Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: 0A6MeRTG5wQ9VNP9oV4XZRbdh07p5FMDv9BoPdexByo=
Subject key identifier: 58:8F:88:9F:C2:09:DC:F8:63:9F:36:94:20:CE:37:5D:B2:EA:A7:79
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 019EC11252BDC896FEE3CC60BF15E9ABD0E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 1775
Signing time: Sat 13 Jun 2026 13:01:03 +0000
Manifest this update: Sat 13 Jun 2026 13:01:03 +0000
Manifest next update: Sun 14 Jun 2026 13:01:03 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: 2DQ+CZp5Flns6f/gK8i/rYsHinVwZx+jYSlAnuIPHwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:52:bd:c8:96:fe:e3:cc:60:bf:15:e9:ab:d0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: Jun 13 13:01:03 2026 GMT
Not After : Jun 14 13:01:03 2026 GMT
Subject: CN=588f889fc209dcf8639f369420ce375db2eaa779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:14:39:3b:c4:7c:9e:a0:20:a9:4d:f7:02:e9:
32:75:59:5e:41:af:9b:14:6d:23:d3:b3:46:db:90:
8b:13:89:bf:e8:b5:cd:95:c3:ae:fa:61:d6:ad:ed:
2d:2c:d8:ca:8d:af:ef:c3:da:ed:e6:e1:a0:15:d7:
59:90:76:3d:12:5b:2e:96:ef:c6:33:14:ff:cb:3d:
0b:40:e8:27:00:16:db:50:fa:07:96:69:b2:44:f6:
f8:da:b2:46:8f:b3:21:72:7a:a1:46:3d:c8:5d:ec:
f6:34:99:8e:fb:f8:28:72:d0:a1:f0:fc:68:85:2f:
e6:99:63:f7:7a:f8:21:5a:23:8f:f1:52:c4:44:93:
30:7b:0a:ef:7f:9d:63:35:3b:df:e5:1c:3b:d3:f0:
5d:2e:d4:b2:d9:c7:bf:6b:d2:40:36:3c:f0:ff:11:
9d:d6:d6:15:26:56:75:3c:fd:00:4c:6e:68:39:be:
e8:ee:e7:16:f5:73:89:09:7b:02:cf:ce:24:e9:25:
82:ab:82:9d:c1:76:77:8e:8f:82:1b:e1:3c:17:22:
a2:ea:9f:f2:be:1e:e8:7a:18:cb:37:1c:73:9c:72:
8f:e2:46:80:4e:f3:a9:f3:6a:6e:dc:e4:53:2f:84:
7a:ed:e6:6c:da:74:2f:a3:3c:84:58:83:f4:9b:2c:
c8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8F:88:9F:C2:09:DC:F8:63:9F:36:94:20:CE:37:5D:B2:EA:A7:79
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:0e:6b:10:2d:d0:27:cf:fc:04:69:eb:e9:de:62:69:a8:5b:
f3:0a:78:23:af:c9:ca:d1:91:5f:d5:c9:1a:16:72:32:f5:0c:
40:85:35:46:e2:c0:c1:5e:65:60:30:a4:12:e8:c7:25:40:34:
2d:35:35:44:21:99:ff:1b:06:45:b7:68:44:36:7f:7d:f1:08:
7c:4b:ce:23:b1:e1:da:a2:21:0f:cd:96:2a:71:a8:8a:da:3c:
65:f7:36:15:60:80:d4:7c:4c:b1:1e:79:c8:14:79:55:6e:d4:
4a:22:f1:69:b3:66:e4:54:b5:55:1d:38:1a:02:60:12:83:ee:
4b:c3:0d:fb:de:a2:dd:bb:ff:43:5f:07:52:2a:b2:e1:09:3e:
2d:5b:7f:48:60:53:32:71:be:d4:32:a6:8d:7a:8c:79:c7:af:
d0:eb:96:3b:56:77:a8:59:c6:6c:0c:a0:cf:ae:2d:65:60:f0:
f7:8d:6f:7f:d3:38:74:c2:34:31:ab:1e:5f:4b:ec:52:27:6c:
80:26:e1:95:0a:17:17:c2:13:c6:af:fc:97:1a:7e:db:9c:e3:
bf:32:27:06:9f:3e:d8:57:9b:d7:14:a0:df:dd:58:68:3e:5e:
3f:8d:8d:3b:4b:3a:23:7e:20:35:c2:4c:52:eb:52:25:66:7d:
c9:76:fd:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:04:33 2026 by rpki-client