Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: RokWh/oKn8YZLxsrbKfVbcMG2ogwd/+1dtw68FjGujE=
Subject key identifier: 29:69:83:3C:A2:06:B3:9D:B2:CF:66:7F:E1:A3:CB:25:B6:D3:1C:4D
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 019D389C4D09EDD4C0085A48ECD525305FB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 1719
Signing time: Sun 29 Mar 2026 08:01:00 +0000
Manifest this update: Sun 29 Mar 2026 08:01:00 +0000
Manifest next update: Mon 30 Mar 2026 08:01:00 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: ls1Ypv5BhbAPUPV7LhNFkbTN2MQ0GJO0U8jZ9lkFOMM=)
2: LbDAcjZRmfBvnYit-qN-3rlzTKY.roa (hash: +vYoAsDEQG/i2Ib8tFZBcU6HYqtLxdIh9g5RpOOfFc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:4d:09:ed:d4:c0:08:5a:48:ec:d5:25:30:5f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Mar 29 08:01:00 2026 GMT
Not After : Mar 30 08:01:00 2026 GMT
Subject: CN=2969833ca206b39db2cf667fe1a3cb25b6d31c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:dd:eb:41:f7:26:cf:52:e0:6a:f4:05:92:1e:
64:1e:ac:0e:65:0c:f9:0e:81:e2:3f:cb:fc:82:71:
9d:fe:d0:82:c2:eb:8a:ad:9c:ad:01:17:56:5d:bd:
ee:0f:41:24:87:5c:4f:d7:42:5d:81:82:55:b6:6e:
67:98:00:ed:1b:62:8d:07:a8:db:7c:39:84:fd:b4:
a5:1a:5b:3c:88:af:02:75:e0:0e:34:fe:43:8d:33:
a1:41:67:6b:21:a1:71:96:8f:4a:e4:97:3c:a6:d0:
7b:ad:54:b1:ff:c6:dc:51:25:78:e0:ab:de:db:70:
d6:48:61:62:1a:c3:79:57:b3:80:c8:4c:40:cd:f3:
4f:bc:a4:16:72:c5:b6:eb:b7:b1:07:1a:60:4f:9f:
db:8c:d7:75:2e:52:a6:44:b8:4c:87:3a:c9:83:db:
3b:99:40:8c:bf:9f:00:1a:49:c1:81:92:e3:08:2c:
2e:2d:35:e9:cd:f9:1b:a0:40:72:7d:f5:70:9f:0d:
f2:da:48:5d:6f:3b:72:2e:92:18:86:78:be:01:32:
a8:ab:3a:c1:b1:42:3e:77:40:54:ce:94:e3:1a:a9:
04:22:b0:bb:f2:39:c0:6e:f8:6e:01:d8:51:3e:a6:
88:1e:23:e9:71:08:4f:13:01:9b:d7:bf:04:0c:4a:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:69:83:3C:A2:06:B3:9D:B2:CF:66:7F:E1:A3:CB:25:B6:D3:1C:4D
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:85:83:c7:b4:73:f3:07:74:5b:c9:12:93:d0:94:42:9f:eb:
04:d1:2c:f9:95:4f:3d:b3:21:79:75:c3:4b:99:12:81:44:c6:
5d:98:e4:b6:08:29:2b:90:69:f2:24:65:a9:ac:7b:ec:17:64:
7d:c6:ab:a7:f5:27:10:df:12:33:14:3c:1c:69:1e:c9:e8:ab:
5a:61:87:1a:15:1c:e3:d8:12:03:83:4e:c5:2a:44:9e:61:15:
82:fc:37:60:08:3b:7b:16:84:59:a8:57:a3:f5:6f:2b:c9:75:
2f:15:54:cb:6f:6b:69:2a:eb:0f:13:88:a8:34:84:b6:4f:ec:
ba:29:ff:6b:ae:64:e3:a7:47:71:ed:d6:17:69:a0:6c:05:2c:
57:d3:be:00:5d:13:3c:bb:90:d9:c3:a0:73:36:5c:1e:16:04:
64:f0:f0:2d:69:93:3f:90:11:b2:6f:75:a0:96:e4:b2:d3:bb:
e2:65:fc:84:55:55:7a:2f:1f:ef:e4:68:74:78:56:ef:58:30:
96:be:08:6a:13:f6:1d:74:f2:56:0f:5d:63:7c:e9:ab:e3:59:
6d:2c:4c:41:44:ce:1f:a8:f5:87:da:5b:51:e4:17:aa:99:87:
2a:8d:ed:55:d8:ac:11:92:29:02:9f:6c:9c:22:b5:d0:11:2c:
5a:94:a7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:30 2026 by rpki-client