Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: 056EvEY53SLDwEY/LlxpF1/wzWdSk/4bhBMg8DimBCc=
Subject key identifier: 9E:7E:D0:F8:90:E7:B7:81:70:DC:D3:32:A4:B2:48:B9:BE:1D:8E:96
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 019EBF5A549850D79B4E110149F5A7AADAE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 171D
Signing time: Sat 13 Jun 2026 05:00:28 +0000
Manifest this update: Sat 13 Jun 2026 05:00:28 +0000
Manifest next update: Sun 14 Jun 2026 05:00:28 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: p8p6vWCJD06feZvyVbBseMzCN/dv02x7iN+AufZDrJQ=)
2: hJR5NdWu4-Lv4WFC0Lu_BxFdjI8.roa (hash: N6VCG9vXtUWHshJ3njO134sBkm0kEo7esti0M/kqZCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:54:98:50:d7:9b:4e:11:01:49:f5:a7:aa:da:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Jun 13 05:00:28 2026 GMT
Not After : Jun 14 05:00:28 2026 GMT
Subject: CN=9e7ed0f890e7b78170dcd332a4b248b9be1d8e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:70:b1:c3:92:42:b3:4a:85:d8:fe:cf:1a:80:
8d:eb:40:38:96:77:33:ef:c0:56:2f:5a:de:fb:98:
ff:9e:e9:03:57:fe:f9:c6:ac:bd:e9:0d:1a:0d:5b:
f1:7b:cf:41:e4:71:b5:d9:44:bf:16:01:81:76:16:
4a:90:42:be:70:4c:8a:2b:0f:41:1f:1b:d3:a8:2b:
c8:8f:69:ad:42:4a:a7:87:c5:2c:a1:a7:0d:1d:33:
ae:b5:9a:b8:f2:9f:ff:f2:e5:02:eb:0b:50:93:91:
b2:d8:6f:8c:b0:b6:bb:49:a4:27:d9:02:b0:57:87:
16:24:79:58:d2:36:c1:29:7d:a1:8f:80:91:02:e0:
3b:9a:89:b3:9c:16:63:07:20:54:4a:db:8b:28:27:
a9:fa:e0:7b:41:ef:db:e3:85:62:b4:b2:fb:d6:96:
40:86:1b:32:0d:20:ee:c4:88:70:35:f1:ba:02:0c:
6f:96:93:00:e7:d1:78:57:2d:bf:6d:f5:f4:e7:22:
d4:81:5b:4d:b9:fd:82:a6:71:41:92:68:a1:03:f8:
f2:be:1a:79:a6:42:5d:4f:48:81:67:6c:14:f5:38:
8e:f7:dd:64:f6:f1:56:59:90:64:40:fd:4f:de:67:
eb:51:0f:0b:00:70:2b:99:61:47:24:87:69:aa:f8:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7E:D0:F8:90:E7:B7:81:70:DC:D3:32:A4:B2:48:B9:BE:1D:8E:96
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:fe:10:3a:f4:3f:d6:fd:21:53:e1:87:47:26:01:9b:3b:88:
83:28:f3:57:35:e5:9b:a3:bd:c4:54:64:a6:98:2f:08:9d:e1:
72:9f:9c:6c:0c:32:52:6b:3f:b5:83:f3:5c:b2:b2:a0:3e:dd:
d9:e8:a5:8c:51:be:00:9e:74:33:48:12:50:28:8f:de:94:1c:
16:84:7c:03:aa:ee:21:ca:d0:cb:f6:e1:21:c5:50:c7:25:40:
98:71:73:d9:79:d6:b8:cb:19:d2:3d:be:70:a8:9e:15:3e:bb:
31:7e:e4:73:4f:d7:92:57:fa:ad:57:94:41:49:2f:cb:c1:b0:
d1:7d:12:f8:c2:4d:60:78:21:bc:c1:38:36:e3:5a:0e:d4:72:
fe:5c:fb:93:85:dc:55:d1:67:7c:ae:dd:54:9c:ac:8b:76:4b:
26:5d:82:e4:54:75:4e:3e:db:75:32:82:82:bb:ed:cf:d9:13:
85:ef:ba:1f:44:4d:62:be:77:14:63:f1:74:2f:9a:2e:9e:b2:
64:78:8b:9b:31:be:fd:86:d2:e2:7e:ce:63:98:18:21:1f:61:
58:43:9f:14:16:a1:30:36:92:fe:60:1d:77:55:b6:ac:f8:03:
00:42:60:61:41:a7:e9:12:8a:55:23:25:85:6a:1a:55:80:4c:
7a:78:d6:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:37:07 2026 by rpki-client