Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json)
Hash identifier: q25bqNKPfQ9C/b3PvufcpUhWkmVjKqhzU5y+8M3IKOs=
Subject key identifier: 57:4E:76:97:0E:08:B0:78:D2:FF:18:F5:1A:DE:18:F7:36:07:3E:BB
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 019D99623DB97102E5743F68BD7213DDE74B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
Manifest number: 153D
Signing time: Fri 17 Apr 2026 03:00:45 +0000
Manifest this update: Fri 17 Apr 2026 03:00:45 +0000
Manifest next update: Sat 18 Apr 2026 03:00:45 +0000
Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: nKIF0ggbSMZ/jNTt4zTI0PkTyWMtR2YHiRZSw2CodXo=)
2: B858kg8THjaSoEIim6530sspUXs.roa (hash: HCD5tBX+9y/cDnZBRIi513FjVWEfPLJ8ux8RH4V8Dpk=)
3: GRivXpYp4CuhiN76JDUjX3oocvQ.roa (hash: INwnsmHYjS772AhOCOKo1mO3+hjHZod9QoImR0vqNKc=)
4: PCyrz_7gQySJ-l_QlnLaYZdnukM.roa (hash: 8qLUqfkbCxjZKisO86t69Q/KwJjfGVGdDtnDpf4H3cE=)
5: dOKAlcT195hvrnl94GECXypnUw4.roa (hash: uCgRu9pSvcyUSoOdBM4Z/JT81zNcZoR+ge8afkxI5PA=)
6: kuAZ8COOrRF7D7fGL9v85feX7sY.roa (hash: MeqT2suPhasDZh73lRt2kV/r/fxAtR5VksxEngVFI8Q=)
7: x8_4aac4Nz-MFK0_jVyanCY1Njs.roa (hash: W//4mpSYdJPZzB2svcIDaGv0bAnhUuw6rNgGJNlJgIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:3d:b9:71:02:e5:74:3f:68:bd:72:13:dd:e7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Apr 17 03:00:45 2026 GMT
Not After : Apr 18 03:00:45 2026 GMT
Subject: CN=574e76970e08b078d2ff18f51ade18f736073ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:6d:23:83:63:ae:1f:0e:98:fa:61:af:15:
41:77:a9:83:bb:55:32:ef:7d:92:a3:91:2d:a5:af:
00:20:60:88:24:bc:93:3b:cf:c5:b7:5c:2e:4e:e1:
e9:f2:46:56:46:bf:a4:2f:30:97:83:13:92:a7:55:
f7:fa:6b:f0:1b:75:bc:25:e4:11:8c:75:7a:c0:b7:
72:15:78:7b:86:77:d6:8b:76:28:9e:1a:6b:64:58:
cc:7a:1c:d8:9f:75:db:20:f5:85:7a:04:2c:dc:44:
7f:ba:50:a9:59:f3:43:ac:d8:80:2a:4d:68:4a:52:
4c:ed:9e:ae:c6:ca:f6:22:d0:d7:08:27:d0:7c:b6:
24:09:55:6a:18:dc:24:48:0f:8d:22:0a:3f:50:22:
82:71:e0:d9:84:4a:58:23:4f:ce:06:63:e9:28:ac:
9e:9b:ec:74:ee:17:16:9c:e9:7f:82:06:dd:5a:4b:
dc:a5:13:83:3e:83:7f:f5:3b:32:7d:6b:f6:8b:75:
1a:26:32:1c:32:54:36:0f:95:0e:3f:5f:fe:93:0b:
3d:e5:ce:2c:94:1d:7f:e6:1f:12:de:8f:0c:4d:ed:
88:d3:ec:e4:fd:00:42:d6:43:a3:37:65:31:46:45:
b2:0f:05:8d:06:6a:7e:cc:da:c3:ab:fa:2b:92:e0:
55:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4E:76:97:0E:08:B0:78:D2:FF:18:F5:1A:DE:18:F7:36:07:3E:BB
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:32:9d:4e:a3:7d:85:93:15:62:fd:11:28:7b:77:6f:27:ba:
19:0b:e7:8a:20:99:85:94:39:da:b7:6f:4b:fb:2b:a1:64:cc:
06:39:0b:ff:8a:af:7f:ab:df:a1:55:98:a2:84:94:c9:fd:85:
e1:74:b4:8d:09:a9:0c:c4:8f:53:a4:49:b4:92:58:e2:0c:ed:
37:75:d5:fc:89:e3:34:84:7e:f0:cc:1a:bd:60:58:e4:d0:7f:
18:c0:85:9c:0e:79:8e:27:ba:35:29:d2:08:48:fd:4f:65:4b:
c6:04:0a:76:76:89:e8:12:3c:f3:20:c5:6a:02:e7:be:86:6e:
5a:36:f4:0b:58:01:10:d0:83:6e:33:e7:5e:56:d8:a1:d2:76:
38:1b:dc:ab:6d:5d:14:71:93:b9:3a:f6:73:ec:68:3a:ea:6f:
a0:6b:c7:75:58:c6:9f:4a:1c:f7:dd:75:41:27:64:f6:d9:78:
8a:98:d5:41:9b:dc:09:97:2f:35:0f:fa:5d:5d:0b:be:59:46:
b5:87:69:84:3a:97:00:49:03:e2:c4:30:ce:87:90:e1:c4:38:
25:91:d6:fc:0d:1d:f1:e8:e2:7c:50:9f:24:2e:10:64:fc:73:
ee:2c:a5:c9:16:ca:08:d5:90:d2:44:1c:12:8d:fe:9f:3a:1d:
a7:fd:36:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYj25cQLldD9ovXIT3edLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDYzMTU2YzE4MzZmMTZjM2I0MzBlZmZiYjcyYWM2OTkz
MmVhOWIwHhcNMjYwNDE3MDMwMDQ1WhcNMjYwNDE4MDMwMDQ1WjAzMTEwLwYDVQQD
Eyg1NzRlNzY5NzBlMDhiMDc4ZDJmZjE4ZjUxYWRlMThmNzM2MDczZWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskBtI4Njrh8OmPphrxVBd6mDu1Uy
732So5Etpa8AIGCIJLyTO8/Ft1wuTuHp8kZWRr+kLzCXgxOSp1X3+mvwG3W8JeQR
jHV6wLdyFXh7hnfWi3YonhprZFjMehzYn3XbIPWFegQs3ER/ulCpWfNDrNiAKk1o
SlJM7Z6uxsr2ItDXCCfQfLYkCVVqGNwkSA+NIgo/UCKCceDZhEpYI0/OBmPpKKye
m+x07hcWnOl/ggbdWkvcpRODPoN/9TsyfWv2i3UaJjIcMlQ2D5UOP1/+kws95c4s
lB1/5h8S3o8MTe2I0+zk/QBC1kOjN2UxRkWyDwWNBmp+zNrDq/orkuBV+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFdOdpcOCLB40v8Y9RreGPc2Bz67MB8GA1UdIwQY
MBaAFNnWMVbBg28Ww7Qw7/u3KsaZMuqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMt
ZmRhMDExZTVjOTcyLzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMtZmRhMDExZTVjOTcy
LzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjKdTqN9
hZMVYv0RKHt3bye6GQvniiCZhZQ52rdvS/sroWTMBjkL/4qvf6vfoVWYooSUyf2F
4XS0jQmpDMSPU6RJtJJY4gztN3XV/InjNIR+8MwavWBY5NB/GMCFnA55jie6NSnS
CEj9T2VLxgQKdnaJ6BI88yDFagLnvoZuWjb0C1gBENCDbjPnXlbYodJ2OBvcq21d
FHGTuTr2c+xoOupvoGvHdVjGn0oc9911QSdk9tl4ipjVQZvcCZcvNQ/6XV0LvllG
tYdphDqXAEkD4sQwzoeQ4cQ4JZHW/A0d8ejifFCfJC4QZPxz7iylyRbKCNWQ0kQc
Eo3+nzodp/02Tg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:53:09 2026 by rpki-client