Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: kWPSW/1Mpje6HOfO60SiW6XnM+3plYwq96QwR7iDen0=
Subject key identifier: 8F:42:51:2C:91:61:F8:0D:9D:52:94:1E:E8:B9:D5:12:E4:81:F1:B1
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 019F18D6C629A2BED0C128BC37D57193CBC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 12B2
Signing time: Tue 30 Jun 2026 14:02:36 +0000
Manifest this update: Tue 30 Jun 2026 14:02:36 +0000
Manifest next update: Wed 01 Jul 2026 14:02:36 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: vjngkDyRTEXuc67mkJIukI/CIcY3sXkh5S/cyK3R5uQ=)
2: 3_erjLvBR9ChA8-FV4FDl1_qWOo.roa (hash: ODC0IK0RSmBwgajSFs0H62MxGdt/m1+W1l/+zS2FxXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:c6:29:a2:be:d0:c1:28:bc:37:d5:71:93:cb:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Jun 30 14:02:36 2026 GMT
Not After : Jul 1 14:02:36 2026 GMT
Subject: CN=8f42512c9161f80d9d52941ee8b9d512e481f1b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ef:a5:41:70:07:75:9a:4e:fe:fe:77:01:0e:
0b:da:fc:85:81:83:b2:5f:7f:51:ad:d1:d8:59:ee:
33:0a:ad:43:6a:00:2c:ec:9f:31:e5:2a:43:a5:c5:
52:da:d2:1f:eb:10:76:22:fe:21:5f:37:97:76:4d:
be:ab:b2:68:ec:03:f7:9f:bd:cc:03:6d:1d:bd:0f:
87:93:91:c1:8f:57:67:f3:0d:3f:92:28:03:d1:91:
b8:4d:23:1b:e7:55:c9:ae:c8:f2:d3:d0:99:90:6b:
58:b5:02:25:8a:52:97:8c:f2:ca:ce:37:69:fb:c9:
d1:bb:1d:ef:13:7c:0f:17:68:65:2a:66:a2:1b:18:
db:e9:b1:4c:b2:5b:75:dd:2d:cd:57:ba:f4:ba:ae:
d0:5f:6f:15:b3:79:64:d8:90:d0:92:00:1e:e8:58:
e6:33:d8:27:e5:09:b6:e9:69:27:1e:5e:14:26:e9:
ff:10:80:7d:b9:c9:ea:01:55:a6:bc:d4:ad:20:b4:
4f:af:80:7a:77:33:a6:a7:73:2f:05:fc:27:36:cb:
6d:0d:67:f8:bd:71:8d:67:ff:02:79:5a:83:4e:7e:
11:b0:96:cd:df:c5:67:62:ff:ad:62:fe:40:ec:db:
4f:df:94:8e:8d:ea:1e:60:30:65:e3:20:59:9d:f8:
54:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:42:51:2C:91:61:F8:0D:9D:52:94:1E:E8:B9:D5:12:E4:81:F1:B1
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:dd:07:ff:ae:5c:34:9c:8a:ee:9e:14:f0:19:43:47:16:12:
49:d1:cb:a3:d4:90:f8:11:96:ca:7b:75:35:05:49:eb:0b:d5:
d2:78:49:3d:c6:c1:e5:a4:74:bc:f4:3c:f5:ae:04:58:8c:ab:
b7:4a:56:09:05:21:de:d6:28:d3:47:3f:9c:df:80:eb:a1:a3:
54:50:39:5c:cc:9f:38:47:f0:1b:6b:fc:ac:7c:54:60:3d:da:
fb:3d:12:59:f8:c8:2e:02:c2:b2:46:1e:e2:45:13:39:53:11:
c4:e4:2a:07:30:8c:d9:2c:00:c0:c1:6d:ee:8f:11:f3:9c:97:
67:7c:e0:d3:85:a2:07:7b:7e:b6:6f:91:fb:d0:c1:f1:ef:3d:
a7:eb:8d:22:f9:8e:aa:b7:89:17:01:6a:95:aa:59:f6:b9:6c:
50:45:38:99:f0:60:f9:21:41:f1:af:4d:27:1e:c4:84:61:ca:
b7:8f:b5:04:94:d7:8b:2d:a9:a3:cd:51:89:33:ae:95:c1:84:
ec:c9:3f:5e:d6:a3:98:74:14:04:7a:c8:de:7a:c2:51:d9:77:
ab:0e:ce:4c:ef:f4:30:96:6c:b6:3b:0d:58:65:15:2b:d3:31:
f9:0d:a9:c4:8e:3b:17:d3:ef:d1:cd:e7:f6:52:d7:c8:41:00:
d1:19:68:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Y1sYpor7QwSi8N9Vxk8vEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OGI1YTVmYjEzODY4M2QxYThjYzcwMTlmNzg5NzBiYWU2
NzgyMjgwHhcNMjYwNjMwMTQwMjM2WhcNMjYwNzAxMTQwMjM2WjAzMTEwLwYDVQQD
Eyg4ZjQyNTEyYzkxNjFmODBkOWQ1Mjk0MWVlOGI5ZDUxMmU0ODFmMWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u+lQXAHdZpO/v53AQ4L2vyFgYOy
X39RrdHYWe4zCq1DagAs7J8x5SpDpcVS2tIf6xB2Iv4hXzeXdk2+q7Jo7AP3n73M
A20dvQ+Hk5HBj1dn8w0/kigD0ZG4TSMb51XJrsjy09CZkGtYtQIlilKXjPLKzjdp
+8nRux3vE3wPF2hlKmaiGxjb6bFMslt13S3NV7r0uq7QX28Vs3lk2JDQkgAe6Fjm
M9gn5Qm26WknHl4UJun/EIB9ucnqAVWmvNStILRPr4B6dzOmp3MvBfwnNsttDWf4
vXGNZ/8CeVqDTn4RsJbN38VnYv+tYv5A7NtP35SOjeoeYDBl4yBZnfhUswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9CUSyRYfgNnVKUHui51RLkgfGxMB8GA1UdIwQY
MBaAFNmLWl+xOGg9GozHAZ94lwuuZ4IoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMll0YVg3RTRhRDBhak1jQm4zaVhDNjVuZ2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lMmU5NWQtMmNiNy00NmJlLWEyMjgt
ODMxN2E4Mjg4ZDEwLzEvMll0YVg3RTRhRDBhak1jQm4zaVhDNjVuZ2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9lMmU5NWQtMmNiNy00NmJlLWEyMjgtODMxN2E4Mjg4ZDEw
LzEvMll0YVg3RTRhRDBhak1jQm4zaVhDNjVuZ2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC90H/65c
NJyK7p4U8BlDRxYSSdHLo9SQ+BGWynt1NQVJ6wvV0nhJPcbB5aR0vPQ89a4EWIyr
t0pWCQUh3tYo00c/nN+A66GjVFA5XMyfOEfwG2v8rHxUYD3a+z0SWfjILgLCskYe
4kUTOVMRxOQqBzCM2SwAwMFt7o8R85yXZ3zg04WiB3t+tm+R+9DB8e89p+uNIvmO
qreJFwFqlapZ9rlsUEU4mfBg+SFB8a9NJx7EhGHKt4+1BJTXiy2po81RiTOulcGE
7Mk/XtajmHQUBHrI3nrCUdl3qw7OTO/0MJZstjsNWGUVK9Mx+Q2pxI47F9Pv0c3n
9lLXyEEA0RloYg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:51 2026 by rpki-client