Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: +4kJkGHnu3kBiRLbrL7tFFPzPqiL3G/EmppNEoO3o/s=
Subject key identifier: 94:31:55:0B:69:A4:1C:19:23:7F:E4:4F:38:EB:1F:03:11:FC:C4:2C
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 019CADFE568BBC7C272B69F56400EDFB7B2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 1662
Signing time: Mon 02 Mar 2026 10:00:52 +0000
Manifest this update: Mon 02 Mar 2026 10:00:52 +0000
Manifest next update: Tue 03 Mar 2026 10:00:52 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: MEWJTX1kpVebDGowVYX+ZCkW6Aq/j8DNM6FHhrr3aPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:56:8b:bc:7c:27:2b:69:f5:64:00:ed:fb:7b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: Mar 2 10:00:52 2026 GMT
Not After : Mar 3 10:00:52 2026 GMT
Subject: CN=9431550b69a41c19237fe44f38eb1f0311fcc42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:39:de:19:87:59:f5:fe:84:71:5e:c0:4b:
bd:f1:e5:1c:f8:08:78:7c:be:ee:fa:3b:42:c9:fb:
f2:c0:56:9b:aa:72:4c:04:49:af:97:09:7f:2e:e2:
09:7b:9b:96:e7:3f:6a:44:d4:67:7d:6d:b2:4e:28:
08:6d:21:f2:ba:25:1e:d0:a8:5f:1b:f1:aa:fb:ac:
f5:f3:70:29:6c:4e:bc:34:95:b9:c8:6c:95:40:cc:
fc:c0:c4:62:ca:5a:f7:f9:d5:c8:a1:f5:a1:b5:08:
72:f9:19:ee:82:27:c0:ac:d7:4e:44:ea:ab:51:a3:
1c:bb:a9:81:f5:87:40:06:7f:42:94:9e:50:6f:41:
36:4b:9a:be:2a:d5:cd:c2:de:9b:a8:31:95:68:00:
44:aa:21:0b:d4:13:da:a5:3b:ad:60:1a:5f:48:da:
cd:49:0a:95:7a:d4:f4:95:11:d5:72:56:f9:fe:04:
c6:94:8f:ae:48:98:1a:63:6f:21:d3:fd:f9:23:e1:
88:b4:13:42:5a:cd:eb:ef:26:14:62:be:74:fd:83:
46:8e:61:e0:a1:03:06:2d:12:52:5f:7b:32:84:f6:
30:77:f1:6c:f9:14:d6:b4:fc:81:c9:15:5e:9a:97:
7d:b5:46:2e:78:56:06:51:5d:73:af:7a:0d:5a:01:
b1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:31:55:0B:69:A4:1C:19:23:7F:E4:4F:38:EB:1F:03:11:FC:C4:2C
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:2e:1e:ec:25:1e:98:3b:ba:ce:3a:3e:9c:62:bc:8e:2c:85:
df:9d:b0:57:06:eb:19:fb:d8:1a:f3:9c:4c:6e:80:53:da:72:
f2:be:43:51:78:32:50:f6:cd:aa:24:5a:1a:1c:53:55:77:19:
80:7e:68:e9:1b:d5:36:a3:78:2d:0e:dd:18:bd:52:7c:6b:07:
e5:e2:20:4c:23:15:b2:c1:3b:7d:81:b9:81:f7:94:d4:21:5a:
ab:63:f0:b8:b3:5f:f7:00:8f:ed:3c:fa:5a:16:b6:c7:d7:5d:
f3:6d:8f:f4:97:d1:31:95:ba:8d:94:c9:72:ed:8f:f7:24:70:
d0:ab:9a:5e:bc:ed:72:b8:a0:68:df:93:4f:e8:04:91:a9:9d:
9a:00:6c:71:52:33:33:d4:93:17:45:1a:55:80:3a:34:a6:3f:
0e:eb:ad:53:ab:4b:0e:9e:09:df:b1:e4:1c:1f:a3:ed:17:b3:
96:8c:66:3c:5a:d5:d2:3c:ad:09:14:8d:ee:4a:2b:bb:b3:d6:
0f:88:b0:de:71:36:8f:df:67:b2:0c:5a:02:c2:73:50:f2:4b:
f5:c6:b1:87:fe:cb:62:18:77:21:23:1f:5d:ca:32:56:9b:9f:
e1:d2:01:15:02:15:43:01:06:bb:aa:29:07:cf:e4:6e:59:38:
18:3b:6b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:19:50 2026 by rpki-client