Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 8decLjslAnfQS6nonCFKnHXhNgkV6I3v5RbnPaGfT+A=
Subject key identifier: 61:F5:83:DB:83:99:AE:BC:DC:FA:DB:59:40:7B:0E:CB:6D:69:92:54
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019D9A74FE92EAFA1183A39F780028D14E40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1490
Signing time: Fri 17 Apr 2026 08:00:51 +0000
Manifest this update: Fri 17 Apr 2026 08:00:51 +0000
Manifest next update: Sat 18 Apr 2026 08:00:51 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: PiyIfGju/ZxEmh3Ac6eq+CUzFCU0mhQ1M060YOCqmYI=)
2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:fe:92:ea:fa:11:83:a3:9f:78:00:28:d1:4e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Apr 17 08:00:51 2026 GMT
Not After : Apr 18 08:00:51 2026 GMT
Subject: CN=61f583db8399aebcdcfadb59407b0ecb6d699254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:98:2f:b1:0f:2f:a4:d5:45:37:d7:a2:23:a9:
a3:65:5f:8c:04:47:ce:b7:3c:05:06:8c:09:2e:a6:
e4:b5:c3:8c:dd:34:9f:d7:ed:2d:61:f9:65:66:4a:
25:18:64:0f:2a:fe:6e:6b:7e:08:d0:d0:a6:81:0a:
7b:3f:76:94:0a:a3:7f:bc:82:40:a4:9f:54:86:5b:
ae:8d:11:28:6e:67:1a:1f:21:09:1b:67:da:80:85:
2b:f6:59:6d:c4:cb:6c:e1:45:8e:22:ea:5f:31:43:
b5:8b:57:1b:b0:6c:d7:35:d9:61:f1:95:54:3a:7e:
90:ee:d0:73:d8:06:f1:6b:aa:8c:79:9c:bf:8a:b6:
bd:09:fc:29:a2:6f:6f:94:cc:09:f9:0f:00:94:4c:
c8:ab:c0:f0:59:81:47:a0:01:eb:7a:c7:33:3a:b3:
04:70:0e:ba:a7:d5:e8:ce:97:e7:1e:4e:a9:d2:c5:
e1:8e:70:4b:a2:e6:41:89:42:17:35:eb:58:67:45:
03:64:2d:23:85:e1:eb:ce:0f:79:24:b7:d8:40:f4:
38:b7:c2:e2:1a:93:30:fa:70:f0:58:c3:56:26:90:
0a:da:75:96:4e:85:42:0d:02:f6:3e:a0:63:ad:f9:
46:7d:f0:d4:50:f2:47:d9:19:9d:30:40:8d:25:82:
f9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F5:83:DB:83:99:AE:BC:DC:FA:DB:59:40:7B:0E:CB:6D:69:92:54
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:1d:30:3c:b5:cf:a9:35:94:7e:1d:b3:23:10:b5:f8:b1:d7:
42:aa:ba:e6:24:f4:de:2b:d9:f6:44:0b:f7:8a:71:d8:f4:6e:
d4:ff:53:ed:82:13:d0:9f:6c:7f:b9:46:ed:e4:a4:ec:3f:a4:
db:de:41:2c:e4:73:a8:e4:32:85:b6:97:f0:e2:6b:53:c6:38:
14:4f:18:76:c3:cd:ec:82:36:b5:84:86:e5:de:92:0c:ba:99:
ca:87:0d:58:01:3a:d3:a3:0a:fa:13:8d:fd:b7:52:74:41:62:
3b:94:78:90:2a:7e:f4:30:69:d5:d6:95:50:eb:c5:41:73:d3:
ec:1b:b6:3d:c5:c2:93:7b:3b:04:f6:34:00:0e:b8:72:ef:9d:
07:42:df:6d:91:a6:61:91:70:49:d1:19:ef:82:37:51:41:62:
7e:62:0b:7c:7e:fe:85:44:5e:e0:a2:93:3b:62:57:92:39:85:
1b:ed:7e:fd:96:4e:f4:86:08:fb:89:bd:8b:31:89:05:55:9d:
10:38:54:14:75:b0:0c:fb:fb:40:b1:87:22:03:69:4e:9b:eb:
87:27:09:84:b0:2a:b1:8c:e3:c0:e6:fa:25:64:e2:0d:d6:c2:
67:60:02:59:5a:a4:eb:67:38:85:3f:89:88:2b:7e:f1:2a:f9:
00:5a:23:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:10:39 2026 by rpki-client