Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
File: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft (raw, json)
Hash identifier: DjReTpSxTz7xNZhq2BgDeyNJdE+wjOjDCY/6L9tJBmM=
Subject key identifier: 35:ED:A0:BF:CB:A9:82:66:D4:40:97:AE:A6:44:04:39:06:1C:7D:79
Authority key identifier: D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
Certificate issuer: /CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Certificate serial: 019F17554CCA406F2EDD7C63B35BA70A5ADE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
Manifest number: 1422
Signing time: Tue 30 Jun 2026 07:01:33 +0000
Manifest this update: Tue 30 Jun 2026 07:01:33 +0000
Manifest next update: Wed 01 Jul 2026 07:01:33 +0000
Files and hashes: 1: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl (hash: B0Iyw2foypSCfmEBjIPODfmbX9+KCM0G7wiednQ2ww0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:4c:ca:40:6f:2e:dd:7c:63:b3:5b:a7:0a:5a:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Validity
Not Before: Jun 30 07:01:33 2026 GMT
Not After : Jul 1 07:01:33 2026 GMT
Subject: CN=35eda0bfcba98266d44097aea6440439061c7d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:06:1d:22:06:8c:4a:ef:b1:58:c7:d8:68:67:
49:15:a4:fc:2f:2e:b6:6b:89:27:52:e0:64:8d:54:
4b:76:07:a7:7f:c7:23:f6:09:fb:f1:dc:a9:bd:c8:
4b:8a:b1:cf:16:57:55:fc:07:d2:79:23:65:82:99:
46:8c:bb:5e:ff:58:38:44:cf:a7:99:3a:2b:ba:5f:
f6:a7:31:22:2d:96:c1:eb:dd:68:27:70:aa:dc:ee:
80:a8:70:06:f4:90:0f:c1:22:35:48:ff:5f:da:1a:
09:25:9b:19:27:64:c7:55:2b:0c:03:8f:86:a9:54:
5b:4a:f6:ae:90:22:a5:60:ba:11:e1:a8:81:64:37:
64:c8:ee:e7:ff:5f:ea:99:73:19:82:df:d0:ff:77:
3c:bf:87:39:82:44:80:ff:21:93:1a:ef:ab:66:82:
cb:97:65:43:6c:ed:f7:8b:1d:d9:f5:a4:25:4f:92:
58:1b:45:f3:05:4b:f2:53:72:ca:0c:ca:61:1a:69:
2f:88:f9:1b:23:a0:55:1a:a3:d5:63:08:c5:41:33:
2e:b9:bb:3a:74:21:bf:1d:fe:a2:87:11:bf:c2:9d:
14:84:3e:ef:26:7e:40:54:14:db:33:7f:b7:0d:3d:
f9:11:06:02:80:a2:d9:bf:f0:81:43:6f:5e:ee:94:
14:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:ED:A0:BF:CB:A9:82:66:D4:40:97:AE:A6:44:04:39:06:1C:7D:79
X509v3 Authority Key Identifier:
keyid:D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:b0:64:6a:04:c3:f9:c7:38:0b:bc:53:44:54:13:59:e8:87:
f3:20:92:36:fa:38:32:e2:f4:b3:99:b9:22:57:bc:80:0c:74:
ed:b2:71:13:07:ef:02:98:16:e5:0c:3a:53:f6:63:28:57:a9:
1b:a8:11:30:17:e6:2f:61:e1:f5:e0:cb:a2:31:4b:84:29:70:
88:4e:9e:9f:0c:15:ad:66:aa:5a:14:87:8a:27:bf:f7:7c:44:
bb:3b:8a:ea:69:70:eb:98:76:31:c7:24:00:93:f8:90:85:6c:
58:6d:b5:a5:88:f6:0d:cf:81:6b:22:4e:79:54:2a:7b:47:1c:
1a:27:ed:f8:49:83:e7:83:3d:86:97:17:f3:c8:58:3f:6e:1a:
0b:04:ec:52:13:42:60:e6:0d:dc:7a:eb:3b:19:8b:35:ea:b7:
3c:a4:be:cc:86:b6:77:52:f3:f8:2f:ae:fd:20:c7:7f:b9:2e:
c9:65:51:78:88:a0:3d:e0:33:c6:7b:b2:9f:96:3e:c2:1d:2d:
79:7d:80:51:4c:1b:4e:0f:b1:43:88:66:48:f1:72:0d:b6:9c:
8d:7d:d4:9f:a1:a4:bf:03:cf:b9:14:c0:8b:6a:15:b6:a6:ca:
c7:83:70:8b:c9:f1:f5:5d:b2:4a:3e:8f:c5:ef:16:60:1a:56:
7c:ca:19:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:18 2026 by rpki-client