Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: bFSQ2kNRc3EVIxOv0JtUwRQAinBm+724ykB+81Ksw9U=
Subject key identifier: 90:63:A3:99:2F:DB:40:7A:9F:1D:AA:62:E6:D9:87:7B:83:43:F7:5A
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019EC1EDE1263AE74EADA9AB604FD2047784
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1529
Signing time: Sat 13 Jun 2026 17:00:52 +0000
Manifest this update: Sat 13 Jun 2026 17:00:52 +0000
Manifest next update: Sun 14 Jun 2026 17:00:52 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: kHly++DT1tQChEX2N625n1YLwxbsivmhMycA2xZejfU=)
2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:e1:26:3a:e7:4e:ad:a9:ab:60:4f:d2:04:77:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 13 17:00:52 2026 GMT
Not After : Jun 14 17:00:52 2026 GMT
Subject: CN=9063a3992fdb407a9f1daa62e6d9877b8343f75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:d2:1b:7d:10:47:06:ed:14:d3:82:ae:8a:
f2:6d:6f:37:35:09:6b:5f:0c:85:47:81:e0:63:8c:
de:86:a7:03:eb:62:5c:ce:ba:ce:f9:e3:db:6a:1e:
d3:f0:0a:9b:11:68:e0:d3:2b:e7:5f:48:bb:37:09:
56:e1:58:32:66:4c:66:b9:3f:60:1c:84:2a:86:54:
98:2b:75:c0:fc:a9:b2:aa:c4:40:f3:df:cf:e0:52:
17:4c:55:0f:e9:bd:45:2a:da:c0:4d:3f:c2:ff:5e:
65:3f:e2:50:ea:98:68:22:74:93:8a:93:cb:f7:02:
f1:fd:6b:40:87:71:4f:22:5a:09:5f:eb:87:fe:53:
ab:5b:59:11:39:8c:47:5f:66:c4:12:ae:3b:6b:e5:
57:43:3e:c3:4e:ef:65:26:b4:e3:4e:64:46:c0:4e:
25:29:62:8f:de:4f:e9:ec:34:33:cd:5c:2d:ba:44:
1c:64:ed:0d:75:12:a8:9b:a7:a4:04:71:87:74:e1:
56:2c:1a:d7:04:a9:82:5d:17:90:7c:1c:d8:f5:8a:
90:d9:a6:73:67:ea:9f:c3:3d:1b:da:97:bf:65:1c:
96:c9:7b:9c:f5:19:d0:54:f8:ec:05:23:4b:65:0b:
49:aa:bb:4c:28:2b:08:60:6a:6b:4a:f4:9f:76:4b:
70:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:63:A3:99:2F:DB:40:7A:9F:1D:AA:62:E6:D9:87:7B:83:43:F7:5A
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:4f:31:79:94:f6:ef:df:34:a9:a3:57:cf:b0:cc:07:4c:37:
0a:ab:be:7d:6c:f4:08:bb:eb:9f:a2:3a:26:f4:fc:cf:4a:03:
b1:bc:df:8b:10:a6:e6:2a:d2:6d:d3:af:10:9f:b6:a9:db:64:
dc:d8:0d:64:d9:1b:3e:2a:0b:7f:19:83:87:4d:96:6b:8d:34:
9a:d3:51:37:29:f4:d5:b5:4b:3d:5c:24:de:fc:ce:bd:93:6f:
60:dc:57:e4:09:7a:ae:fa:12:38:b2:c7:cc:92:a6:d8:77:4b:
a5:5b:9c:d6:4f:86:8a:2f:9e:c8:90:81:d0:c2:7e:f3:d3:f1:
e7:7a:7b:58:98:f2:fb:43:f2:a8:5b:1d:cc:5b:40:61:61:7b:
07:c2:06:5c:d3:30:64:17:53:be:8d:6d:9b:96:a1:a8:41:09:
d2:f7:1e:ef:45:cc:0b:59:c1:cb:37:5a:c4:60:90:cf:41:cf:
cc:04:05:9d:02:aa:d7:14:48:ac:a5:d2:d3:0f:b9:38:eb:85:
20:ee:23:53:41:f4:e2:9d:8c:14:b3:f1:d2:03:cc:0d:e0:4a:
ae:87:ed:d1:fd:43:dc:66:b4:c1:b9:06:62:02:d5:a0:7c:31:
f7:d9:fa:67:ba:e1:f6:b1:8e:ec:67:a3:f6:67:b4:40:dc:07:
a5:e4:3f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:02:25 2026 by rpki-client