Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: 2Cqb/Jqt78ihF9H6fApuLgK9Oe1I81aAp/phtWrQleE=
Subject key identifier: 8C:80:AD:44:DA:E5:F0:C8:0B:DF:13:A1:87:FB:07:CF:81:E5:A6:0A
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 019D992BAC590FDF4D6FF3615855C44A84FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 11A5
Signing time: Fri 17 Apr 2026 02:01:09 +0000
Manifest this update: Fri 17 Apr 2026 02:01:09 +0000
Manifest next update: Sat 18 Apr 2026 02:01:09 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: L8rHiiVAJyy9DKQScFTDdl0D0xhn+pMVtzY9ktcbFcw=)
2: fGMBgR4dRlgN7od53q3XJYWFyYQ.roa (hash: w9q5mkecYPBNy8Mimx20Bl4XPGkfo1gV/P3fG9sJ0A4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:ac:59:0f:df:4d:6f:f3:61:58:55:c4:4a:84:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Apr 17 02:01:09 2026 GMT
Not After : Apr 18 02:01:09 2026 GMT
Subject: CN=8c80ad44dae5f0c80bdf13a187fb07cf81e5a60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4f:27:1d:fb:b1:57:65:5e:ad:c5:61:68:cc:
10:c1:95:16:fd:ff:19:b3:82:f5:ef:0d:18:d5:69:
cd:f2:b8:02:cc:8c:5c:8c:29:bd:28:28:06:68:8d:
e4:f0:e3:cb:67:c4:08:95:2a:41:38:47:81:29:b4:
40:c6:a5:2f:04:46:78:18:f7:bb:e1:fb:0b:b2:55:
1f:2a:57:68:be:9f:bf:35:84:f5:7e:58:e6:41:00:
5d:09:41:1c:98:61:7c:a0:ff:5b:a4:da:44:6f:d9:
d5:3a:5a:3f:5a:ff:dd:c4:c5:ef:f2:30:f6:72:b4:
33:6e:9d:53:31:0d:ef:f6:ca:48:fd:28:69:86:88:
b1:68:56:e0:90:aa:8c:79:b1:dd:a3:6c:f1:a4:cf:
1c:9c:ca:1f:b6:8c:c9:44:d5:b9:5f:19:d7:ee:11:
ae:12:b8:2a:c5:5a:5c:7c:89:68:51:83:38:d8:05:
e7:4d:be:81:f6:84:69:c3:88:6e:80:85:30:aa:37:
8b:f1:17:31:aa:59:2f:c9:a3:e7:15:66:78:3f:7d:
26:b0:a8:f2:c2:d9:c4:60:26:b5:7c:e8:cd:b8:d5:
c2:b0:a5:c8:32:06:5f:e6:37:8a:a5:55:13:bb:c2:
62:d5:56:25:04:bf:6a:93:70:a8:56:e9:8c:78:fc:
fc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:80:AD:44:DA:E5:F0:C8:0B:DF:13:A1:87:FB:07:CF:81:E5:A6:0A
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:95:77:69:a5:e6:a3:be:f6:15:ce:da:ec:a6:78:7a:a8:ab:
85:b5:8a:d7:bd:8a:e1:9c:88:9d:f5:7e:46:2d:8d:2f:3c:4a:
13:fe:2d:d4:0a:ae:e2:14:9a:56:e6:d3:ae:0d:fe:83:b2:cd:
dc:ec:da:0e:6a:13:01:72:b8:8a:79:a3:dd:5d:d8:c3:a3:6f:
ec:af:a7:eb:7c:b9:b3:a5:4c:10:ad:6e:08:4d:17:88:b7:f7:
4c:9a:d7:8c:95:ca:e9:52:28:4e:8d:b8:12:f9:e0:50:20:bd:
1c:76:7d:06:04:92:64:9e:53:84:5f:9d:05:d7:ff:39:7e:89:
55:80:89:9a:b0:0b:e0:9c:42:c7:90:6d:10:a7:5f:47:0a:7d:
26:d4:38:3e:29:93:51:c7:aa:2a:9d:f8:c8:71:2d:96:61:52:
34:f2:4d:ec:f0:41:71:06:0d:09:4d:4a:16:ae:f9:e7:f7:13:
d9:3b:40:0d:90:8b:e7:3a:85:6c:88:f1:84:c3:20:7e:c4:38:
0d:80:d3:68:82:54:72:99:45:aa:08:93:60:92:c0:90:12:9d:
85:10:49:74:1a:bb:5a:74:64:d3:78:87:24:7f:f2:98:6e:c0:
d0:ea:c7:e7:7f:b0:c2:c4:0a:50:eb:18:cd:78:ce:ea:89:b2:
b3:e4:fa:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZK6xZD99Nb/NhWFXESoT7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODg0ZjkyYWZlYjU4ZmZhYjI2NDg3YjIzMjA1ZmUwZDVk
YThhOWYwHhcNMjYwNDE3MDIwMTA5WhcNMjYwNDE4MDIwMTA5WjAzMTEwLwYDVQQD
Eyg4YzgwYWQ0NGRhZTVmMGM4MGJkZjEzYTE4N2ZiMDdjZjgxZTVhNjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA608nHfuxV2VercVhaMwQwZUW/f8Z
s4L17w0Y1WnN8rgCzIxcjCm9KCgGaI3k8OPLZ8QIlSpBOEeBKbRAxqUvBEZ4GPe7
4fsLslUfKldovp+/NYT1fljmQQBdCUEcmGF8oP9bpNpEb9nVOlo/Wv/dxMXv8jD2
crQzbp1TMQ3v9spI/ShphoixaFbgkKqMebHdo2zxpM8cnMoftozJRNW5XxnX7hGu
ErgqxVpcfIloUYM42AXnTb6B9oRpw4hugIUwqjeL8RcxqlkvyaPnFWZ4P30msKjy
wtnEYCa1fOjNuNXCsKXIMgZf5jeKpVUTu8Ji1VYlBL9qk3CoVumMePz8SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIyArUTa5fDIC98ToYf7B8+B5aYKMB8GA1UdIwQY
MBaAFNmIT5Kv61j/qyZIeyMgX+DV2oqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYt
NzY1MzMyNDVmMmJlLzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYtNzY1MzMyNDVmMmJl
LzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhJV3aaXm
o772Fc7a7KZ4eqirhbWK172K4ZyInfV+Ri2NLzxKE/4t1Aqu4hSaVubTrg3+g7LN
3OzaDmoTAXK4inmj3V3Yw6Nv7K+n63y5s6VMEK1uCE0XiLf3TJrXjJXK6VIoTo24
EvngUCC9HHZ9BgSSZJ5ThF+dBdf/OX6JVYCJmrAL4JxCx5BtEKdfRwp9JtQ4PimT
UceqKp34yHEtlmFSNPJN7PBBcQYNCU1KFq755/cT2TtADZCL5zqFbIjxhMMgfsQ4
DYDTaIJUcplFqgiTYJLAkBKdhRBJdBq7WnRk03iHJH/ymG7A0OrH53+wwsQKUOsY
zXjO6omys+T62g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:31:31 2026 by rpki-client