Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json)
Hash identifier: ubFzS351X/P1b6l7XBDscYkvIkrOjiSnYM3Xt9Eghlo=
Subject key identifier: 75:E4:32:2B:9B:CA:14:65:7A:47:0B:6A:12:0E:B0:16:1D:15:82:0D
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 019CA9EAD8597BF1351B2C07ACD83444D71A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
Manifest number: 14C1
Signing time: Sun 01 Mar 2026 15:01:06 +0000
Manifest this update: Sun 01 Mar 2026 15:01:06 +0000
Manifest next update: Mon 02 Mar 2026 15:01:06 +0000
Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: JfqN8ocSb0pq/9FNRevTbpqs7bFPzPduDKwc7amOdRE=)
2: B858kg8THjaSoEIim6530sspUXs.roa (hash: HCD5tBX+9y/cDnZBRIi513FjVWEfPLJ8ux8RH4V8Dpk=)
3: GRivXpYp4CuhiN76JDUjX3oocvQ.roa (hash: INwnsmHYjS772AhOCOKo1mO3+hjHZod9QoImR0vqNKc=)
4: PCyrz_7gQySJ-l_QlnLaYZdnukM.roa (hash: 8qLUqfkbCxjZKisO86t69Q/KwJjfGVGdDtnDpf4H3cE=)
5: dOKAlcT195hvrnl94GECXypnUw4.roa (hash: uCgRu9pSvcyUSoOdBM4Z/JT81zNcZoR+ge8afkxI5PA=)
6: kuAZ8COOrRF7D7fGL9v85feX7sY.roa (hash: MeqT2suPhasDZh73lRt2kV/r/fxAtR5VksxEngVFI8Q=)
7: x8_4aac4Nz-MFK0_jVyanCY1Njs.roa (hash: W//4mpSYdJPZzB2svcIDaGv0bAnhUuw6rNgGJNlJgIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:d8:59:7b:f1:35:1b:2c:07:ac:d8:34:44:d7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Mar 1 15:01:06 2026 GMT
Not After : Mar 2 15:01:06 2026 GMT
Subject: CN=75e4322b9bca14657a470b6a120eb0161d15820d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f3:9a:82:e9:af:21:99:78:a5:eb:24:0a:50:
37:55:26:ed:8e:b7:6f:ab:01:50:15:81:b0:a5:f5:
9b:e5:b3:49:e1:2c:90:11:fd:76:cc:f5:9a:f3:ed:
5d:fa:fc:a3:61:48:57:99:41:fa:90:81:95:2a:05:
b0:75:03:de:09:d0:63:8a:7a:a1:bf:4c:11:a6:79:
c2:62:cc:cf:21:23:92:7a:e5:74:47:92:44:b7:40:
a7:94:96:56:3f:78:a8:21:a2:86:fc:54:5f:ab:52:
6a:e8:c1:cf:53:10:40:fa:df:63:4c:a0:1c:75:05:
76:6a:15:93:ee:fe:6a:cd:0e:ed:60:32:7a:53:8f:
e7:c2:7c:71:ec:43:cf:02:2f:59:7a:9a:d4:fb:61:
6b:25:58:86:ba:4a:49:63:89:3d:33:d7:b0:c2:0a:
7e:d1:06:b7:7d:b3:a1:5f:ec:5a:2f:79:46:35:a3:
a9:6c:21:b2:d0:28:4e:81:85:e1:dc:28:67:16:c4:
11:08:d1:2f:5f:c1:04:76:67:3a:48:9b:92:6d:62:
d9:e2:48:cf:a7:6a:c7:80:58:d3:72:92:1b:c3:5e:
53:59:2b:d8:8d:86:15:05:24:5c:c9:7f:80:08:10:
d3:bd:0a:0c:17:45:09:fd:ea:fb:c9:4c:84:70:bb:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E4:32:2B:9B:CA:14:65:7A:47:0B:6A:12:0E:B0:16:1D:15:82:0D
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:87:fb:c3:64:c1:aa:f7:29:ac:a9:7b:9d:d7:d1:9d:ca:ec:
3f:5d:c8:89:29:54:87:8c:4d:57:7b:92:01:34:cc:44:58:ad:
30:3d:db:00:0b:26:9b:91:09:14:f1:30:49:77:d0:32:64:53:
0c:9f:40:17:c3:d5:d8:38:f0:4e:07:cc:28:41:d3:9e:e9:79:
60:29:de:33:8c:77:dd:31:81:84:c4:21:ca:a5:f3:f4:5c:5a:
9c:d5:c8:5a:9f:59:ba:60:25:25:8f:94:72:65:27:5d:d8:d0:
d9:18:fd:cd:35:8f:9f:75:23:10:43:79:8c:f5:10:ea:02:cf:
6c:20:b9:c7:32:82:f0:9e:54:86:0d:90:81:d1:ba:9e:95:5a:
4d:e8:d7:d3:be:64:bf:fe:26:9b:61:58:98:c5:f9:82:38:8e:
5f:41:bd:75:17:3f:33:e8:89:20:7c:bc:05:8d:52:69:4f:a0:
f8:76:aa:6b:1e:ee:20:61:03:ad:9d:41:16:fa:9c:a1:bd:c6:
3d:b6:93:20:fa:d6:f3:f4:2f:b9:c2:9e:54:7a:9a:40:b4:40:
4a:c8:f1:1e:ae:b9:f6:c9:ad:d4:d1:ab:33:94:89:52:45:0b:
fc:40:cd:b6:f4:a8:38:30:c5:28:28:3e:6d:42:7c:fe:2c:84:
cd:08:1a:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:52:49 2026 by rpki-client