Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: WbDGRievdGsVr6jNCm2UiVzpcho4Ne7Sqct8Sv8OOjg=
Subject key identifier: AC:D6:DE:5B:1B:50:8D:BC:7B:16:E1:FE:1D:95:2A:FB:10:2B:14:E1
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019E30E065E6699604A7AD761041DD8E94F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 1693
Signing time: Sat 16 May 2026 13:01:12 +0000
Manifest this update: Sat 16 May 2026 13:01:12 +0000
Manifest next update: Sun 17 May 2026 13:01:12 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: Dv/265oPx0Pcym/n0SVaC0ewN0DpNT4g8q1Sw+qOR0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:65:e6:69:96:04:a7:ad:76:10:41:dd:8e:94:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: May 16 13:01:12 2026 GMT
Not After : May 17 13:01:12 2026 GMT
Subject: CN=acd6de5b1b508dbc7b16e1fe1d952afb102b14e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cd:79:f7:19:1a:ec:90:59:5f:97:84:2b:72:
2d:8a:a3:ae:02:23:1d:91:76:5c:fd:c7:f0:b5:e0:
a7:a8:1b:76:0a:89:db:db:90:2b:05:4c:75:89:d0:
6c:65:35:7c:26:01:4f:44:6d:48:83:b9:40:02:9d:
5a:68:a4:d1:3c:2d:7c:55:ea:85:cc:a3:1c:62:a6:
80:16:77:d6:e0:d1:fa:bb:4c:cd:2b:e7:30:24:23:
e0:98:7e:43:18:3b:60:96:36:5e:d2:56:c7:79:ee:
9d:0b:c0:f0:c7:dd:b2:45:6a:8a:16:4e:73:fa:07:
40:23:46:16:a9:29:b5:6a:f4:dc:91:65:f9:65:68:
6e:f4:2d:0d:ca:51:0f:31:14:b2:fd:24:cc:c7:0c:
85:81:cd:1d:be:bc:6b:8e:04:72:07:ca:f0:2a:27:
62:f9:6f:a3:29:e7:58:87:5f:59:6f:8d:ef:ea:14:
9b:c5:ad:e3:f6:6a:ef:4f:50:ec:69:3c:a0:a4:ee:
fc:4f:06:e5:4a:44:ad:f1:29:17:60:ee:f0:bd:03:
6d:e4:f1:e2:92:40:e7:1e:14:cd:14:11:05:e3:95:
b8:b2:fa:f7:3e:d7:09:5d:8e:0c:a9:c0:5f:e5:f8:
da:85:a3:f9:7a:47:38:89:39:64:b4:4b:7a:04:42:
a0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D6:DE:5B:1B:50:8D:BC:7B:16:E1:FE:1D:95:2A:FB:10:2B:14:E1
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:47:21:e8:79:58:6c:57:dc:50:68:14:cf:ef:d7:7d:cb:aa:
df:76:96:e1:ff:ed:48:1e:bb:d9:60:b0:9f:99:3f:9d:be:2d:
52:80:de:63:5b:b7:20:5f:5b:bc:01:25:3b:39:b7:0c:2e:09:
2a:92:2d:97:9c:ab:a8:03:5d:63:85:33:77:ca:55:bf:d8:42:
66:15:7c:aa:b4:d3:c2:5c:7c:68:eb:d9:c1:79:7b:20:70:7b:
e3:2e:9e:0e:97:e8:43:c9:46:1f:da:d0:22:33:ef:c2:c9:eb:
75:6f:58:c5:f3:b0:7d:b4:c7:7a:d1:fd:4e:7a:00:ad:76:45:
d6:07:54:96:ee:84:c2:8c:24:80:33:be:25:e5:0d:79:93:d0:
35:1f:42:05:eb:98:05:42:2a:54:eb:96:f7:2c:1b:16:86:af:
64:eb:88:d6:90:fd:87:22:6b:8b:71:d4:af:51:f7:21:0b:63:
a4:ae:af:d7:f3:36:60:59:3b:7e:a2:fb:bb:94:99:0e:98:4a:
49:5c:46:c5:a8:56:94:03:f3:ba:4c:fa:e4:fc:16:f8:e0:e6:
46:13:9c:18:ad:fd:76:3a:2f:3b:1b:0d:59:ab:e3:62:04:f9:
d8:50:c4:51:cd:3b:f1:65:8f:99:fa:ef:cb:1f:a5:18:38:50:
50:b6:47:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:23 2026 by rpki-client