Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier: RM3UxCpAtyJi0JScMqox/QYy6o6xOJ9BRfLU4lzt2uU=
Subject key identifier: B9:6C:7C:C0:B9:FA:12:CD:B5:65:7A:E6:9D:84:F4:81:99:79:42:0F
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial: 019CAD596D539A09927AE0A8DA3792CC3D34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number: 1742
Signing time: Mon 02 Mar 2026 07:00:44 +0000
Manifest this update: Mon 02 Mar 2026 07:00:44 +0000
Manifest next update: Tue 03 Mar 2026 07:00:44 +0000
Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: 0c+qHKoMnLLreX9l+HK/PyAVOqlNqA19fpkaY+4d/Gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:6d:53:9a:09:92:7a:e0:a8:da:37:92:cc:3d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
Validity
Not Before: Mar 2 07:00:44 2026 GMT
Not After : Mar 3 07:00:44 2026 GMT
Subject: CN=b96c7cc0b9fa12cdb5657ae69d84f4819979420f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cc:05:48:ac:25:30:07:b6:06:fd:a9:0b:98:
d8:33:8f:34:cc:c2:db:51:75:21:a4:94:fc:65:3c:
7d:ef:c5:45:ec:05:43:32:ba:1c:5c:6a:20:64:b2:
2c:25:f2:29:c1:97:82:96:a5:ee:99:00:a7:4b:b6:
af:40:69:da:b4:7c:4b:1c:68:77:f1:dd:e0:1c:20:
45:cc:9c:bb:4d:59:cd:cd:8a:0e:c4:56:04:8a:72:
95:4c:ba:8b:3b:b9:aa:f0:6e:38:13:d7:7a:fd:2a:
aa:97:59:bb:84:f0:c1:c3:f3:b4:0b:6c:42:98:ec:
91:bc:b0:20:b4:8c:3c:6d:6a:bd:ef:9d:b1:9b:0b:
b8:76:71:5b:aa:b7:02:e5:40:2b:92:a5:2e:e6:2d:
64:d8:1c:d4:4a:83:8c:99:b6:63:e3:eb:36:7c:88:
02:cc:ac:6f:9b:92:b6:e4:71:16:37:d9:cb:7b:d4:
86:f1:16:e6:11:68:54:c5:8c:1d:1e:b6:0a:7a:0e:
e1:ae:7b:9a:ee:2a:f4:23:18:6e:e8:aa:de:8a:33:
d9:14:23:3c:93:31:83:46:2f:c9:6b:4c:d6:45:d9:
e3:cd:35:fe:4c:f6:84:a5:60:ba:bb:74:16:be:9b:
6d:83:47:e8:d2:a7:90:83:c2:a9:84:2b:fb:47:67:
81:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6C:7C:C0:B9:FA:12:CD:B5:65:7A:E6:9D:84:F4:81:99:79:42:0F
X509v3 Authority Key Identifier:
keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:65:b1:ed:3a:b4:74:d8:78:90:f3:56:c2:4f:bc:84:f4:9f:
a9:86:17:48:5d:01:62:2e:4e:6f:f4:08:5c:b4:37:5b:70:88:
dd:5f:40:e1:3a:3b:c3:e0:59:67:1e:5d:7a:06:99:77:d9:26:
32:21:dc:4f:4e:35:f6:ca:4b:81:ce:ff:52:53:0a:a8:5b:00:
25:c9:60:76:d0:dd:e0:e3:73:fc:b9:98:f4:b8:63:b6:93:69:
11:2d:ad:fc:55:2c:a6:27:71:71:bf:cc:b1:d9:bf:49:47:27:
61:c9:ae:82:f0:3a:40:72:19:c9:9b:f5:d0:63:4d:7f:f2:15:
bb:cb:08:eb:9c:76:6a:de:04:9c:ef:73:3f:a0:10:e0:e8:81:
5e:2a:5d:80:78:ff:7c:f7:85:13:84:69:64:0b:10:a4:1f:7b:
79:f9:43:ae:ed:7a:37:0d:85:3c:5e:82:fe:f6:1c:bd:9a:02:
df:84:42:f2:65:47:9f:5a:07:8a:6f:cc:6a:f1:51:68:be:30:
67:72:2e:9a:ce:08:09:75:07:d9:b7:93:8e:68:b5:2c:61:93:
27:ea:21:a1:4e:16:c8:98:a7:fe:2c:34:54:23:23:30:e9:71:
02:37:27:5b:3c:41:58:9b:ea:4a:21:c0:3a:ba:28:a5:e8:21:
c4:3c:37:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:08:05 2026 by rpki-client