Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: +/9XhmjboUIpA1bb2TytIwQvN72uqNoFktYoAXxixHg=
Subject key identifier: 29:E7:A1:4B:A4:11:86:B0:E9:BF:2D:E9:09:EE:B8:1D:63:51:50:87
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019EC1491819562A0F4A30CA104C489404B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1668
Signing time: Sat 13 Jun 2026 14:00:53 +0000
Manifest this update: Sat 13 Jun 2026 14:00:53 +0000
Manifest next update: Sun 14 Jun 2026 14:00:53 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: kJVf72mfjyBrKFC9U4NgA1zfKX8WCxe9JAj3qzNTOmg=)
2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:18:19:56:2a:0f:4a:30:ca:10:4c:48:94:04:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Jun 13 14:00:53 2026 GMT
Not After : Jun 14 14:00:53 2026 GMT
Subject: CN=29e7a14ba41186b0e9bf2de909eeb81d63515087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e2:e2:ab:dc:b5:81:f8:98:80:cd:bc:25:04:
38:96:ff:5f:93:22:b3:e8:b6:bb:15:e2:b8:e6:11:
c7:23:65:bc:99:61:5d:08:b9:8b:c4:3d:6d:b7:24:
58:69:fe:39:a5:e5:f6:14:d6:05:3a:04:e2:d0:ee:
c6:0c:24:a6:e7:8b:93:16:28:3a:dd:a4:53:8b:57:
68:68:54:ac:fb:a3:71:98:bc:81:ce:da:e2:cd:ba:
a7:f4:42:5c:c5:4f:2a:88:71:2e:1f:13:cc:cc:70:
78:b7:44:5f:a5:24:e7:7e:30:37:62:0a:ea:87:46:
30:d6:d5:6f:30:8e:bb:92:25:92:eb:e5:3e:04:38:
3e:74:2c:c4:f9:d1:9e:b0:be:4a:9c:fd:24:c5:05:
93:38:ee:f7:3b:2c:97:2b:1c:6d:93:c9:0f:3c:20:
b0:25:20:13:52:d4:a9:1b:d8:46:86:c1:79:44:84:
2a:5a:da:ca:25:c2:9e:eb:0f:1c:84:59:ed:1f:3e:
51:a7:7d:1e:12:22:57:98:5c:e3:ea:bf:76:54:09:
fd:d7:b8:09:0b:1f:e6:81:7c:62:6e:ac:9e:22:88:
cb:dd:23:62:38:dd:59:83:4a:2a:8a:ea:59:7a:db:
5e:be:13:1b:fd:8d:4d:4a:71:df:08:9b:30:bd:5a:
ce:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E7:A1:4B:A4:11:86:B0:E9:BF:2D:E9:09:EE:B8:1D:63:51:50:87
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:d7:ac:e5:91:0f:5c:a8:8f:16:6a:99:04:0d:17:fc:93:ca:
f4:45:f9:2a:f1:4b:52:8f:1b:9d:5d:82:64:0a:60:4d:58:b1:
17:c7:70:bc:10:b4:32:e2:04:dd:36:eb:6a:0a:69:7d:16:4b:
a3:4f:2a:ba:3c:b8:5c:da:60:82:fe:1d:52:28:b1:38:bb:ff:
71:6b:6a:12:47:34:6f:5d:8f:4c:44:24:a3:03:31:91:ac:83:
8c:bb:a2:2f:31:cc:6d:f9:ea:35:49:c9:4a:e0:fc:c5:ca:b9:
3a:e8:96:d2:2c:31:b9:bf:62:1c:a2:3b:97:fa:bd:dd:aa:8d:
7d:b2:88:78:8f:c0:c8:38:12:61:cc:39:42:e5:8d:6c:d4:84:
ab:49:2f:06:89:06:3e:e7:b2:e6:71:8f:67:c8:d7:a9:2f:91:
6c:e0:b5:f6:c5:ab:58:86:78:6b:61:bf:73:35:5e:a8:91:1d:
60:12:ff:33:d8:07:d1:4b:83:52:c0:6f:29:3c:8d:5a:47:61:
f1:d2:71:2d:88:87:a2:bb:cd:f5:fb:ad:dc:da:e0:6c:39:6f:
b2:04:c3:60:54:e6:92:98:52:21:cb:bf:a3:b2:ab:89:d9:0f:
0f:25:98:b4:cb:ce:f1:6c:15:ec:9d:72:6b:a5:cd:ae:17:d8:
80:25:e4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:33:05 2026 by rpki-client