Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: C3Hfmutg89JQjXKndDwZS3FyDGxhoClhEfOBuva3JkM=
Subject key identifier: 73:D1:E1:08:17:69:6F:FC:01:05:B8:F5:C9:25:21:F7:8A:77:11:DC
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 019E30722DF4805ADD9B53FF92A68BDE2B8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 0719
Signing time: Sat 16 May 2026 11:00:49 +0000
Manifest this update: Sat 16 May 2026 11:00:49 +0000
Manifest next update: Sun 17 May 2026 11:00:49 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: wosY0eQbIBpr+bf7j3zPVKtUfpNCgIfVMGeznlUPFvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:2d:f4:80:5a:dd:9b:53:ff:92:a6:8b:de:2b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: May 16 11:00:49 2026 GMT
Not After : May 17 11:00:49 2026 GMT
Subject: CN=73d1e10817696ffc0105b8f5c92521f78a7711dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9b:08:db:c9:a7:2f:dc:98:d2:67:4d:cf:56:
75:58:72:fc:56:05:6b:65:be:4f:c3:8c:86:4b:7a:
32:0d:5f:27:2e:06:d7:4e:d3:92:0f:30:25:2f:3b:
1a:3f:8c:03:a9:a8:28:5c:eb:de:32:05:df:91:90:
a8:7f:af:bd:a6:5b:2e:61:1c:e9:71:de:47:8c:30:
00:1d:13:f8:6a:8f:b7:3c:13:76:40:5e:61:b4:f5:
dc:56:6a:72:90:7a:47:c8:27:0f:4a:80:08:d7:93:
5b:3e:86:09:cb:5d:32:3b:e9:e8:16:d4:67:21:37:
71:e0:ad:92:44:cc:3f:ba:dd:12:93:b1:10:8d:23:
9f:41:c7:99:fc:df:6a:5b:20:6c:6f:eb:16:3b:34:
ce:eb:23:a3:84:08:b3:df:8f:4f:e4:4c:a1:af:e9:
de:08:62:d3:82:d5:07:05:09:a2:2a:b5:72:52:10:
e6:26:96:8b:0c:ba:c3:bf:e3:d9:05:42:f1:d5:65:
c1:7f:82:b2:85:a1:10:eb:f3:22:af:61:71:fa:f4:
de:f8:14:7a:32:39:20:bf:c4:b3:78:33:68:8a:3e:
43:9e:a6:b2:b7:71:a2:2d:24:5b:6a:ff:e2:fb:1e:
cf:43:fe:1d:81:46:4a:7b:7a:7f:4b:2f:ed:fc:5c:
e2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D1:E1:08:17:69:6F:FC:01:05:B8:F5:C9:25:21:F7:8A:77:11:DC
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:05:1c:ac:56:e1:4f:f4:b0:da:40:ba:c7:27:d9:78:fa:b0:
27:6b:d6:b4:4f:ab:e3:00:65:6f:d3:38:c7:67:bf:e8:bd:4f:
12:b6:a9:60:9c:4d:9b:82:4a:8d:17:88:ce:d0:4c:06:7d:c6:
6b:2a:54:25:fd:3c:f1:4c:0c:3c:32:cf:b3:84:ce:a6:32:60:
60:78:bd:77:38:cc:67:51:69:2d:e3:4f:bf:cb:06:56:98:c9:
11:66:0b:ff:8e:46:60:59:cb:a9:77:6a:68:eb:eb:91:d4:d2:
5f:6c:17:82:da:88:74:5f:84:ac:77:39:b2:a7:6f:59:2e:80:
81:1e:ad:16:37:d6:9b:b5:10:82:df:54:09:20:60:b0:ed:16:
04:57:c6:c3:a1:c5:c7:57:8e:69:1b:5a:9a:de:51:91:3d:30:
c5:57:86:9c:cb:b1:c8:82:45:54:4c:16:e6:83:dc:90:2f:e3:
5a:fd:df:16:6b:2a:4c:86:05:fa:24:72:f8:da:53:ec:10:2e:
25:bf:ad:de:ad:49:72:4e:4a:af:aa:82:30:ba:64:52:d6:35:
19:5f:b1:c8:90:f5:66:df:07:d2:3e:65:1d:1d:cb:2f:8e:3a:
14:ca:a4:15:f7:00:d4:d7:2d:2f:30:9f:6e:10:25:de:44:18:
2b:bd:63:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:31 2026 by rpki-client