Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
File: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft (raw, json)
Hash identifier: isiGQBf8RrlvQqECzncUwIyZSedvjy8lj2bjb5FkXWU=
Subject key identifier: 99:CC:C3:4E:49:34:5C:3E:E1:94:A6:B5:4D:0E:BA:1E:F2:31:38:DF
Authority key identifier: D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
Certificate issuer: /CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Certificate serial: 019D9962A1A069C254E7FE962F6A09C1C98A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 03:01:10 +0000
Manifest this update: Fri 17 Apr 2026 03:01:10 +0000
Manifest next update: Sat 18 Apr 2026 03:01:10 +0000
Files and hashes: 1: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl (hash: bFhapbdNspM/XalhOpuTxOGrW4DGaYNAlcfv85/yHKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:a1:a0:69:c2:54:e7:fe:96:2f:6a:09:c1:c9:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Validity
Not Before: Apr 17 03:01:10 2026 GMT
Not After : Apr 18 03:01:10 2026 GMT
Subject: CN=99ccc34e49345c3ee194a6b54d0eba1ef23138df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:fb:5f:3d:bf:94:b4:63:73:b0:57:64:36:
22:b3:31:fa:14:81:a1:5c:0f:e2:f0:b6:34:bc:42:
74:af:93:8f:2b:f2:da:2f:ba:89:28:85:bb:e6:33:
82:b6:6c:46:f8:5c:ba:7b:07:42:9a:ee:8a:d4:f9:
91:e5:3e:3e:ee:c0:f1:4d:79:ce:ed:d0:fe:15:f6:
b9:ba:cc:b3:2d:b7:e1:99:43:0c:79:1e:3b:42:50:
06:c2:19:b2:3f:46:11:66:07:83:9b:93:7d:05:03:
56:88:b4:52:a8:80:4d:2f:0b:27:da:e1:c4:58:7a:
dd:09:e1:5d:3e:d9:e3:cb:c5:77:66:f3:63:a2:5b:
0c:1a:8b:45:e4:be:79:6f:44:3a:35:95:d8:c2:21:
9c:73:d5:f5:88:12:f6:9d:f0:8f:49:95:33:ca:d0:
d5:3d:4e:46:a1:9a:55:92:0c:59:a3:23:40:c0:ab:
2f:12:70:e4:bf:63:52:ab:37:fc:8b:6b:31:91:ed:
42:ad:40:2f:df:f8:c4:6d:6e:cc:2e:7c:56:6a:c0:
55:c4:70:7b:24:6f:7b:9d:22:fa:a7:0b:bc:78:80:
f7:1a:bd:bf:e4:2a:ca:0f:e3:fd:2c:f3:a6:fe:7f:
c1:ef:b0:2c:3e:60:ea:31:fa:c0:ad:78:ae:38:b4:
0f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CC:C3:4E:49:34:5C:3E:E1:94:A6:B5:4D:0E:BA:1E:F2:31:38:DF
X509v3 Authority Key Identifier:
keyid:D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:9d:b1:8f:92:30:8b:9c:97:9c:5b:d8:61:03:a2:32:5a:68:
d4:34:d3:f6:7e:8b:78:ea:3a:9a:5b:49:9f:08:dd:0b:ab:61:
c0:6e:d2:74:30:9c:71:86:1b:ac:9a:de:c2:2a:9b:71:21:e4:
97:60:3f:3a:b8:73:e8:42:8b:63:87:15:1d:ab:47:86:1d:87:
e0:09:a9:0c:25:d6:ad:38:c3:6f:44:b8:fd:b8:2b:3e:e0:91:
27:2f:75:84:0c:fe:8f:da:68:9c:ba:89:b3:9d:80:f1:3d:98:
8e:75:c0:7f:1f:d2:7e:7e:2d:f0:e1:4c:78:a4:ea:87:34:e5:
28:a4:bc:4c:77:48:5b:4a:73:f9:47:b2:7d:5a:16:4e:43:d0:
c5:48:f4:e4:96:a1:bf:43:0e:e9:29:a0:4c:e4:42:b3:d8:43:
9c:8c:94:88:fe:ac:64:ef:52:43:73:e5:61:c3:4d:52:66:42:
37:a2:1a:7b:1c:10:a6:16:05:94:78:34:3e:0a:e9:91:48:3f:
9e:8e:99:34:08:36:3d:17:38:8f:d6:b7:ab:4d:6a:de:55:f4:
c9:fe:97:bb:ea:ef:29:ac:c9:b6:96:4a:91:cc:53:79:50:f5:
4f:64:b2:27:5f:91:3a:8d:95:44:8b:76:17:bd:67:99:e4:ac:
0c:d6:bf:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:04:07 2026 by rpki-client