Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: K0mE3/Iu3dS9tSo2CT0Z02zLQgup7pJcBV3iMr6H0O4=
Subject key identifier: 8E:F7:CD:98:57:D3:CB:A1:C7:99:C6:EF:B8:BC:3E:4B:1C:76:A6:FA
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 019F1830673FEC593A75133C5E53CC2AEB1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 07C9
Signing time: Tue 30 Jun 2026 11:00:52 +0000
Manifest this update: Tue 30 Jun 2026 11:00:52 +0000
Manifest next update: Wed 01 Jul 2026 11:00:52 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: eIRvNGWDejPLxEG6XcVS64VHYjRG7RpcbhAvWsTOYEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:67:3f:ec:59:3a:75:13:3c:5e:53:cc:2a:eb:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Jun 30 11:00:52 2026 GMT
Not After : Jul 1 11:00:52 2026 GMT
Subject: CN=8ef7cd9857d3cba1c799c6efb8bc3e4b1c76a6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3b:15:ad:bd:76:7e:6f:cd:da:3c:f1:80:4c:
53:88:a5:50:51:2a:fb:f4:ad:3c:b9:dc:a7:1a:2a:
2f:fa:76:74:e1:a2:a7:50:75:31:ec:a7:45:68:5e:
b5:a6:00:91:7b:8a:fa:0b:c0:25:78:bd:68:af:04:
74:78:4f:dc:13:1a:6d:d0:3c:4d:4f:e5:54:c4:b9:
f6:3e:21:d6:aa:65:8a:28:09:79:dd:1f:43:45:b2:
23:8c:d6:44:17:75:91:32:22:41:b7:e2:3c:dd:cc:
5e:e6:fe:27:84:07:62:c4:fa:7c:27:96:26:5a:80:
28:ac:6e:5c:22:48:95:6e:ef:d8:02:2c:b0:89:12:
c9:76:c1:60:2b:17:8c:01:6c:95:b9:f8:1c:20:49:
bd:30:cd:bc:47:92:9d:b1:41:fa:27:93:3e:c2:45:
4e:81:57:cf:63:d1:41:e4:30:ed:23:63:6b:4b:8b:
fd:b5:c4:c7:ca:d3:7b:47:15:83:31:e2:81:2a:d3:
47:69:05:3b:65:e8:20:87:f7:1f:e7:ab:6d:c3:bc:
ec:fc:07:09:b0:e2:71:01:ff:57:bd:bf:cf:f4:5d:
ee:45:9f:a8:e3:6a:cd:39:c2:a6:3c:2a:c8:ca:ba:
a6:76:c0:4b:ee:b8:60:82:22:b1:c9:e0:4b:e4:9b:
fb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F7:CD:98:57:D3:CB:A1:C7:99:C6:EF:B8:BC:3E:4B:1C:76:A6:FA
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:9a:2e:24:16:18:d6:7e:bb:a0:22:90:c8:fd:49:37:12:71:
d0:15:a0:50:e9:c0:ae:a4:5b:35:25:ae:41:8f:a6:f8:f6:61:
9d:bf:0d:01:7a:38:75:3f:4c:41:6d:8e:3f:2f:e5:d9:b5:b9:
18:27:d9:6c:f5:2c:fd:03:e2:b6:81:47:2e:81:51:f1:7e:a2:
71:96:78:57:1b:54:17:64:b6:0d:c7:6b:de:b2:7a:24:05:93:
90:9a:60:2b:92:23:cc:cb:c8:43:54:15:f4:7a:e3:da:c6:37:
41:0a:94:bd:aa:78:04:e1:da:10:2c:cb:f5:e5:34:fa:1f:03:
e6:da:a9:0c:09:62:61:fa:1e:1d:4f:bd:38:91:39:0f:c6:43:
8a:bb:12:ad:be:00:61:c2:5f:25:be:4e:d0:e3:84:ee:04:21:
38:36:ea:2f:9f:18:75:b5:f7:75:a3:57:aa:f8:37:1d:81:02:
05:38:f4:a1:c6:ac:24:4a:8a:29:22:3b:c5:cc:a5:3c:d9:90:
bf:01:83:c0:23:aa:f9:2e:52:e9:7c:96:9e:3f:26:bb:7d:62:
3b:05:01:fc:cb:91:25:32:bd:e9:db:a8:83:ad:12:ef:3a:d7:
e7:ac:11:a9:0e:6a:c5:ce:d8:b3:85:6e:3c:3b:7b:0a:fe:09:
f6:d3:48:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:55 2026 by rpki-client