7:94:ad:6d:9d:aa:
e9:2a:fe:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:12:17 2026 by rpki-client