Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
File: 2_9h1cWObqbsXPfubPNTpmOxs6g.mft (raw, json)
Hash identifier: cbhpk57mLORdEhwPXfhbSE0jmsQ0no6sX+blq9hqO8k=
Subject key identifier: 33:F5:5B:74:79:A0:D9:6B:B6:BE:E9:5D:D2:CA:D0:C8:90:4F:EC:B1
Authority key identifier: DB:FF:61:D5:C5:8E:6E:A6:EC:5C:F7:EE:6C:F3:53:A6:63:B1:B3:A8
Certificate issuer: /CN=dbff61d5c58e6ea6ec5cf7ee6cf353a663b1b3a8
Certificate serial: 019D99D0079DFD848AE8AD4F6BDCBF883AD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
Manifest number: 04E7
Signing time: Fri 17 Apr 2026 05:00:40 +0000
Manifest this update: Fri 17 Apr 2026 05:00:40 +0000
Manifest next update: Sat 18 Apr 2026 05:00:40 +0000
Files and hashes: 1: 2_9h1cWObqbsXPfubPNTpmOxs6g.crl (hash: qPpobLZBMqXtP9QcrLkvtWm2DsZZTmYZkL39nUOj71I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:07:9d:fd:84:8a:e8:ad:4f:6b:dc:bf:88:3a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbff61d5c58e6ea6ec5cf7ee6cf353a663b1b3a8
Validity
Not Before: Apr 17 05:00:40 2026 GMT
Not After : Apr 18 05:00:40 2026 GMT
Subject: CN=33f55b7479a0d96bb6bee95dd2cad0c8904fecb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:19:d2:11:6c:e9:8f:08:c7:74:c5:34:de:49:
9d:ee:ad:21:9e:8e:1a:f3:2f:2b:59:58:83:58:25:
03:19:4d:3c:d5:3b:23:61:33:ec:54:80:c9:21:04:
cf:cf:ca:03:65:72:84:49:99:41:fb:20:0e:f5:cf:
0e:5c:f9:4d:f6:af:2d:56:a2:df:86:57:cd:81:18:
e5:44:ee:dc:59:3f:be:e9:e5:b4:91:82:08:13:67:
4a:56:b0:5a:f7:81:7a:e7:2a:5a:7f:7e:c4:47:41:
b3:b9:d7:a3:d8:bc:a4:9f:7e:05:2d:ae:47:d2:de:
41:1a:9a:17:30:96:bf:b5:66:a9:a0:16:fe:8f:f1:
a9:29:08:58:86:49:35:74:be:5e:c5:fb:70:74:c0:
cf:48:fb:38:4a:c0:6b:21:e9:85:2d:e2:d2:7e:86:
e1:60:40:46:60:52:77:52:5e:f5:a9:1c:5e:09:ff:
5f:aa:68:dc:4f:e6:b6:2b:a1:c8:41:b0:d2:a9:e7:
34:e2:f6:3e:7c:5b:7b:22:40:02:da:8f:73:51:52:
fa:61:2a:0d:80:23:47:c3:a0:58:6d:4e:03:88:45:
2e:c3:cf:ee:57:16:2c:f7:2f:4b:00:26:1b:f8:ea:
93:e6:81:4b:86:cf:99:01:13:03:1a:e4:41:80:fe:
f9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F5:5B:74:79:A0:D9:6B:B6:BE:E9:5D:D2:CA:D0:C8:90:4F:EC:B1
X509v3 Authority Key Identifier:
keyid:DB:FF:61:D5:C5:8E:6E:A6:EC:5C:F7:EE:6C:F3:53:A6:63:B1:B3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_9h1cWObqbsXPfubPNTpmOxs6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/eed1d6-6a72-4826-839c-b8b36f8956b7/1/2_9h1cWObqbsXPfubPNTpmOxs6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:f6:64:98:92:f0:32:f8:96:a5:7f:61:61:7b:5a:bd:3d:c9:
bf:45:e7:af:63:c8:dd:10:0e:71:f8:84:2e:95:53:4e:a4:13:
f7:93:47:e1:44:ff:95:1a:75:c5:79:92:6e:a4:5b:08:f1:ef:
8b:82:7e:ca:a2:a7:49:6a:85:d2:4a:41:0f:3a:86:f0:37:e4:
fc:91:bd:9e:cd:9e:87:96:ba:92:ff:13:d2:ac:29:5f:8a:ff:
72:a6:a7:98:81:c0:3a:24:c9:8c:40:ab:ec:be:23:00:c9:65:
98:e5:6b:1a:6d:b9:fd:3e:fd:2d:cb:f0:25:ea:b3:ea:c5:59:
08:6a:ee:1a:ba:38:08:92:32:f6:cd:3a:4a:73:c7:7d:69:e8:
b3:f5:9d:98:ca:7b:76:73:1a:66:ee:89:42:52:8f:09:f8:2c:
91:ff:3a:ea:c5:4a:db:c5:97:9a:f3:ec:c2:99:20:6e:26:27:
86:35:85:48:ed:73:08:14:49:0f:9a:a6:a9:07:b6:e7:ba:90:
3e:68:70:15:22:99:6f:bd:04:39:6d:92:11:17:f8:fd:3f:a5:
5c:9f:df:77:ef:6f:4c:86:0f:b7:67:29:b3:8c:95:c9:b5:c5:
23:a9:0c:41:8b:87:f4:11:44:69:aa:49:a3:58:2b:c7:3b:73:
23:fe:de:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:10:24 2026 by rpki-client