Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: YGust7MlScdGZGVhjVCz3Uy8IuSJGTmPcuJuE0+Sdcw=
Subject key identifier: 8B:18:15:48:CA:63:05:6F:C8:08:F3:DE:36:EB:7F:7D:1E:60:BD:67
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019D99D002BE34A69D5FCF28D81A2C7E8BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 15CF
Signing time: Fri 17 Apr 2026 05:00:39 +0000
Manifest this update: Fri 17 Apr 2026 05:00:39 +0000
Manifest next update: Sat 18 Apr 2026 05:00:39 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: 8szckUUZAO1ICRBY/Sj1TjBWsDQA8XDHRV/v/ccASvI=)
2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:02:be:34:a6:9d:5f:cf:28:d8:1a:2c:7e:8b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Apr 17 05:00:39 2026 GMT
Not After : Apr 18 05:00:39 2026 GMT
Subject: CN=8b181548ca63056fc808f3de36eb7f7d1e60bd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bc:87:7c:c6:f2:46:af:5f:ba:26:aa:c3:89:
4d:e5:dd:d6:62:c1:60:e9:9a:6f:14:03:16:30:06:
cf:68:63:54:6b:72:65:74:21:39:fe:95:cc:c9:c5:
f2:12:14:0e:bd:9f:2e:b8:a7:bc:4e:8b:99:27:14:
a3:fc:65:43:2d:ed:4d:9f:a4:13:f0:a4:e7:55:61:
51:27:50:b9:57:01:0d:4e:52:cf:2a:20:84:32:0f:
67:df:70:42:ca:aa:f4:3b:55:81:0c:d6:36:fd:ea:
6f:9e:e2:05:81:ca:a9:da:01:54:a0:e1:25:9f:72:
b1:88:0a:9a:1d:6a:26:d8:22:ce:31:a9:91:81:00:
91:e2:97:d8:63:b7:a3:de:b2:b4:99:5c:10:8c:36:
dc:ca:5e:a5:91:2e:d9:ad:65:79:5e:72:6f:2b:cc:
e1:d3:a3:81:21:2b:06:53:4b:bd:0b:90:6e:e7:b8:
4e:c0:21:cf:35:d5:30:ee:0a:50:73:29:bd:a2:ac:
e2:6b:f4:ea:15:49:ec:91:64:82:34:43:11:c0:4a:
3b:cb:1f:ab:ba:50:85:2d:78:c5:4e:24:96:d8:9b:
85:f4:8d:7f:b4:b4:33:4d:5f:2f:eb:40:82:79:cd:
ed:09:0d:8d:37:42:3a:1a:24:10:4b:29:8d:20:ed:
53:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:18:15:48:CA:63:05:6F:C8:08:F3:DE:36:EB:7F:7D:1E:60:BD:67
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:81:77:e6:c9:95:9c:00:6b:49:c3:4f:18:82:bf:7d:63:f6:
1a:80:15:8d:73:bd:b2:8d:b0:8c:78:25:c1:3e:f7:ad:26:b5:
9c:fa:1f:2c:b0:d5:8e:d0:47:aa:e4:06:ce:09:0e:64:d5:a4:
51:c9:23:df:cd:58:b7:42:de:ef:61:db:51:88:ea:70:b6:c3:
d1:4e:83:7d:2e:00:96:44:5b:c5:9c:14:fb:a5:ca:08:31:e5:
0e:2f:8e:19:dd:7c:a9:ec:18:91:6b:ed:f0:d6:77:0f:d3:80:
20:1c:26:f2:0b:61:f2:3e:0d:93:33:60:9b:4b:83:a6:ea:3c:
65:e0:93:4f:c9:06:dd:03:cc:2e:35:73:ba:36:4c:20:00:1b:
a2:81:6e:4c:d6:3e:3b:18:d2:7e:08:d4:3e:f8:14:cf:fb:e1:
2e:37:11:4a:a8:74:29:75:9d:bf:2c:d7:bf:d8:51:aa:a5:7f:
da:31:a2:12:0a:4c:f5:b8:d3:58:13:88:37:c6:4a:a3:6f:d2:
4d:c2:70:e4:75:fc:1d:90:d3:4e:84:65:9f:84:ef:89:75:86:
6f:07:a9:e6:65:04:bf:35:48:dd:7f:3f:c2:c8:b1:16:8f:be:
80:91:30:76:ef:6b:06:17:d8:97:30:47:7e:1a:82:5a:a4:c4:
06:e1:c9:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0AK+NKadX88o2BosfovCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NzE5OThhYTE0MGFiN2MxZmYyNDBlYWIwYzkyMzU5MTNj
OTZlOGEwHhcNMjYwNDE3MDUwMDM5WhcNMjYwNDE4MDUwMDM5WjAzMTEwLwYDVQQD
Eyg4YjE4MTU0OGNhNjMwNTZmYzgwOGYzZGUzNmViN2Y3ZDFlNjBiZDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LyHfMbyRq9fuiaqw4lN5d3WYsFg
6ZpvFAMWMAbPaGNUa3JldCE5/pXMycXyEhQOvZ8uuKe8TouZJxSj/GVDLe1Nn6QT
8KTnVWFRJ1C5VwENTlLPKiCEMg9n33BCyqr0O1WBDNY2/epvnuIFgcqp2gFUoOEl
n3KxiAqaHWom2CLOMamRgQCR4pfYY7ej3rK0mVwQjDbcyl6lkS7ZrWV5XnJvK8zh
06OBISsGU0u9C5Bu57hOwCHPNdUw7gpQcym9oqzia/TqFUnskWSCNEMRwEo7yx+r
ulCFLXjFTiSW2JuF9I1/tLQzTV8v60CCec3tCQ2NN0I6GiQQSymNIO1T3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIsYFUjKYwVvyAjz3jbrf30eYL1nMB8GA1UdIwQY
MBaAFNhxmYqhQKt8H/JA6rDJI1kTyW6KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUt
NWEzNGU1MmIwYjEwLzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUtNWEzNGU1MmIwYjEw
LzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAIF35smV
nABrScNPGIK/fWP2GoAVjXO9so2wjHglwT73rSa1nPofLLDVjtBHquQGzgkOZNWk
Uckj381Yt0Le72HbUYjqcLbD0U6DfS4AlkRbxZwU+6XKCDHlDi+OGd18qewYkWvt
8NZ3D9OAIBwm8gth8j4NkzNgm0uDpuo8ZeCTT8kG3QPMLjVzujZMIAAbooFuTNY+
OxjSfgjUPvgUz/vhLjcRSqh0KXWdvyzXv9hRqqV/2jGiEgpM9bjTWBOIN8ZKo2/S
TcJw5HX8HZDTToRln4TviXWGbwep5mUEvzVI3X8/wsixFo++gJEwdu9rBhfYlzBH
fhqCWqTEBuHJng==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:22:04 2026 by rpki-client