Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: fvbrIvCyJPPMIXu9A1TEweMn8SFrjg7YS8BBK2JKF/s=
Subject key identifier: 2A:F8:93:14:EA:BA:47:B6:79:CC:C5:AA:58:B0:40:F1:B9:32:0C:05
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 019D97E22BB7D874F2D6B812F69FC5B6EDC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 1684
Signing time: Thu 16 Apr 2026 20:01:14 +0000
Manifest this update: Thu 16 Apr 2026 20:01:14 +0000
Manifest next update: Fri 17 Apr 2026 20:01:14 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: wADPZUX7aG9IZ9NFaVYNU8karyf3yPyZVmUtppdJqzU=)
2: hJR5NdWu4-Lv4WFC0Lu_BxFdjI8.roa (hash: N6VCG9vXtUWHshJ3njO134sBkm0kEo7esti0M/kqZCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:2b:b7:d8:74:f2:d6:b8:12:f6:9f:c5:b6:ed:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Apr 16 20:01:14 2026 GMT
Not After : Apr 17 20:01:14 2026 GMT
Subject: CN=2af89314eaba47b679ccc5aa58b040f1b9320c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:49:09:3a:0c:d1:67:f4:9e:e7:00:3a:f3:c0:
aa:5a:4b:ee:f9:f3:29:56:b3:fc:10:91:76:da:08:
2b:26:87:b9:cf:1a:f1:de:cc:f5:d2:0a:b2:71:80:
29:26:ae:72:8d:f8:16:9f:5e:93:a4:a4:16:9c:3e:
15:0f:4c:91:1d:ef:4e:74:d0:35:77:c1:60:43:6d:
86:34:cd:70:e2:7b:0c:cc:93:7c:04:79:b3:f0:cf:
3d:9c:87:e0:9a:d0:e6:a2:82:4f:50:7c:ed:40:ad:
1c:3b:e1:10:4b:3c:73:00:ff:c2:87:fb:26:38:5e:
c5:34:c6:49:1d:15:60:06:24:61:5c:87:5d:e1:f5:
45:96:82:8a:97:aa:f1:d6:98:00:04:1b:2c:f8:5b:
bf:f8:01:29:e8:ea:a1:a3:80:cb:6d:6a:9a:9c:83:
57:36:cc:07:bf:c7:42:bb:e7:c0:53:95:54:4c:28:
4f:f3:6a:48:e4:8e:9c:1b:f1:78:bc:be:df:8f:74:
ca:d9:95:7b:60:34:5a:15:ad:52:b4:01:23:42:02:
a0:18:5c:c8:b9:f6:a7:4c:84:89:6c:17:9e:ff:27:
a8:cb:1c:8d:8b:82:b2:80:d5:c3:9b:5b:50:dc:10:
35:9c:7f:25:cb:6a:47:cf:04:04:0d:5e:cc:30:29:
11:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F8:93:14:EA:BA:47:B6:79:CC:C5:AA:58:B0:40:F1:B9:32:0C:05
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:68:02:47:d0:6c:e0:c5:9b:48:0d:bc:e5:22:71:bc:84:35:
4c:14:50:55:e4:99:97:e2:6e:43:30:5b:f8:aa:38:6e:e2:e9:
a4:98:d3:9d:41:db:9a:c6:3f:f3:4c:b7:f5:24:58:3d:09:7c:
1b:2f:1a:b8:22:e1:2a:2b:47:f2:19:25:75:74:47:3e:6d:dd:
a4:ef:5f:85:80:77:26:14:a0:db:e6:48:92:7b:22:01:c0:3b:
85:e0:d6:d8:3b:24:66:37:a1:f4:61:32:58:76:8b:58:35:b6:
97:4b:f4:34:a3:1d:c4:36:0f:d5:cb:78:54:ea:52:37:5f:fb:
4f:d0:5c:b9:99:b2:f6:21:94:02:cc:48:e8:04:3d:d9:12:41:
f4:d5:7a:31:cd:7e:bb:56:77:db:09:0f:7c:e4:a3:f2:94:d7:
76:bf:4a:f9:9b:9f:ba:b1:63:b2:07:0a:23:d3:28:79:13:f8:
fe:41:49:23:56:39:ef:f9:20:72:bd:2d:08:f2:67:5d:22:27:
80:db:b2:fe:b3:2a:87:fa:b0:d1:ec:97:ea:70:9f:3a:06:5c:
b1:5a:93:8e:35:a4:c0:0b:fc:c1:fa:12:61:9f:07:c3:60:89:
70:fb:bf:04:ab:4b:02:cf:d3:e9:94:5b:5d:2f:d5:bc:92:b7:
fb:32:3b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:36 2026 by rpki-client