Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: SRWqhTYN+g0wt8FnFRs2Yt/XcyYrxJQQMTUDkseNNmc=
Subject key identifier: 47:F4:0A:1E:1D:89:DA:78:56:F6:18:FB:C8:A6:6C:5B:D2:6D:08:8D
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019F189E9E7FDAB77198A0F64E41A432025B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 170B
Signing time: Tue 30 Jun 2026 13:01:16 +0000
Manifest this update: Tue 30 Jun 2026 13:01:16 +0000
Manifest next update: Wed 01 Jul 2026 13:01:16 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: gp5mnzNAWOyUZpjKM5OQlgwvBEEmN5rMrfEx4IOFMgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:9e:7f:da:b7:71:98:a0:f6:4e:41:a4:32:02:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Jun 30 13:01:16 2026 GMT
Not After : Jul 1 13:01:16 2026 GMT
Subject: CN=47f40a1e1d89da7856f618fbc8a66c5bd26d088d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:81:1a:5c:2c:f3:3f:4c:67:23:e5:ad:60:35:
a9:12:ea:6f:46:52:5b:6e:e9:17:11:48:f9:c9:d1:
37:a3:1f:d9:49:4b:39:8e:0b:fc:b2:f8:aa:f4:fc:
6c:65:84:dd:09:a7:d0:28:9c:4b:3f:6b:2c:82:41:
f2:96:75:80:e3:c7:27:01:66:fb:e7:e9:3c:51:a3:
ac:3b:28:73:dc:09:50:fa:1a:90:02:aa:13:5a:05:
e6:be:03:38:ef:43:77:0c:f2:df:28:8d:b0:3b:e8:
6d:51:58:25:dd:7d:3e:62:63:b0:b1:4d:53:5a:7b:
06:a1:de:c3:6b:cc:10:95:d4:27:15:91:27:f4:7d:
94:bc:a8:07:23:86:44:37:5e:96:af:37:bc:66:e9:
9b:bf:0b:ee:01:c2:ac:74:bb:8c:72:e3:31:a8:02:
0e:7c:c1:e6:2a:0e:75:4d:44:4d:c6:2d:e3:82:b9:
02:ae:63:e8:ce:e9:07:ad:40:3a:79:9d:b3:97:8e:
0d:6f:ea:9f:3b:36:dd:69:4b:9e:eb:16:70:20:5a:
42:b5:f3:06:a3:5d:86:4c:16:97:e0:54:31:b2:6e:
f7:09:2c:e4:93:6c:a3:c4:26:3a:7c:4a:b6:06:9c:
9f:28:ec:2e:61:da:f7:c7:36:f0:da:26:d8:66:5d:
1a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:F4:0A:1E:1D:89:DA:78:56:F6:18:FB:C8:A6:6C:5B:D2:6D:08:8D
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:78:17:58:a7:30:4e:b0:d6:b0:dc:3e:63:83:50:e1:1f:00:
30:28:27:c0:9c:fb:d5:92:fe:9d:91:28:43:e2:80:3d:ff:2a:
30:7c:64:33:34:f9:5f:0e:8e:43:fb:72:b6:44:37:f8:65:ae:
1a:33:26:23:06:44:c4:02:68:13:69:52:18:83:49:76:52:ad:
10:be:77:be:63:43:a6:7e:15:ca:2f:43:c0:01:1c:16:77:96:
ee:03:43:f5:1d:da:1a:42:14:d5:5d:e2:54:4a:40:74:c0:9e:
ae:90:85:d5:e1:5c:14:6d:6c:8c:3b:be:1e:f4:6f:eb:9a:e8:
2e:2e:a0:4c:7c:b1:e5:e2:ff:54:02:36:e3:74:f2:d2:7e:33:
a4:af:ce:99:ec:06:11:f4:74:4e:1c:78:c1:f7:74:a7:ec:59:
14:ba:84:3e:57:b9:03:f0:a1:d9:aa:3c:1b:6f:4b:47:15:5e:
60:08:e5:be:1b:c3:d1:81:6d:ab:41:2e:a0:f7:51:5f:98:13:
77:ce:f4:57:0c:89:48:a7:bb:3c:3b:55:fd:b7:40:14:52:09:
6a:6f:24:f0:66:a2:6b:4c:05:b1:e7:ec:c2:9c:8a:e9:40:7c:
44:fb:d4:e6:58:16:11:82:7b:68:1a:68:9f:06:0c:68:6c:0b:
15:df:25:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Ynp5/2rdxmKD2TkGkMgJbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMWJmMDA4MjRiNjI4YmY2MjYzYmI3NGRlNzc0YWRkZjk5
OTBmYzkwHhcNMjYwNjMwMTMwMTE2WhcNMjYwNzAxMTMwMTE2WjAzMTEwLwYDVQQD
Eyg0N2Y0MGExZTFkODlkYTc4NTZmNjE4ZmJjOGE2NmM1YmQyNmQwODhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoEaXCzzP0xnI+WtYDWpEupvRlJb
bukXEUj5ydE3ox/ZSUs5jgv8sviq9PxsZYTdCafQKJxLP2ssgkHylnWA48cnAWb7
5+k8UaOsOyhz3AlQ+hqQAqoTWgXmvgM470N3DPLfKI2wO+htUVgl3X0+YmOwsU1T
WnsGod7Da8wQldQnFZEn9H2UvKgHI4ZEN16Wrze8ZumbvwvuAcKsdLuMcuMxqAIO
fMHmKg51TURNxi3jgrkCrmPozukHrUA6eZ2zl44Nb+qfOzbdaUue6xZwIFpCtfMG
o12GTBaX4FQxsm73CSzkk2yjxCY6fEq2BpyfKOwuYdr3xzbw2ibYZl0a2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEf0Ch4didp4VvYY+8imbFvSbQiNMB8GA1UdIwQY
MBaAFNob8Agktii/YmO7dN53St35mQ/JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2Mt
ZDZjNjIxNDJmN2UzLzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2MtZDZjNjIxNDJmN2Uz
LzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbngXWKcw
TrDWsNw+Y4NQ4R8AMCgnwJz71ZL+nZEoQ+KAPf8qMHxkMzT5Xw6OQ/tytkQ3+GWu
GjMmIwZExAJoE2lSGINJdlKtEL53vmNDpn4Vyi9DwAEcFneW7gND9R3aGkIU1V3i
VEpAdMCerpCF1eFcFG1sjDu+HvRv65roLi6gTHyx5eL/VAI243Ty0n4zpK/OmewG
EfR0Thx4wfd0p+xZFLqEPle5A/Ch2ao8G29LRxVeYAjlvhvD0YFtq0EuoPdRX5gT
d870VwyJSKe7PDtV/bdAFFIJam8k8Gaia0wFsefswpyK6UB8RPvU5lgWEYJ7aBpo
nwYMaGwLFd8lMg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:39 2026 by rpki-client