Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
File: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft (raw, json)
Hash identifier: /YOFrq+Z7keW1DWe9Fs7JZehE/BN7AHG9iYdtoaOumI=
Subject key identifier: E8:A2:A0:FC:D8:EE:E6:52:E1:57:A0:45:D8:ED:E3:EE:F3:50:EE:84
Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Certificate serial: 019DB133AD3B5492A8CAB378F5C511DBE86D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
Manifest number: 17BC
Signing time: Tue 21 Apr 2026 18:00:47 +0000
Manifest this update: Tue 21 Apr 2026 18:00:47 +0000
Manifest next update: Wed 22 Apr 2026 18:00:47 +0000
Files and hashes: 1: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl (hash: 6laUHQjnCw2v4SfAmE+FXBYoLbfB79K22+nhwRGLbd0=)
2: NkvybtyieeqcXDjHG9gHl_XAsMQ.roa (hash: 00Ye2JJrLJ1zMVpdd8DivfPeXqrw+enAIn41E191EYk=)
3: WYvB7z2E3X738_d9cgopMgPJk5I.roa (hash: u5beh3Tb2byL/rGs3HaRRLRbrFXqSXUDof4rFMurirU=)
4: gLFfimILtrvNmLCqHHnLyf5HeDQ.roa (hash: Au61gdy9n9KoeOHWn+nWGKr6a14kosDrZi3ajbtwzn8=)
5: zNk-M0VG943BmxksL9suzBVm4vQ.roa (hash: UUWX1bpaoMZzwXQx5EXEi0bI53+v8tYUcjIfVRmZCYY=)
6: znK95_JFl0pNvLfj6OXmewYJypk.roa (hash: KuT2Fb0+p87DW0EC5Dzu5qZfHaXjG7VpnPReGDVhA8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:33:ad:3b:54:92:a8:ca:b3:78:f5:c5:11:db:e8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Validity
Not Before: Apr 21 18:00:47 2026 GMT
Not After : Apr 22 18:00:47 2026 GMT
Subject: CN=e8a2a0fcd8eee652e157a045d8ede3eef350ee84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ee:6b:27:a2:16:62:39:5c:e2:fd:40:71:c0:
4f:56:28:bf:e5:c0:86:8a:be:43:fd:59:19:ed:6f:
0c:88:59:ea:9c:37:e6:65:4b:40:62:07:84:52:b2:
8e:a4:03:80:83:61:19:6c:76:7e:6c:ea:d2:a7:4b:
21:d0:ea:28:0b:ee:fa:25:c6:a2:e0:37:b6:a4:4c:
4b:de:17:7c:40:93:f8:f0:3a:64:4c:c8:58:51:f0:
75:0d:12:09:dc:41:ac:e5:fe:eb:15:83:fc:1e:6d:
2e:a4:0c:4f:e1:71:1f:12:6e:70:78:38:49:54:2c:
2f:5f:2c:a3:ac:69:18:a1:8b:50:5a:7a:9e:61:29:
0a:82:22:ca:bd:86:88:a1:12:ce:34:cc:d7:c4:3d:
08:e1:21:bc:b6:18:6c:75:6f:7b:d5:3d:f8:8d:94:
21:a9:70:51:4c:19:c5:31:5d:21:42:fb:58:fa:0c:
30:8f:dc:d9:1a:b0:14:7d:18:71:50:cb:8f:55:88:
ff:5b:c3:0e:3c:87:42:18:6a:b0:f7:d2:9f:b0:c5:
b5:bc:4e:54:17:df:36:4e:a4:ba:b5:af:fd:d3:2a:
89:e7:39:0f:26:cb:f3:7e:03:78:23:45:3f:3b:bb:
7b:ad:9c:ab:60:f8:64:1c:b6:22:2b:47:a8:bf:96:
33:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A2:A0:FC:D8:EE:E6:52:E1:57:A0:45:D8:ED:E3:EE:F3:50:EE:84
X509v3 Authority Key Identifier:
keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:7f:c7:cb:5a:81:ff:67:68:95:2c:6f:3f:79:bf:b9:9c:f3:
72:60:12:90:3f:1a:b4:76:04:3e:c5:a0:d5:97:74:63:31:e4:
f8:6f:92:15:fe:29:ee:50:4f:e1:f0:05:1a:c4:5e:9c:67:13:
8f:41:ac:70:6f:4f:14:2e:70:ba:71:4c:c5:04:cf:59:f0:52:
1e:45:f9:85:09:41:60:be:c7:5a:3c:3b:33:bf:3c:3f:29:d7:
01:0b:e6:a5:b1:65:f1:29:71:68:6b:92:e1:48:53:d2:5f:e4:
2f:12:d3:78:c8:ef:d1:bd:0f:78:2f:2a:8e:40:dd:60:36:af:
75:27:d0:cc:b9:d8:1c:40:d6:40:cb:26:5a:74:b9:87:77:fe:
f6:6d:a9:0a:1f:d2:9a:ce:31:17:01:88:37:6f:84:bf:1c:3f:
1d:83:26:f9:c9:04:d4:97:07:25:8e:d8:21:e2:c5:dc:9d:6c:
c9:8d:d3:89:c6:68:19:80:9b:8c:df:58:9f:e9:10:8b:e8:dd:
8b:9d:d7:5e:7e:39:91:51:8a:26:b5:9e:e0:d4:f0:8b:45:3d:
31:3a:88:03:16:f5:b4:3d:1e:43:45:25:f1:07:54:fc:56:e5:
9c:e7:75:2e:ac:65:5c:df:ba:f6:ea:56:a3:53:c2:38:0d:2f:
d6:dc:a5:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 04:09:32 2026 by rpki-client