Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier: Zlu6SLTCVsMt4dYbWxkJK94Nt2pSVRFYbNpIZ4lzC9Y=
Subject key identifier: CD:97:59:94:42:58:D3:35:03:64:7B:87:D5:C5:2E:F4:A2:9F:A8:C9
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial: 019E2F96F55A741B71F6F679BD1EF981047D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number: 180A
Signing time: Sat 16 May 2026 07:01:22 +0000
Manifest this update: Sat 16 May 2026 07:01:22 +0000
Manifest next update: Sun 17 May 2026 07:01:22 +0000
Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: Gid+p5rpA6JGSJrmMYuFDtmscoJjxlDQ5eoUdDfH+dA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:f5:5a:74:1b:71:f6:f6:79:bd:1e:f9:81:04:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
Validity
Not Before: May 16 07:01:22 2026 GMT
Not After : May 17 07:01:22 2026 GMT
Subject: CN=cd9759944258d33503647b87d5c52ef4a29fa8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:8c:75:4e:9b:89:3e:e6:1d:95:25:76:06:
a2:4e:da:cb:a2:ea:d4:e3:6b:04:a6:4a:f5:b0:5c:
1e:f4:b9:b8:60:ee:e2:03:f9:3b:ca:7b:db:2d:a8:
4e:e4:12:32:31:99:d6:aa:59:2c:dd:bf:ba:76:c3:
9a:b5:80:9e:7f:bd:51:95:f5:d9:d6:8d:c3:13:37:
b4:7d:80:17:dd:fd:cc:7e:6f:17:96:28:ac:f1:a7:
7c:39:55:15:57:70:34:4d:01:df:9e:2e:e5:e3:45:
18:1b:27:06:85:4c:6d:f8:ae:01:ea:38:9f:53:da:
b0:02:55:0c:5c:1d:f1:d6:37:e5:53:e7:34:48:e9:
f8:d6:2c:cc:cb:32:b9:4b:85:ee:7a:2d:39:f5:27:
9f:aa:34:7c:8f:3a:b0:fd:5c:38:8b:f9:8a:ec:3f:
a2:8f:db:e8:90:55:10:fe:15:11:60:06:3b:83:be:
16:9f:8c:ee:bc:f9:64:86:c8:e8:9d:ff:07:11:64:
a6:0d:02:d9:86:41:a8:a9:ec:eb:61:5d:79:75:29:
22:10:c9:81:9a:81:a1:da:99:09:c0:58:27:9f:7b:
41:a2:a0:b7:50:a4:0a:bd:7a:30:29:49:95:ac:10:
6d:68:df:4a:32:4e:e0:22:3f:44:b5:4c:6a:9a:84:
82:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:97:59:94:42:58:D3:35:03:64:7B:87:D5:C5:2E:F4:A2:9F:A8:C9
X509v3 Authority Key Identifier:
keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:90:37:d7:9e:f5:8d:09:c7:9c:6d:79:dd:76:57:1e:99:35:
ac:cc:8a:43:3c:2a:2f:fc:9b:8c:18:6f:e4:e1:03:64:b4:28:
6e:46:9b:dd:cb:38:c3:ad:92:f1:1b:9f:a1:24:6e:e7:17:8c:
75:3b:06:09:23:6a:89:0a:8a:51:6b:0f:86:67:69:21:b8:ae:
36:cc:03:73:dd:8e:4c:fe:03:96:ac:f9:dd:61:27:c0:29:c5:
2b:f7:3f:7d:43:40:8c:ff:e3:a7:3e:6b:5a:e5:4a:3d:c8:72:
d5:88:e1:49:38:b3:66:9c:25:63:43:f9:f5:72:20:67:21:51:
2e:f5:67:35:56:9b:e0:09:99:e0:67:29:2b:e0:f5:dd:a7:93:
a8:99:da:b7:e6:41:4a:e6:0d:8a:a3:46:fd:88:5d:40:40:64:
77:60:07:2f:a8:9d:c8:48:13:35:92:72:ae:42:b5:ab:3a:b7:
13:df:75:aa:a3:21:9e:18:7c:1f:a1:f0:13:b6:39:30:9c:db:
a1:7a:22:c2:86:4e:6e:d9:2f:69:c0:00:f7:40:eb:9c:35:cf:
ae:9a:15:95:c6:11:71:48:6d:a3:fe:0f:dd:bb:76:66:29:3a:
74:0f:5f:0b:59:22:42:78:b5:dc:04:e2:ef:43:53:57:b2:07:
5d:b6:0e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:26:58 2026 by rpki-client