Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
File: 2_9h1cWObqbsXPfubPNTpmOxs6g.mft (raw, json)
Hash identifier: K4UXr5vb+tWkh0sBLCXRtxif/0Vm/lTONc2kblD6HN4=
Subject key identifier: C4:11:43:5C:4C:3F:B5:82:02:84:4C:5A:92:B7:65:59:AE:6E:B5:EA
Authority key identifier: DB:FF:61:D5:C5:8E:6E:A6:EC:5C:F7:EE:6C:F3:53:A6:63:B1:B3:A8
Certificate issuer: /CN=dbff61d5c58e6ea6ec5cf7ee6cf353a663b1b3a8
Certificate serial: 019CAC46B2FC1A20A235914A7CC41448BED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
Manifest number: 046C
Signing time: Mon 02 Mar 2026 02:00:40 +0000
Manifest this update: Mon 02 Mar 2026 02:00:40 +0000
Manifest next update: Tue 03 Mar 2026 02:00:40 +0000
Files and hashes: 1: 2_9h1cWObqbsXPfubPNTpmOxs6g.crl (hash: 0B7fz6kU9U48aSXvKNQgae2RM/XwQalXhBH2SsHpVoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:b2:fc:1a:20:a2:35:91:4a:7c:c4:14:48:be:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbff61d5c58e6ea6ec5cf7ee6cf353a663b1b3a8
Validity
Not Before: Mar 2 02:00:40 2026 GMT
Not After : Mar 3 02:00:40 2026 GMT
Subject: CN=c411435c4c3fb58202844c5a92b76559ae6eb5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:63:1e:a7:a5:17:4d:7a:e8:75:7d:cb:ef:
0f:6c:94:c1:70:ba:6d:99:7e:a9:be:e7:f7:4a:b7:
a5:52:98:93:4d:17:58:d9:0f:1d:16:c7:d1:e8:c3:
19:d1:ef:05:66:10:40:87:24:5c:55:f3:5a:ad:2f:
01:13:52:d9:b4:45:cf:3a:30:d4:ea:1c:2c:54:cc:
87:01:b5:11:02:e6:c3:cd:a2:ac:0a:6e:00:9c:cd:
56:4b:70:41:a4:72:9e:8d:e9:20:d5:75:6e:d1:64:
38:0a:7e:eb:41:a1:46:e8:be:49:46:18:a7:5d:df:
0a:de:32:d7:46:a3:18:8e:19:8d:23:dc:76:fd:2a:
ab:72:c3:7b:18:50:04:40:d8:75:db:8f:42:7f:6b:
b4:06:73:a7:79:2e:bd:25:a9:6d:67:e8:15:17:0c:
ee:2c:b2:3b:c4:aa:5c:4d:ed:96:5c:8b:10:e1:65:
aa:98:1f:c8:6d:5f:b2:9f:63:39:b9:92:4d:57:6d:
8c:08:47:40:75:71:4b:ef:42:0a:2e:0e:d0:de:d1:
73:24:63:ca:3e:c9:48:66:6b:b6:a3:6b:0c:16:95:
a2:30:9e:50:03:c5:b6:e5:a4:28:8a:c7:53:66:64:
c9:ad:90:b1:97:4c:4c:95:c4:6c:2d:53:dc:55:30:
f7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:11:43:5C:4C:3F:B5:82:02:84:4C:5A:92:B7:65:59:AE:6E:B5:EA
X509v3 Authority Key Identifier:
keyid:DB:FF:61:D5:C5:8E:6E:A6:EC:5C:F7:EE:6C:F3:53:A6:63:B1:B3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c6:ea:05:c5:7b:13:20:8a:d8:b8:66:58:f9:94:43:44:e3:
b1:0a:9d:d0:cf:cf:d0:3d:83:19:db:5a:7d:f9:b9:99:0b:da:
8b:d4:21:8f:56:c8:54:a4:70:c4:04:4f:7e:e6:a9:69:3e:c1:
ff:d7:d5:0d:a6:46:56:6c:6c:0d:fb:ca:76:a1:c1:11:37:18:
b9:f2:aa:ce:48:3b:ff:79:97:5f:b6:c1:e3:e7:43:a7:1a:f8:
bc:d9:f0:b5:87:bc:c7:b5:6f:04:f8:3d:0b:1a:af:6a:04:59:
4e:9b:c5:40:3f:6c:21:84:7b:ca:ab:86:e2:df:de:c6:5c:3d:
bf:96:9e:f5:0d:8b:8c:f5:4c:82:df:40:11:a3:73:cb:2d:6f:
d2:06:8d:d6:06:08:67:31:14:96:b9:08:5b:59:51:5f:27:17:
de:1c:71:9f:55:0a:45:51:0c:f7:86:e1:7a:42:81:0b:4d:3a:
fa:af:81:44:8f:65:c5:c5:ea:68:90:8f:dc:29:85:7e:77:ad:
e9:70:82:3f:4b:8a:44:9b:51:03:c8:70:fe:66:3e:32:06:7b:
98:5d:f0:cb:60:9b:a0:44:fc:e1:b3:11:87:c9:dd:f2:bb:17:
6b:ac:e0:37:02:3a:ce:5a:a2:96:61:ea:6f:54:a6:b6:b7:b9:
2e:64:8b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:31:37 2026 by rpki-client