Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: ckcaJQqlOXAFHhrZbSyRerdipUf9e1tHrycNSUwFJQ8=
Subject key identifier: 8B:6A:9F:75:E7:A9:8C:A5:3E:0E:68:49:EC:2B:5D:10:A8:42:49:94
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 019CAD9086156F4DF68A7B2EDBB02673F7F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 112B
Signing time: Mon 02 Mar 2026 08:00:55 +0000
Manifest this update: Mon 02 Mar 2026 08:00:55 +0000
Manifest next update: Tue 03 Mar 2026 08:00:55 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: 2kol8j9I0OeM4QkhBwuKbToGBSphu3zV2LkmYzNFmfw=)
2: fGMBgR4dRlgN7od53q3XJYWFyYQ.roa (hash: w9q5mkecYPBNy8Mimx20Bl4XPGkfo1gV/P3fG9sJ0A4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:86:15:6f:4d:f6:8a:7b:2e:db:b0:26:73:f7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Mar 2 08:00:55 2026 GMT
Not After : Mar 3 08:00:55 2026 GMT
Subject: CN=8b6a9f75e7a98ca53e0e6849ec2b5d10a8424994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:60:1b:36:1d:23:f5:f8:63:e8:e2:cf:5d:
cd:bb:7a:35:34:83:21:f2:8a:98:8f:6c:e7:99:6e:
bc:74:93:58:b1:48:d6:3f:96:7e:ab:0b:97:b2:ef:
df:30:b5:fa:c0:cb:08:b2:63:a3:35:f4:d8:8f:1b:
6d:33:76:7a:17:54:72:e3:36:20:07:09:5d:c3:e0:
42:80:c7:8d:7b:0a:44:9f:d4:ec:c1:8d:86:00:89:
35:08:79:ce:99:72:2b:27:ba:53:38:01:08:ec:c1:
4f:94:6b:81:5e:83:7d:c9:a7:99:cc:0e:17:4e:92:
8c:ac:e8:dd:be:d9:09:6a:f5:ac:9e:11:6f:33:2a:
f2:0a:7f:cb:33:f5:64:d6:0a:65:5a:52:b9:a6:32:
6e:fd:9b:de:95:ef:02:c4:2c:6e:bf:f0:b4:f6:75:
a9:a4:08:5f:a8:b9:11:7c:51:26:59:d9:7c:c2:d3:
7b:71:43:cc:36:82:f7:23:e4:a9:7e:25:bb:47:ca:
74:2f:4b:77:1d:22:29:cd:bf:1b:2c:52:e8:e5:84:
a8:97:14:03:28:4f:3b:d2:69:e3:06:0e:2a:c7:de:
c2:c9:75:b2:78:66:a8:15:88:53:21:b7:57:65:94:
56:5b:73:50:b7:56:43:fd:51:6f:9b:d2:4e:f6:9f:
49:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:6A:9F:75:E7:A9:8C:A5:3E:0E:68:49:EC:2B:5D:10:A8:42:49:94
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:7c:46:13:bf:86:26:21:13:e4:e7:d2:a1:a3:26:d1:a7:76:
84:f1:fb:9c:29:e2:b5:96:2b:e0:10:5a:06:9a:4f:5e:fc:38:
dc:e3:3c:48:39:f2:ee:80:52:85:02:47:5e:ce:1f:39:5f:79:
1f:83:cc:fc:45:14:38:f8:61:71:6c:56:7f:7c:94:bb:6b:42:
5a:70:ac:1c:7e:42:87:0a:4f:a5:90:cf:ec:9e:a1:aa:1c:c4:
c2:26:e7:f7:e4:8f:c8:8b:d2:a1:f6:6f:cf:ed:a0:a6:0a:7c:
fc:ea:68:7e:31:1e:e6:d7:7a:60:91:7b:25:1a:89:70:c8:13:
ba:25:33:73:88:b6:0c:65:6a:3d:fc:ef:64:45:99:98:63:c8:
80:4d:52:d7:9c:e6:87:29:63:bd:0c:32:b9:64:4d:63:4c:08:
e3:64:62:88:d4:dc:b5:22:e2:61:32:40:84:96:e8:b4:27:27:
d0:98:98:a7:14:ef:7c:d1:0c:aa:57:90:db:e5:b4:0f:cf:38:
0a:1a:37:83:34:52:ed:27:28:78:60:3f:49:4e:19:e9:59:0a:
d2:7b:74:1c:40:89:1e:45:a3:e2:b1:72:41:6a:b5:3e:1d:58:
1f:33:76:0e:a2:ad:c2:c4:f9:b2:a0:0c:bf:ab:8b:c9:dd:b5:
bc:c6:b3:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:33 2026 by rpki-client