Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: ArgwCariSGrNKAbaqOB+mvjUJkdpw5iPtqTKm2u7Y5c=
Subject key identifier: DE:FD:5B:0D:1A:A6:F9:06:AD:44:D8:A2:0D:76:05:F6:10:A6:7A:11
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 019EBEB5F16D0F4BB530E66784D379E0E4A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 123D
Signing time: Sat 13 Jun 2026 02:00:55 +0000
Manifest this update: Sat 13 Jun 2026 02:00:55 +0000
Manifest next update: Sun 14 Jun 2026 02:00:55 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: DqqNydvwFQtV2+fkBpkdIvxJCA5ndW7SdvnRyH0CwCo=)
2: fGMBgR4dRlgN7od53q3XJYWFyYQ.roa (hash: w9q5mkecYPBNy8Mimx20Bl4XPGkfo1gV/P3fG9sJ0A4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b5:f1:6d:0f:4b:b5:30:e6:67:84:d3:79:e0:e4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Jun 13 02:00:55 2026 GMT
Not After : Jun 14 02:00:55 2026 GMT
Subject: CN=defd5b0d1aa6f906ad44d8a20d7605f610a67a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3c:ed:35:4f:4c:eb:db:01:dc:69:c4:44:18:
ff:2a:19:2e:e0:c8:cb:ec:c3:df:81:a4:86:14:2f:
d3:88:4b:1d:bd:6d:c4:55:be:2e:b2:93:8f:6c:88:
9b:4d:17:c9:ee:ec:64:d4:5b:fb:1e:ed:84:b6:63:
fb:41:a1:40:b5:53:d9:9b:52:a6:dc:a9:77:b2:31:
5e:06:d0:fe:ce:47:79:5e:6f:07:a2:22:6c:08:a5:
72:86:0a:45:94:21:25:6d:d3:97:f8:e8:01:04:9d:
82:5a:ec:07:6d:2e:15:1d:83:de:e9:58:b1:45:0e:
aa:77:5a:33:0d:be:8c:27:34:b7:5c:32:6c:0c:b1:
a4:85:27:06:3c:c1:f5:36:52:cf:11:cf:13:36:ee:
a9:b0:02:02:cd:ef:dd:83:7a:4e:46:83:a3:3e:a8:
33:d5:04:f8:b9:e0:2b:c6:ab:03:0b:5d:ac:fd:45:
7b:ae:26:5a:7e:b4:b6:bd:47:09:02:c9:d8:fb:86:
0c:57:47:62:b3:09:c0:57:25:cc:e0:61:7a:66:7f:
d3:9d:53:30:52:dd:eb:3c:4e:1b:ef:fb:c4:25:2a:
74:02:3e:90:ec:37:bb:00:76:14:40:19:07:cd:b0:
02:5e:55:cd:78:bd:68:39:52:11:73:65:a6:04:12:
bc:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FD:5B:0D:1A:A6:F9:06:AD:44:D8:A2:0D:76:05:F6:10:A6:7A:11
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:60:a9:51:1f:6b:d5:93:b0:a2:d2:5c:52:5e:c4:79:c9:42:
d3:79:3b:75:3e:3c:8e:65:1f:3b:8e:2a:31:b3:64:83:34:96:
d0:b4:b5:e2:af:07:0c:0b:6d:bf:12:17:63:92:23:a0:92:f8:
bf:03:96:4b:a4:54:a9:d9:4c:40:46:0a:2d:64:00:0d:59:2b:
78:1d:f1:ae:65:4a:0b:f3:89:e1:18:de:39:d5:4d:8f:5e:f8:
56:b3:6c:2b:01:a7:3c:b1:4d:60:5a:03:7f:80:98:eb:ab:88:
b7:d2:a5:b5:21:e8:2d:fb:c8:a1:cb:63:78:49:85:f0:81:7a:
48:9b:c9:4a:cc:47:03:2c:a8:0f:2b:7f:2d:e9:33:93:a7:18:
6c:f7:a9:2a:52:2d:48:f0:4f:e3:5d:d9:4f:4c:70:51:e3:8c:
c2:3d:c8:ed:30:95:2b:70:1c:92:59:74:7c:af:e1:b4:da:2a:
58:8d:4d:b2:c6:38:87:6a:66:aa:d8:c8:9f:80:2f:df:ca:3f:
32:9a:a6:1f:03:a5:c7:8e:4a:d6:be:1f:2a:0b:db:8e:20:66:
75:c1:26:e8:67:fc:f7:15:0a:b0:3b:99:ee:95:45:ff:7f:4a:
5b:85:04:9f:d6:e4:31:57:c0:a1:3d:43:ee:ad:0c:5c:cb:8f:
94:2b:00:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:44:49 2026 by rpki-client