Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 52CfSGhbyytYivqR9gFoVhL1fd4jaMrM5GVQ9k6BIts=
Subject key identifier: A6:A6:CB:81:E3:9B:F1:69:7A:00:72:55:47:38:A2:14:0A:32:03:AA
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019F18D6AFDE903E3DF9AE148145195608EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1556
Signing time: Tue 30 Jun 2026 14:02:30 +0000
Manifest this update: Tue 30 Jun 2026 14:02:30 +0000
Manifest next update: Wed 01 Jul 2026 14:02:30 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: jA2TR7pNoSPComL4sGFe+fAS3HwoNHfWsDguO1iY27Q=)
2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:af:de:90:3e:3d:f9:ae:14:81:45:19:56:08:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 30 14:02:30 2026 GMT
Not After : Jul 1 14:02:30 2026 GMT
Subject: CN=a6a6cb81e39bf1697a0072554738a2140a3203aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4c:ad:eb:84:4f:d5:45:f7:b5:52:c7:34:84:
57:0b:cf:48:0e:c3:42:3c:c8:26:05:29:93:14:d7:
b5:08:90:3e:4c:89:d2:db:c3:96:bd:45:f7:84:44:
a0:dc:cf:5f:fc:0c:b8:b8:5f:5f:24:dc:88:64:73:
5c:08:5a:d8:be:2c:53:93:ad:68:30:9b:56:94:7a:
99:d2:b7:62:a9:59:4a:2a:8a:ca:9c:e4:aa:02:5d:
38:16:ca:2e:99:93:b0:07:b9:6c:35:2c:39:22:17:
cd:52:78:5c:38:eb:ef:16:7a:4d:92:7c:22:f6:91:
4c:92:80:bb:51:e2:4e:88:b1:7a:94:4e:7a:fa:0a:
9c:10:92:33:bb:2a:e5:09:6f:32:d4:91:d0:59:69:
65:23:61:83:ae:3e:4b:7f:97:a8:4a:45:f9:72:59:
6f:05:74:35:c7:2b:46:91:50:27:4e:cf:ac:3f:e9:
99:2f:c0:f2:61:56:e7:10:82:22:ca:91:cf:a3:7f:
f8:0e:2c:d7:0f:22:f4:88:9d:6b:66:77:16:04:5b:
c4:d1:06:a1:b5:7b:be:69:48:06:15:78:7f:a5:0d:
f3:f4:cb:01:2e:4a:e7:83:b1:d4:5c:60:b0:36:9d:
02:04:ea:ee:63:ee:6d:6f:18:90:59:e8:7f:80:2f:
08:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A6:CB:81:E3:9B:F1:69:7A:00:72:55:47:38:A2:14:0A:32:03:AA
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:20:a7:64:30:e1:66:92:4e:a5:33:c5:3c:0e:2e:db:1e:9a:
6c:50:8d:1c:47:c4:fc:8f:bd:35:cb:e7:20:9e:c7:d9:89:2a:
d1:37:af:9f:d2:5e:f4:23:92:2f:15:f2:d6:9d:65:15:89:12:
fc:c5:1d:1b:79:5d:c1:2c:0b:61:d9:df:71:2c:bf:9d:02:13:
bc:3d:f3:55:b3:0f:85:80:eb:2f:3e:9c:14:1c:40:fe:bd:78:
9a:a2:06:12:90:2a:c3:2b:05:e9:9f:19:b5:ee:a0:27:25:5e:
39:f7:99:c8:21:19:ff:47:37:37:cc:f1:5e:6b:b1:d7:89:44:
6c:c6:73:8f:79:5c:6d:4a:79:6c:d1:d2:f8:f0:10:87:c9:67:
5c:b8:3f:26:75:39:38:47:c3:f8:36:1e:c2:3e:bc:03:2a:87:
36:b8:5b:5f:40:63:d5:6b:b9:53:e0:93:2a:f8:c4:4c:6b:0d:
51:fc:c5:4b:a3:a6:95:84:0c:93:43:c1:81:40:80:bc:68:15:
a4:dd:bf:bc:4c:66:e3:fa:3d:a8:f5:f8:43:51:db:26:e6:2a:
71:b7:d8:12:c7:90:f1:01:25:81:55:11:5b:f3:0f:95:d3:71:
08:3a:7c:fa:40:df:52:7a:81:fa:fe:83:78:c3:c0:a2:26:50:
7b:01:20:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:20:03 2026 by rpki-client