Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json)
Hash identifier: rE65y9qkQSFUcwkSNRLgcvwkUL4sHUrayk6ez1dO0cc=
Subject key identifier: 43:8A:E7:A9:38:B8:34:70:25:08:91:95:FA:0B:5F:8C:13:EE:70:AE
Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Certificate serial: 019CA869EBB7381C5254456F3081E6B30641
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
Manifest number: 72
Signing time: Sun 01 Mar 2026 08:00:39 +0000
Manifest this update: Sun 01 Mar 2026 08:00:39 +0000
Manifest next update: Mon 02 Mar 2026 08:00:39 +0000
Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: o6r/6kF36slCGDymjLH2k0ZWFF5ccpRqBbVWYIKblMU=)
2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=)
3: 6SEduMHXynvLbGLXlQ-nCG4KDz0.roa (hash: hLjPkc07rz71V/VBtG395boX8ca8vKM/q8gofGURfjw=)
4: RGSDwCL_3DhopF7DDMpgOjHlruI.roa (hash: I4TOgGmivQDbOrWFawlOof5iCr25D2qkBqiHBfM3G6Y=)
5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=)
6: nbL3W9rua5RoYoYaynypFHyWDSM.roa (hash: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:69:eb:b7:38:1c:52:54:45:6f:30:81:e6:b3:06:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Validity
Not Before: Mar 1 08:00:39 2026 GMT
Not After : Mar 2 08:00:39 2026 GMT
Subject: CN=438ae7a938b8347025089195fa0b5f8c13ee70ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2b:5b:05:a6:99:f9:4a:bc:f6:e4:c3:b5:f1:
ff:49:0a:b9:9e:77:42:d9:1a:39:5f:f6:32:24:f1:
84:87:5b:e3:03:b2:56:4e:e6:a8:8e:05:68:6e:57:
0d:4b:d5:70:56:1f:09:0b:3b:cb:c8:a1:c3:46:f4:
c0:d1:f9:5f:40:46:53:f6:3f:69:99:7f:2e:8d:65:
82:59:42:fb:5a:50:5c:05:90:08:d6:56:2f:8d:66:
70:08:c0:3a:f0:b5:f7:7e:0e:00:5d:f4:b9:35:6f:
c2:0d:a4:e5:06:eb:ac:32:a1:c4:60:d8:c7:a2:15:
66:10:1c:17:2b:5b:75:8d:0f:61:f7:4e:ed:26:45:
5b:3a:ca:1a:d7:e2:99:b0:35:a6:76:7c:f9:1c:34:
37:ae:2b:e4:ca:87:35:e4:59:d3:1c:cc:36:f4:3d:
b0:04:8b:31:6e:d9:47:38:32:ad:af:ea:fa:a7:8b:
94:6f:cb:b6:27:c1:77:e6:e9:7a:4b:f9:2d:5d:9a:
4d:d1:7c:7d:e0:4d:6a:19:b0:5d:70:97:2c:b5:e5:
23:b2:f8:6a:bd:ce:fe:a8:d3:b2:74:39:4d:4e:b2:
16:2b:5d:82:31:b4:6a:a9:bd:ed:50:15:7b:fb:10:
43:b1:75:4c:e9:d3:48:14:10:65:e7:70:9c:80:f1:
7c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8A:E7:A9:38:B8:34:70:25:08:91:95:FA:0B:5F:8C:13:EE:70:AE
X509v3 Authority Key Identifier:
keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:ac:92:ec:35:dd:ad:da:45:a4:18:03:36:43:db:37:89:7f:
f3:ed:84:bb:7b:1d:7c:f8:2a:5b:80:e9:d9:24:d2:8d:5e:26:
75:d7:1a:a1:3b:95:11:ff:76:0d:27:1c:a5:bc:5c:35:df:ef:
3d:a2:33:00:10:d3:a0:89:cf:72:a2:e8:10:60:27:31:e1:4c:
e4:20:12:f0:6b:71:ae:92:06:ad:40:c7:47:7d:2e:79:28:ba:
90:47:1b:5b:c0:45:cc:29:6f:e7:ab:86:f8:e0:bb:5c:6d:27:
6e:71:e6:f2:78:ce:bf:cb:2c:58:d5:61:75:cf:93:14:51:eb:
4e:1e:47:32:30:75:99:e1:44:2c:f2:72:5f:a2:d8:40:7e:00:
25:05:43:a1:56:ec:59:25:83:25:ea:58:dd:2e:d1:f5:6a:6b:
0d:13:2b:79:55:9a:9b:33:da:d1:17:80:d5:2c:ee:0f:74:ef:
6e:af:04:48:4b:00:f5:09:5c:c9:23:f5:0e:ef:f6:97:e1:6a:
d3:d9:6f:45:96:12:68:16:f4:67:38:5e:0b:f6:f4:82:61:b9:
ce:a8:5e:2e:93:05:a8:33:28:5e:64:76:2c:70:62:c3:66:ea:
2d:fb:93:83:3a:15:93:26:23:c4:ec:ae:08:a1:da:1a:b0:d7:
06:bf:69:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:23:17 2026 by rpki-client