Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json)
Hash identifier: uabu5yCWMuvlePku6hBC81enVKx3aFJR3hsBYQFiYTw=
Subject key identifier: 8E:B5:26:1C:A5:F0:CE:2D:D7:C5:5E:2E:E2:CA:F3:5D:76:FB:BA:A6
Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Certificate serial: 019D375339DC2A712136DFF9ECDD6E6F2C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
Manifest number: BC
Signing time: Sun 29 Mar 2026 02:01:34 +0000
Manifest this update: Sun 29 Mar 2026 02:01:34 +0000
Manifest next update: Mon 30 Mar 2026 02:01:34 +0000
Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: QkW2KcBoK3cq9CzGrEk++ou7dTe43liHZflUEE/KP4w=)
2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=)
3: 6SEduMHXynvLbGLXlQ-nCG4KDz0.roa (hash: hLjPkc07rz71V/VBtG395boX8ca8vKM/q8gofGURfjw=)
4: RGSDwCL_3DhopF7DDMpgOjHlruI.roa (hash: I4TOgGmivQDbOrWFawlOof5iCr25D2qkBqiHBfM3G6Y=)
5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=)
6: nbL3W9rua5RoYoYaynypFHyWDSM.roa (hash: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:39:dc:2a:71:21:36:df:f9:ec:dd:6e:6f:2c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Validity
Not Before: Mar 29 02:01:34 2026 GMT
Not After : Mar 30 02:01:34 2026 GMT
Subject: CN=8eb5261ca5f0ce2dd7c55e2ee2caf35d76fbbaa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:d0:c3:73:5b:e7:3e:4d:20:cb:27:33:fa:
b9:31:8b:6d:00:d5:42:cd:27:21:d2:5c:9a:0b:56:
57:7a:8f:4a:4a:16:76:8f:69:11:fc:7e:81:11:75:
6e:ec:1d:61:b6:fd:31:f5:c2:06:ae:2c:7c:7a:f1:
fb:74:7b:9b:05:12:fa:91:eb:c7:7a:15:79:ef:60:
f8:42:6b:96:5b:64:91:08:c2:59:00:f0:02:30:75:
de:74:1d:b9:83:45:43:32:76:d9:63:e4:d5:73:91:
9d:cb:96:44:54:8b:7c:26:51:16:2d:40:f8:61:fb:
5e:1f:a3:b9:6d:2a:5d:c1:73:5e:b5:64:45:d2:6f:
0a:5b:f3:f0:70:c5:ba:92:11:fa:7a:b4:06:40:1e:
1d:06:44:f1:1a:bb:92:65:74:9f:5f:ab:a9:b6:b3:
d0:b2:c4:9f:33:66:a2:e7:ef:cb:2a:88:d1:79:0a:
fa:25:3e:8f:61:5b:56:b8:a7:d9:e0:2a:a7:1f:36:
fb:eb:47:06:c6:89:6c:0a:41:27:37:eb:cf:10:e7:
41:17:7d:28:7c:29:08:f2:30:2f:38:48:8b:c9:06:
56:8f:f4:d3:06:88:81:96:a8:8f:cd:b9:4b:45:5a:
0b:5c:ba:ce:87:ef:0f:81:aa:c7:32:ff:b1:30:35:
bd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B5:26:1C:A5:F0:CE:2D:D7:C5:5E:2E:E2:CA:F3:5D:76:FB:BA:A6
X509v3 Authority Key Identifier:
keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ed:41:d5:48:eb:9d:65:95:d9:0d:e6:44:03:62:65:df:5c:
58:d7:ea:d7:ef:fa:58:8a:01:f8:b3:47:b2:69:2c:49:a4:c4:
07:19:f4:7d:47:95:dd:4e:2b:7f:2f:b5:9a:0a:31:8b:d5:45:
71:ad:c2:c4:1d:1d:b8:b0:22:d9:d6:fa:95:0f:37:c6:c8:1e:
dd:7c:f9:b5:07:f1:0a:c2:88:b8:4e:b0:1d:e7:ac:2f:96:30:
cf:8f:70:d3:b3:7b:3f:a9:92:89:bf:0d:e5:f2:5c:71:da:12:
4f:67:30:93:c9:d0:34:68:27:29:e8:96:83:d4:59:16:9b:76:
96:6b:a6:9c:1a:e5:da:62:78:6e:aa:5f:f4:be:31:95:2a:b9:
af:c5:1b:57:29:d6:c9:c8:72:ac:78:ef:27:94:7f:e0:72:ba:
14:e1:a0:97:a4:13:bc:6f:93:53:18:79:65:f1:b7:4a:fc:e8:
f9:68:a0:9b:ff:df:02:59:22:9d:2c:b5:17:12:26:cd:d8:e3:
7a:d1:f1:f7:92:2e:c4:a1:ac:79:96:9f:52:bb:41:d3:73:a6:
68:38:6d:6c:2b:a1:e0:71:2d:7c:39:2c:92:81:cc:3c:95:3f:
eb:09:b8:43:59:8b:41:ec:7a:4d:50:6f:57:32:1c:5d:af:f3:
e7:b6:a0:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UzncKnEhNt/57N1ubyybMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMmVjMjJhNjZiNWIyNDk4NjM5NWZlZWQ3ZmI1YjkwZTI4
YzliZTQwHhcNMjYwMzI5MDIwMTM0WhcNMjYwMzMwMDIwMTM0WjAzMTEwLwYDVQQD
Eyg4ZWI1MjYxY2E1ZjBjZTJkZDdjNTVlMmVlMmNhZjM1ZDc2ZmJiYWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1TQw3Nb5z5NIMsnM/q5MYttANVC
zSch0lyaC1ZXeo9KShZ2j2kR/H6BEXVu7B1htv0x9cIGrix8evH7dHubBRL6kevH
ehV572D4QmuWW2SRCMJZAPACMHXedB25g0VDMnbZY+TVc5Gdy5ZEVIt8JlEWLUD4
YfteH6O5bSpdwXNetWRF0m8KW/PwcMW6khH6erQGQB4dBkTxGruSZXSfX6uptrPQ
ssSfM2ai5+/LKojReQr6JT6PYVtWuKfZ4CqnHzb760cGxolsCkEnN+vPEOdBF30o
fCkI8jAvOEiLyQZWj/TTBoiBlqiPzblLRVoLXLrOh+8PgarHMv+xMDW93QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI61Jhyl8M4t18VeLuLK8112+7qmMB8GA1UdIwQY
MBaAFNsuwipmtbJJhjlf7tf7W5DijJvkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQt
Y2U3OGQ0YzA2NDJmLzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQtY2U3OGQ0YzA2NDJm
LzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE+1B1Ujr
nWWV2Q3mRANiZd9cWNfq1+/6WIoB+LNHsmksSaTEBxn0fUeV3U4rfy+1mgoxi9VF
ca3CxB0duLAi2db6lQ83xsge3Xz5tQfxCsKIuE6wHeesL5Ywz49w07N7P6mSib8N
5fJccdoST2cwk8nQNGgnKeiWg9RZFpt2lmumnBrl2mJ4bqpf9L4xlSq5r8UbVynW
ychyrHjvJ5R/4HK6FOGgl6QTvG+TUxh5ZfG3Svzo+Wigm//fAlkinSy1FxImzdjj
etHx95IuxKGseZafUrtB03OmaDhtbCuh4HEtfDkskoHMPJU/6wm4Q1mLQex6TVBv
VzIcXa/z57agLw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:19 2026 by rpki-client