Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: z+FxXIJB2ddJOwUqRHwzmm6iJAnwwpE8DOBWOfgUMeA=
Subject key identifier: B0:20:55:A0:CB:CA:48:10:FC:BE:DA:DC:5C:C6:D2:69:F3:80:B3:70
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 019D37F72B9D5F0729305E5C132B85673A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 11B9
Signing time: Sun 29 Mar 2026 05:00:38 +0000
Manifest this update: Sun 29 Mar 2026 05:00:38 +0000
Manifest next update: Mon 30 Mar 2026 05:00:38 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: tiLj6D8/EEruGXcQ4hHK+p2XCJrlg6mzzqxu6stK930=)
2: 3_erjLvBR9ChA8-FV4FDl1_qWOo.roa (hash: ODC0IK0RSmBwgajSFs0H62MxGdt/m1+W1l/+zS2FxXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:2b:9d:5f:07:29:30:5e:5c:13:2b:85:67:3a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Mar 29 05:00:38 2026 GMT
Not After : Mar 30 05:00:38 2026 GMT
Subject: CN=b02055a0cbca4810fcbedadc5cc6d269f380b370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b7:20:a5:4b:15:ff:27:7b:20:eb:0c:0d:35:
59:e1:21:dc:6e:40:64:94:0e:80:3a:cc:08:aa:69:
27:35:9d:54:0e:ae:2d:ee:43:3a:56:82:c8:da:0a:
a5:5b:ed:b4:2c:4f:cd:c3:94:8c:21:f2:6f:0e:ca:
ba:80:c6:50:9a:d9:44:99:79:be:39:e2:0e:c0:a5:
4a:ce:66:32:dd:5b:c7:2b:fa:9e:a8:87:c1:3b:23:
a6:be:00:53:de:ae:7d:5a:00:31:54:a9:f0:6d:7e:
61:4f:8f:f0:98:5a:c3:3e:e8:1e:97:1c:41:35:a8:
f4:6b:99:6f:3d:99:ed:a7:1b:e9:22:39:6b:82:3a:
a8:41:f6:98:ca:d6:a2:54:f5:31:38:ff:3c:67:94:
f0:14:c9:2d:21:e3:b4:4b:4e:e6:27:4f:dc:f8:eb:
d9:a2:53:5a:9c:97:81:cd:d9:ec:51:d8:b7:c4:06:
64:6b:e4:ea:56:17:26:37:91:5c:fb:2d:5b:e8:ed:
35:fe:c0:38:d9:30:12:b1:34:d1:e8:c6:11:a3:8b:
4c:0b:af:86:8b:ba:50:21:2e:b1:0c:f4:61:2f:1f:
48:84:ef:e6:e1:0b:68:5f:31:24:b2:3b:69:3d:14:
c5:3f:23:da:f5:1b:8e:36:35:b8:74:cd:e1:fc:51:
06:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:20:55:A0:CB:CA:48:10:FC:BE:DA:DC:5C:C6:D2:69:F3:80:B3:70
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d7:bd:2b:af:8b:7b:99:8d:e4:71:fb:fd:c5:9c:ea:41:61:
0f:4d:81:4a:fe:a0:72:1f:54:68:5d:c2:e9:36:22:a5:32:77:
d0:d6:5a:66:83:7f:be:c2:9e:7d:4c:46:6d:97:a1:e9:13:65:
93:d2:fd:76:71:b0:ff:9c:9b:3a:68:b4:39:3e:16:5b:d6:c7:
38:20:cd:8a:e2:bf:a9:88:83:30:b7:c3:b2:57:09:e5:8a:c8:
2b:aa:dd:51:7d:94:51:c6:38:73:79:14:06:91:92:d7:7f:5e:
de:22:e3:1c:30:d5:55:fb:31:0f:47:2f:54:d5:7c:d7:01:f5:
94:8c:84:f0:b6:fe:bc:28:a0:c0:6a:49:70:6d:52:15:c8:b1:
f5:59:b7:2a:28:a8:2f:4c:2f:36:dd:07:d0:26:ac:90:2c:d0:
51:83:b5:c1:e4:c3:16:41:56:c4:78:06:84:30:84:a3:86:f0:
a8:c1:ea:94:73:20:5c:f2:02:28:e4:36:68:cc:0b:43:a9:6a:
01:f9:1b:99:5d:5b:4d:c3:8d:fb:35:ec:a0:83:4e:c8:40:f6:
d1:6d:8d:5f:a5:a5:97:71:80:4c:06:6c:7f:1a:c7:3f:fe:15:
0c:fb:a1:56:b3:71:1e:1d:32:1b:16:53:ee:fb:1b:c4:b6:5e:
07:ae:3a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:12 2026 by rpki-client