Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json)
Hash identifier: biVtk3+W5eP/AOEAMX2ATQFb4EIi5ieue8yYiyq6+VM=
Subject key identifier: 51:85:BC:82:15:61:CF:7B:62:47:DF:6B:63:E4:36:68:DE:93:31:BB
Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Certificate serial: 019D99D0BA3BB28C9CC146D7CD5E923484A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
Manifest number: EF
Signing time: Fri 17 Apr 2026 05:01:26 +0000
Manifest this update: Fri 17 Apr 2026 05:01:26 +0000
Manifest next update: Sat 18 Apr 2026 05:01:26 +0000
Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: Nv2RYPWLzA1GaVKNjbJ8OD5UGPxEQ0VlkUc7puQGfd0=)
2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=)
3: 6SEduMHXynvLbGLXlQ-nCG4KDz0.roa (hash: hLjPkc07rz71V/VBtG395boX8ca8vKM/q8gofGURfjw=)
4: RGSDwCL_3DhopF7DDMpgOjHlruI.roa (hash: I4TOgGmivQDbOrWFawlOof5iCr25D2qkBqiHBfM3G6Y=)
5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=)
6: nbL3W9rua5RoYoYaynypFHyWDSM.roa (hash: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:ba:3b:b2:8c:9c:c1:46:d7:cd:5e:92:34:84:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Validity
Not Before: Apr 17 05:01:26 2026 GMT
Not After : Apr 18 05:01:26 2026 GMT
Subject: CN=5185bc821561cf7b6247df6b63e43668de9331bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:34:d0:63:67:6c:b5:75:48:a5:25:c4:37:d8:
8b:5e:bc:dd:f9:21:e1:b8:1b:53:07:9f:4f:f4:5d:
9a:37:d2:15:15:cb:e0:6e:55:92:3d:b8:ed:82:86:
58:e1:a9:11:73:cd:e1:00:26:cb:43:c5:90:19:de:
d7:8d:09:1b:20:62:21:7a:d9:16:a7:42:c4:5c:53:
30:3d:34:8f:c6:0f:68:b8:35:05:d9:fc:d7:ed:62:
f5:8a:d2:ab:29:8f:d3:4b:45:b4:38:18:4f:8b:fc:
bc:c0:8c:3d:cf:98:c6:b2:31:3f:aa:70:48:3f:cd:
50:91:1b:37:63:0c:3f:25:1e:b2:e0:e7:d6:ed:a7:
3f:4a:76:cb:61:e9:a0:74:a4:47:3b:73:41:89:0e:
3d:45:6e:aa:86:81:52:c6:34:cf:42:c1:d8:7a:e1:
ff:30:de:26:35:30:38:f8:5d:ea:65:c3:9c:9e:02:
79:8d:bb:f2:23:eb:6a:9e:d5:ec:62:b8:6e:a9:e0:
28:ba:97:17:12:3a:0e:a2:14:41:01:b9:1f:31:d0:
89:60:5c:2a:02:eb:75:dc:c4:ff:74:69:4a:4d:a9:
32:9a:26:fe:cb:d3:d8:a7:ca:f7:f0:fb:a9:60:8f:
b9:d5:59:3a:ee:ca:89:4d:ad:c0:c0:53:8e:db:7d:
5c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:85:BC:82:15:61:CF:7B:62:47:DF:6B:63:E4:36:68:DE:93:31:BB
X509v3 Authority Key Identifier:
keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a8:ea:cf:13:71:2e:07:ad:6d:c6:05:10:f2:36:30:d2:07:
be:52:e6:5f:1f:8f:ea:ae:6a:cd:99:f8:d7:47:16:d3:0b:bc:
6f:77:93:2f:ea:f8:77:c7:2f:62:c7:fa:45:ef:77:7b:15:1e:
7f:f8:6f:fc:a5:48:5f:d0:0b:0c:ff:15:83:cf:4a:f1:05:a5:
c1:b0:96:65:3a:6c:38:51:59:04:2b:b5:16:02:b4:18:32:98:
ed:ce:46:ee:fe:8e:11:b6:6b:9e:29:f3:48:7c:fc:2b:e4:67:
85:a8:87:7e:ac:d7:17:d7:94:fd:9b:20:74:84:b2:a9:e2:7f:
a9:c7:b0:96:33:56:06:a5:49:4c:b4:3e:24:7d:3d:91:dd:f6:
c9:d6:1b:3f:cf:b7:f3:d7:97:a0:0d:e7:5d:78:48:e7:fb:92:
5e:8a:f2:6a:8f:48:76:a1:20:7a:76:65:b1:66:18:9e:c3:55:
b9:4d:f9:e8:5d:82:0e:b2:51:26:aa:89:68:e2:a1:d5:5b:61:
ee:32:ed:db:b7:0c:80:88:07:86:44:5f:a9:a1:2c:9e:e4:ba:
24:dd:81:f4:ad:a8:6a:8a:36:17:78:14:e7:e9:b6:eb:71:f2:
15:e7:51:e1:78:81:b9:bf:13:45:15:73:90:04:a5:fc:ac:ef:
b9:d4:f1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:11:15 2026 by rpki-client