Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: f9FpbSmO5uNT03bO3Hhq0tEm9IoCZV9jL5uyOd85AZM=
Subject key identifier: 76:46:2B:0D:C7:D3:E1:2B:B7:BD:F2:A0:E3:7A:B5:D0:E0:94:A8:11
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019D27DF4FE2FD07A706CBE07DAA8240A62C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1594
Signing time: Thu 26 Mar 2026 02:00:39 +0000
Manifest this update: Thu 26 Mar 2026 02:00:39 +0000
Manifest next update: Fri 27 Mar 2026 02:00:39 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: SOmV5GyjJ4QVrzcEm/NFMq9SRdYKeE+Gr50sO3eVpns=)
2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:4f:e2:fd:07:a7:06:cb:e0:7d:aa:82:40:a6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Mar 26 02:00:39 2026 GMT
Not After : Mar 27 02:00:39 2026 GMT
Subject: CN=76462b0dc7d3e12bb7bdf2a0e37ab5d0e094a811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:27:40:c2:a9:96:58:30:8c:5a:98:a1:b1:c7:
09:1c:a5:09:2a:79:eb:58:2d:5a:00:98:7b:be:bc:
d1:28:33:d6:eb:b8:73:9d:dc:b9:e6:1a:7e:90:32:
f5:fb:ef:aa:72:9f:e8:ce:54:11:52:70:69:96:db:
82:d0:e4:5c:7d:e5:f0:de:24:a3:34:74:f6:d1:d5:
de:df:cb:26:f6:9a:e9:12:ea:04:26:d6:53:41:17:
51:58:f1:f8:c1:6e:3f:fe:0d:c9:46:b5:52:c6:dc:
5d:61:31:18:00:60:f4:6d:be:b3:cd:e7:d4:c0:00:
43:39:68:48:61:5c:53:76:8e:0d:4f:33:a2:73:55:
4e:88:e0:0e:f6:58:e4:fb:19:ac:47:17:25:14:74:
a0:08:4d:d2:6a:1e:59:a0:68:38:16:75:6f:04:17:
46:de:10:0b:31:67:e6:ca:b5:4d:99:51:47:15:82:
72:62:bb:18:5e:22:52:b8:bd:6e:b1:b4:25:92:c8:
99:99:96:0e:14:f9:56:a0:65:ff:16:ef:79:0a:99:
ff:fb:f3:a4:f2:6e:6e:39:cf:bd:90:9b:0b:22:bb:
25:11:51:ca:a1:5b:50:0e:6b:a8:db:b4:13:53:84:
7a:86:b8:c0:ae:7c:7c:91:00:41:cf:30:09:b0:b6:
f6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:46:2B:0D:C7:D3:E1:2B:B7:BD:F2:A0:E3:7A:B5:D0:E0:94:A8:11
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:ee:be:ac:d2:8b:d8:c2:5a:80:a3:d2:09:a1:51:a2:5b:df:
27:ce:5c:42:98:2f:47:a7:7e:3c:29:db:be:bc:dc:d0:d0:42:
45:84:56:f1:9a:2b:65:62:35:52:77:9c:90:81:d7:a8:3c:1a:
07:a6:f6:0f:ad:9e:48:a5:5a:60:8b:2b:1b:e4:dc:8c:8b:db:
a1:68:b9:d5:8c:57:5a:9a:83:c7:b7:4f:05:f4:4a:85:da:93:
31:79:aa:68:ae:b1:43:07:db:ca:01:f0:b5:15:6c:b0:e3:1d:
64:90:5f:e1:87:c9:c0:f1:ef:22:14:bb:21:8a:33:33:0e:3b:
c6:7c:6b:b5:98:06:03:7c:e4:f8:10:80:ef:7f:b8:9d:aa:70:
4f:ab:d8:6a:c3:61:aa:f3:5e:94:67:aa:75:dd:79:ac:1d:0a:
ad:52:5a:f4:78:a0:18:86:6b:f6:dc:53:5e:18:9d:c3:84:67:
e5:28:b9:e9:0d:72:5c:bf:2c:f2:50:4c:dc:34:d1:af:dd:a8:
4b:b7:7a:43:bd:59:aa:95:2b:58:9d:ae:5f:36:76:ae:82:54:
50:74:55:32:02:3a:e3:75:3a:7b:71:df:2b:90:09:8f:e8:b6:
7a:93:bc:a8:20:39:f1:97:71:46:ee:1a:a1:88:de:a5:1b:ef:
a0:2a:bb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:22:08 2026 by rpki-client