Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: Kz5cEq16PxW1GfmFg0uRbEVvf9brWRW0kHrxs6Y6Lx8=
Subject key identifier: 0E:AD:2E:EF:B2:79:46:65:1B:E9:96:91:CA:48:05:4A:F7:99:57:97
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019E1D228AE22A140944ADD1EDF8CC4E6B43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1613
Signing time: Tue 12 May 2026 17:01:03 +0000
Manifest this update: Tue 12 May 2026 17:01:03 +0000
Manifest next update: Wed 13 May 2026 17:01:03 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: QbUC3ffogPJpfmqgPFoqpCdsUrIvOFIHB7n3StcXrwE=)
2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:8a:e2:2a:14:09:44:ad:d1:ed:f8:cc:4e:6b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: May 12 17:01:03 2026 GMT
Not After : May 13 17:01:03 2026 GMT
Subject: CN=0ead2eefb27946651be99691ca48054af7995797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ed:19:15:1e:ab:9f:18:2a:02:64:1e:de:4a:
e0:ef:06:81:6d:f2:81:c4:b9:4e:aa:36:b2:f1:b7:
ec:d0:72:0e:6f:7f:c3:3a:34:74:0f:9f:68:53:cf:
e4:1d:74:d4:a1:14:e9:4e:a7:4d:35:91:66:94:59:
0c:79:7a:ce:99:09:28:6c:76:2c:66:29:79:fc:23:
2c:98:a0:2b:92:a8:9f:40:c1:00:74:43:ef:98:92:
07:35:1d:59:7f:36:df:98:02:db:be:49:d6:34:b7:
0e:b7:8f:f7:8f:5f:45:04:57:1e:18:84:81:c1:f6:
4d:2f:b4:d9:75:4b:4e:9a:08:67:c2:c7:4f:3f:79:
bd:d2:34:dd:27:68:9e:b0:8c:eb:f7:53:cc:5a:67:
64:82:d2:d3:b4:8a:e3:cb:bd:1b:d0:ad:97:be:2c:
2c:ac:3b:e9:dd:92:70:c8:dc:bd:22:ec:1a:12:7a:
d2:ca:85:2c:fc:f0:b4:4b:ae:69:7c:ec:1c:f3:6e:
03:d9:59:a2:84:d7:43:f9:73:3a:56:e2:b2:52:83:
c7:9c:ce:57:1c:89:e5:c4:6a:ab:01:35:3f:d5:75:
25:90:d3:02:77:5f:89:01:c6:93:78:5b:74:9e:cb:
32:d1:b5:13:38:7f:f3:46:a0:0a:4f:e9:21:43:ce:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AD:2E:EF:B2:79:46:65:1B:E9:96:91:CA:48:05:4A:F7:99:57:97
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c1:5f:fc:74:79:84:b1:f5:12:58:d8:5f:21:cc:e3:75:e5:
9b:95:17:be:a6:d6:24:6a:bb:06:6b:67:fb:59:77:0c:a5:67:
04:75:4c:22:3a:af:00:90:4b:23:c3:40:94:42:f6:30:b4:c7:
cd:5d:26:54:74:2d:27:55:fa:83:78:bb:a7:88:73:60:94:10:
4b:e0:ec:5a:6d:67:7a:be:2c:75:c0:9f:45:ff:c2:1a:22:25:
a4:fb:4e:bf:46:f9:f0:c7:e7:94:ca:2e:08:91:a0:8e:ae:8d:
8c:19:dd:b7:6e:e5:e1:46:ac:c9:cc:9a:c1:01:fa:ae:f7:e0:
76:1d:b4:11:b6:ad:02:b9:13:ed:04:d5:c9:bc:46:63:d8:93:
75:87:c0:07:85:9a:f5:e9:9d:f6:f1:ba:9a:21:8a:53:0b:e8:
ba:ea:cc:aa:0f:54:d0:53:84:10:13:4b:07:08:42:42:98:ec:
68:4d:6d:81:23:22:27:a6:6f:6b:d5:76:ad:85:40:f1:23:8f:
c6:01:a1:3b:cb:14:23:fa:27:47:3f:ec:3d:12:d1:c7:c6:af:
a3:eb:c3:31:92:ad:5f:ab:b7:93:0b:56:41:14:3c:86:c7:75:
37:5c:8a:28:94:ca:ec:79:5e:bb:7d:f3:13:ca:f5:67:cd:d4:
de:5b:5c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:14:28 2026 by rpki-client