Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: tdq8Sonl0qM5BBbLaZgy/pEXGrw7Bx+H4GZrENPZDMU=
Subject key identifier: 20:32:96:64:FC:E9:C9:1D:7F:CC:92:43:5E:5E:43:B1:A7:4D:57:72
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 019F197A649BA3E3D480918E650A1AA46B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 1812
Signing time: Tue 30 Jun 2026 17:01:19 +0000
Manifest this update: Tue 30 Jun 2026 17:01:19 +0000
Manifest next update: Wed 01 Jul 2026 17:01:19 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: AUUbtmWLO+O0TKOP8yfmxtvmz7wQSXZ2dbYrCLvoLso=)
2: LbDAcjZRmfBvnYit-qN-3rlzTKY.roa (hash: +vYoAsDEQG/i2Ib8tFZBcU6HYqtLxdIh9g5RpOOfFc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:64:9b:a3:e3:d4:80:91:8e:65:0a:1a:a4:6b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Jun 30 17:01:19 2026 GMT
Not After : Jul 1 17:01:19 2026 GMT
Subject: CN=20329664fce9c91d7fcc92435e5e43b1a74d5772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:f7:52:61:57:14:2f:cd:7f:32:fa:a2:ce:
4d:05:cd:f2:c4:99:68:6c:33:3f:10:7f:42:b6:1c:
19:13:d1:8b:5d:75:12:f0:cd:ad:ea:e5:1f:24:8b:
a0:b2:25:f7:8e:85:b4:23:27:c4:ac:ff:f4:dd:85:
50:fd:58:a3:23:df:53:e1:a0:54:d6:81:78:38:42:
50:05:f2:dc:c6:6a:db:83:1d:de:96:00:87:24:c4:
0a:20:48:45:e6:42:77:9d:31:95:93:bb:34:fd:d7:
22:32:87:26:c7:17:d2:33:ad:3a:64:87:61:4f:e0:
5f:5a:81:ce:24:e2:10:42:50:3b:e9:f3:1f:06:94:
e7:e4:8e:57:11:51:53:2b:77:dd:a0:6d:29:08:49:
41:38:82:71:45:d5:ff:75:89:b4:3c:8e:2e:f3:5a:
74:c5:61:11:b3:d0:d5:71:b1:5b:2b:40:e9:02:59:
4e:11:5f:35:f7:5b:8f:aa:12:04:58:07:e2:ef:fa:
c9:db:e1:05:c0:7b:57:e0:dc:41:a4:77:66:eb:7a:
cf:0c:fb:09:30:bf:4c:8b:18:a5:9a:88:c4:1d:e5:
11:21:b0:1f:78:cb:cf:19:79:c5:49:be:a8:63:5c:
da:50:46:5b:77:c0:20:9c:2d:aa:97:9d:35:43:a4:
ef:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:32:96:64:FC:E9:C9:1D:7F:CC:92:43:5E:5E:43:B1:A7:4D:57:72
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:f8:45:e5:77:05:95:1b:ad:47:fd:39:05:54:e7:93:04:6a:
e7:21:32:b9:dd:bf:5b:81:33:7a:fb:a3:26:4e:db:f0:9b:cf:
1e:47:ae:ff:31:65:b5:c8:9b:a9:da:bc:1f:97:91:0f:48:c2:
39:a5:cb:ae:cc:34:8f:16:1f:82:94:2d:a8:a8:ff:30:51:ff:
ae:61:a2:01:9b:0a:0d:4b:01:78:7c:12:22:95:2f:9a:64:79:
12:a2:3b:5c:8c:7a:5f:71:20:e5:8a:e9:eb:25:66:2a:fe:31:
a8:45:cc:89:27:4d:b2:76:c9:39:41:f8:2f:d5:2c:59:26:6e:
6e:0c:66:ca:ab:6f:eb:d0:73:74:0e:42:08:4a:57:ef:a5:e9:
5d:32:2a:12:78:93:c4:a5:18:5e:ea:5b:65:25:5c:f4:2d:7e:
83:14:2b:c6:e4:bf:8f:bf:20:40:71:53:53:36:5f:6b:0b:1b:
c6:c6:e6:88:df:1a:0c:4a:cf:fd:b3:9f:67:ed:c1:ba:b3:85:
b5:03:af:6f:3c:1d:0f:e1:ee:62:f4:1c:64:31:da:71:bd:89:
98:58:fa:09:49:23:70:23:fc:1e:3a:76:e2:ce:4e:37:3f:be:
f9:c9:8c:4e:f5:50:72:80:23:7d:5d:e9:4c:81:c6:79:0a:17:
63:3c:83:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:59 2026 by rpki-client