Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: lZCiv/zG5dVlqJ6KNHu2StEXrTc4K7qtE9XvHA0HX6g=
Subject key identifier: D2:02:4B:00:44:AB:57:73:60:DE:19:60:7A:3A:83:1D:CF:28:66:8B
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019EC1B704E8084509F413FCB98306360C70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 16DE
Signing time: Sat 13 Jun 2026 16:00:57 +0000
Manifest this update: Sat 13 Jun 2026 16:00:57 +0000
Manifest next update: Sun 14 Jun 2026 16:00:57 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: 4SCnHNZt6ZhRXhdZnbsdrI07hb8VNytFtIGar/kAU3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:04:e8:08:45:09:f4:13:fc:b9:83:06:36:0c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Jun 13 16:00:57 2026 GMT
Not After : Jun 14 16:00:57 2026 GMT
Subject: CN=d2024b0044ab577360de19607a3a831dcf28668b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:f1:9a:ca:de:8c:44:da:00:92:f4:a1:84:
8a:36:98:ac:c2:ca:73:43:ca:e8:9c:4c:7a:2e:c7:
2e:66:12:71:42:6f:29:b0:80:57:1b:7c:b4:7b:bb:
49:8f:14:cc:81:74:54:62:54:cd:58:f8:b8:33:ab:
ef:d4:73:81:71:9b:76:36:72:cb:49:cc:f3:f4:45:
05:de:6b:f6:72:68:3f:34:97:e8:5b:8f:03:2d:ee:
02:0a:b6:80:74:94:ae:5f:b7:26:09:15:e7:12:4a:
18:12:0f:c6:b2:77:39:9c:bd:29:57:cb:9d:43:66:
2c:9e:92:a0:01:50:16:06:89:bf:93:a7:99:1a:cb:
de:6e:48:20:f9:6e:a3:2e:3b:67:3d:00:a2:8c:41:
2c:0b:c2:3d:b9:3d:d3:6a:c9:d3:6c:7b:70:b3:59:
3c:00:d6:af:18:35:69:80:1d:b7:d6:ae:d2:be:c8:
8d:d3:69:22:a9:9f:9e:59:66:12:f1:68:bb:e6:e5:
b3:99:d0:33:fb:dd:4f:cb:b9:d2:1d:69:d2:1e:f8:
22:b0:47:6c:5e:c8:d1:df:28:74:ec:43:ae:59:b1:
91:7c:85:75:9a:2b:2d:71:a1:eb:1b:55:76:c2:27:
50:aa:5b:f5:7c:39:12:b2:bd:03:38:a7:77:00:ca:
e3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:02:4B:00:44:AB:57:73:60:DE:19:60:7A:3A:83:1D:CF:28:66:8B
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:3f:55:c0:f7:47:d6:1b:11:9c:c3:b3:d0:9a:f4:c6:ac:59:
57:85:d9:e5:5f:4d:0b:57:4f:37:f4:73:02:92:b1:f6:b6:db:
9a:cd:78:4c:26:21:cf:1d:db:80:ca:18:2a:45:bc:0b:92:bd:
d5:df:27:12:4f:4e:df:94:0b:fe:c5:8d:95:b1:d4:c1:a9:d2:
3c:c8:0f:aa:19:9c:6f:b3:23:f5:65:84:89:38:d4:fc:ee:6b:
ed:f9:c4:86:12:ee:bf:22:88:37:52:c7:2c:e2:cd:cc:fd:75:
03:ab:df:2d:20:f8:e8:16:c8:47:35:44:c1:32:64:e2:f9:c0:
c0:98:64:ce:1e:29:2b:57:02:05:56:a8:c8:03:21:4f:2c:d7:
49:ea:05:f6:7c:7f:03:93:d5:e8:47:ed:a9:1d:1e:59:a4:a5:
4d:a1:f1:12:d6:72:7f:7e:ab:74:a3:cc:64:7c:9d:92:0a:a5:
df:c1:c7:5c:4f:21:01:55:df:1b:35:46:d9:bd:dc:f5:fd:85:
17:ae:c5:e3:9c:12:d4:49:25:60:3c:ba:04:40:51:cd:d9:59:
af:27:80:51:ee:47:f4:c4:9c:3c:39:95:4f:65:4a:b9:74:6b:
7b:98:42:51:41:17:f3:a3:eb:e7:ac:25:91:6b:3c:ef:40:d8:
ef:e5:67:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7BtwToCEUJ9BP8uYMGNgxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMWJmMDA4MjRiNjI4YmY2MjYzYmI3NGRlNzc0YWRkZjk5
OTBmYzkwHhcNMjYwNjEzMTYwMDU3WhcNMjYwNjE0MTYwMDU3WjAzMTEwLwYDVQQD
EyhkMjAyNGIwMDQ0YWI1NzczNjBkZTE5NjA3YTNhODMxZGNmMjg2NjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHbxmsrejETaAJL0oYSKNpiswspz
Q8ronEx6LscuZhJxQm8psIBXG3y0e7tJjxTMgXRUYlTNWPi4M6vv1HOBcZt2NnLL
Sczz9EUF3mv2cmg/NJfoW48DLe4CCraAdJSuX7cmCRXnEkoYEg/Gsnc5nL0pV8ud
Q2YsnpKgAVAWBom/k6eZGsvebkgg+W6jLjtnPQCijEEsC8I9uT3TasnTbHtws1k8
ANavGDVpgB231q7SvsiN02kiqZ+eWWYS8Wi75uWzmdAz+91Py7nSHWnSHvgisEds
XsjR3yh07EOuWbGRfIV1mistcaHrG1V2widQqlv1fDkSsr0DOKd3AMrjxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNICSwBEq1dzYN4ZYHo6gx3PKGaLMB8GA1UdIwQY
MBaAFNob8Agktii/YmO7dN53St35mQ/JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2Mt
ZDZjNjIxNDJmN2UzLzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2MtZDZjNjIxNDJmN2Uz
LzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYD9VwPdH
1hsRnMOz0Jr0xqxZV4XZ5V9NC1dPN/RzApKx9rbbms14TCYhzx3bgMoYKkW8C5K9
1d8nEk9O35QL/sWNlbHUwanSPMgPqhmcb7Mj9WWEiTjU/O5r7fnEhhLuvyKIN1LH
LOLNzP11A6vfLSD46BbIRzVEwTJk4vnAwJhkzh4pK1cCBVaoyAMhTyzXSeoF9nx/
A5PV6EftqR0eWaSlTaHxEtZyf36rdKPMZHydkgql38HHXE8hAVXfGzVG2b3c9f2F
F67F45wS1EklYDy6BEBRzdlZryeAUe5H9MScPDmVT2VKuXRre5hCUUEX86Pr56wl
kWs870DY7+VnOg==
-----END CERTIFICATE-----
Generated at Sat Jun 13 19:50:01 2026 by rpki-client