Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: rAi1QMf84rwf91cYGWO0K5+cQQhZKFGZR1ij++mzM/U=
Subject key identifier: E6:6C:C9:BC:10:63:BB:74:F1:3E:65:CD:94:8A:DA:EB:9C:47:83:03
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019E307217036E3CF5C4CEE5A9FC2C59D2BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 161D
Signing time: Sat 16 May 2026 11:00:43 +0000
Manifest this update: Sat 16 May 2026 11:00:43 +0000
Manifest next update: Sun 17 May 2026 11:00:43 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: oiFs60ih3m+jd/lOdPJrKmxfZTR1BukE4cidJFQlz14=)
2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:17:03:6e:3c:f5:c4:ce:e5:a9:fc:2c:59:d2:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: May 16 11:00:43 2026 GMT
Not After : May 17 11:00:43 2026 GMT
Subject: CN=e66cc9bc1063bb74f13e65cd948adaeb9c478303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e2:a6:f4:48:75:57:75:c1:79:dc:5f:7b:c4:
fd:27:75:70:82:69:32:ee:64:7c:74:04:4b:5d:19:
ae:27:bc:99:66:73:26:36:f8:2d:63:33:01:4c:90:
f1:2e:eb:1e:0f:35:3f:cf:7c:95:70:4a:26:92:08:
7c:72:87:8a:64:a9:52:2b:a8:99:e3:29:33:c3:4b:
ce:56:57:73:08:94:08:c1:03:37:f6:20:03:7b:95:
a4:78:41:70:30:54:a4:a8:ef:cb:c0:aa:60:bb:d5:
fc:8f:dd:82:7c:a8:5f:54:15:8d:54:24:54:8c:36:
99:d9:4b:30:3b:94:09:e7:71:75:a5:bd:d9:cc:42:
60:90:5a:44:2e:b6:5a:cb:a8:71:9f:6f:da:8b:af:
c2:08:57:40:30:0d:74:f9:f5:a0:19:3c:2c:50:50:
4c:8a:b7:c0:ba:19:cc:57:2a:60:42:d1:53:1a:5c:
95:bd:2c:95:e5:81:92:f3:5d:32:7b:47:51:76:a5:
b1:56:f3:5e:7a:1d:7d:c5:98:d1:3d:6a:17:97:79:
c2:47:ac:9b:f8:9c:cb:28:8b:fe:12:de:f5:f2:99:
c3:21:31:b5:4f:81:5b:2e:ad:9f:3b:45:3e:6b:e5:
26:05:fa:c6:21:d4:50:b4:cc:3c:a0:66:e2:89:5e:
f0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6C:C9:BC:10:63:BB:74:F1:3E:65:CD:94:8A:DA:EB:9C:47:83:03
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e4:7d:d2:b5:bb:e6:4c:de:71:e3:53:6a:ad:44:07:b4:bb:
67:dd:1a:6a:a9:83:ce:bb:63:ea:0b:7a:1d:44:06:66:01:5c:
f7:13:aa:58:4c:5a:c1:e0:76:be:f7:fe:11:28:67:73:9f:08:
a0:77:28:65:f0:20:e8:02:02:4c:e9:73:9e:47:d7:5a:e2:ba:
a4:04:e7:a4:82:97:a9:5b:5b:f4:7e:8e:11:6a:7c:81:bf:95:
7c:03:7c:f1:d5:71:9b:9a:d5:6d:dd:6c:da:dd:06:a9:15:4f:
10:ce:c8:f2:5a:09:4b:59:82:af:8f:2d:02:ec:7d:63:75:0e:
ae:70:13:11:21:61:32:20:11:17:d8:8b:b6:32:d9:19:2d:f5:
5b:38:7c:00:78:99:dc:11:36:96:a4:7e:bd:69:d9:df:82:24:
3b:34:2c:66:e9:91:a7:6c:57:68:13:e9:96:7f:7a:7d:40:51:
9a:8b:40:df:73:e8:e3:a9:03:f8:77:86:19:52:34:50:fc:f8:
db:3a:b4:ae:a4:51:11:72:2e:4f:ae:cf:59:c7:d7:d1:5c:19:
83:50:5b:21:01:24:d0:18:4b:21:93:24:2a:d0:92:d4:b1:e5:
48:fa:fd:18:02:b8:99:ae:e7:f4:54:d5:9d:20:a4:71:7f:5d:
4c:60:fe:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:38 2026 by rpki-client