Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
File: 2yOWhUCfZLocOlSo7xQckk5x2JI.mft (raw, json)
Hash identifier: b+07XIyg8mRFQPxBNGZZpLaVAIPJ4Z0Gjl3imgTRtzE=
Subject key identifier: 2A:EA:36:FE:A0:E2:54:F0:E7:2D:BE:15:F9:60:92:AC:39:2D:AE:FD
Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892
Certificate serial: 019DDDD6A7BC816690FC3593A2861857F1E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
Manifest number: 18F2
Signing time: Thu 30 Apr 2026 10:02:05 +0000
Manifest this update: Thu 30 Apr 2026 10:02:05 +0000
Manifest next update: Fri 01 May 2026 10:02:05 +0000
Files and hashes: 1: 2yOWhUCfZLocOlSo7xQckk5x2JI.crl (hash: w3vfHopXYRXDaFPNFePgaAcYNuc8PlSjuVTEVMphzlg=)
2: NCNcQSJc0TGzJY4u8AfMXCbg0RE.roa (hash: olrbYNRVZ37d5DGlOqhZmdOWpkC0qMK5uUX2T/dHnwk=)
3: NWPNhzQpbb1pWfOR8Do4Rk33ISE.roa (hash: zQ014lIcxxnh0W92J1yApdSlVAvsQefsim3FPRGCxsw=)
4: S-F0eq4A_ozaGKmyidwMC5Jy5Ro.roa (hash: x3y+oF+ZdUAZ9Uf6wr7xaiGLxbD/kDc2LpvrGJEYeAM=)
5: oDRJrLEWIwB2bQIN3VSRFVmzPEs.roa (hash: g0N6pLY+sNIqbqq3i2xctEc69tyHJmh/CSOpC4j0mH4=)
6: wet2iRU-DIcI7ecq9nOLNfx3URM.roa (hash: ukbv/ID6Q3IjhclCaom/PoiMdbvmxstujbtE/kfKRtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 10:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dd:d6:a7:bc:81:66:90:fc:35:93:a2:86:18:57:f1:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892
Validity
Not Before: Apr 30 10:02:05 2026 GMT
Not After : May 1 10:02:05 2026 GMT
Subject: CN=2aea36fea0e254f0e72dbe15f96092ac392daefd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b3:a0:ce:63:9f:e0:c7:d2:db:64:c8:29:c2:
78:4d:e3:f4:c5:fa:8a:6c:55:35:e5:34:57:be:b1:
16:6a:59:cb:25:fb:e8:14:7b:7b:cc:3f:d2:10:d7:
85:09:b4:ae:74:39:81:c4:8c:e4:43:97:ce:3d:df:
91:d0:7a:b2:69:19:2b:5e:54:98:9a:cc:32:77:2b:
e5:79:5f:bd:67:a8:78:b9:53:44:1d:f8:90:97:55:
92:0c:3e:59:bf:d0:b9:fb:7d:c0:e0:67:b4:9f:37:
04:8a:81:fa:97:4a:9f:00:ca:3f:bf:34:13:2a:c9:
94:72:7c:6f:34:da:fc:ce:6e:cf:f7:e4:e0:81:d0:
63:02:59:fc:f9:0a:10:71:1f:67:43:1b:fe:43:fe:
aa:ad:dd:4f:45:92:e7:51:01:ad:5e:6b:34:18:bb:
6c:28:d0:de:09:b5:9d:f7:41:c2:bc:f3:83:33:6c:
e4:56:18:a2:18:9d:b4:09:33:77:51:01:e4:51:63:
c0:34:8b:bc:cc:72:81:02:35:bd:2f:66:cb:30:cf:
d0:05:dc:8a:86:3e:c4:3d:01:df:c8:fb:32:b1:0a:
e1:8f:a1:7b:79:6a:87:1e:53:d0:5a:be:38:52:ae:
6a:28:67:e9:47:31:c7:f6:f4:e3:3e:1d:96:2a:e5:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EA:36:FE:A0:E2:54:F0:E7:2D:BE:15:F9:60:92:AC:39:2D:AE:FD
X509v3 Authority Key Identifier:
keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ad:8b:d4:09:03:df:28:e9:49:01:fc:d7:6f:0e:f3:b0:b4:
76:9a:a8:c5:66:1e:fa:54:de:24:68:d1:72:a5:00:35:cd:fb:
91:cf:93:7a:6e:44:29:f9:07:d1:87:b7:cc:b3:9c:bd:51:1f:
2b:d8:74:d7:10:6e:2a:c5:98:e4:1f:bf:4a:54:5b:18:2a:92:
42:e0:4c:3d:79:c9:ea:fd:66:fa:fb:a2:e8:77:cc:bb:3b:3d:
06:94:d0:19:3a:fc:fe:1e:f1:5e:49:0b:7f:08:06:92:3a:63:
dd:d6:4b:c6:04:dc:ef:5b:d7:1a:77:76:d1:08:87:f5:3b:a5:
c3:f9:7d:d7:ef:6c:74:4d:b3:2f:9f:9b:1b:22:d7:fb:dc:8f:
11:0c:c3:e0:59:05:d0:2b:29:85:40:03:a8:be:e8:ba:9b:38:
a3:f5:47:c2:55:c0:77:db:96:11:9c:76:f1:9c:38:cf:69:85:
81:83:68:7a:95:61:dc:c4:f2:da:6f:62:ad:4b:b4:08:7c:06:
2b:ec:02:2d:8f:11:23:7a:42:31:97:4d:78:b2:33:c4:2a:05:
f0:c4:09:8c:7e:63:c4:4a:8a:9d:8b:f4:c4:86:8f:f0:58:bb:
8d:7c:d5:79:2a:5c:c1:f6:96:d9:cd:b3:e1:70:7f:ba:7e:de:
2e:39:9b:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3d1qe8gWaQ/DWTooYYV/HiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMjM5Njg1NDA5ZjY0YmExYzNhNTRhOGVmMTQxYzkyNGU3
MWQ4OTIwHhcNMjYwNDMwMTAwMjA1WhcNMjYwNTAxMTAwMjA1WjAzMTEwLwYDVQQD
EygyYWVhMzZmZWEwZTI1NGYwZTcyZGJlMTVmOTYwOTJhYzM5MmRhZWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrOgzmOf4MfS22TIKcJ4TeP0xfqK
bFU15TRXvrEWalnLJfvoFHt7zD/SENeFCbSudDmBxIzkQ5fOPd+R0HqyaRkrXlSY
mswydyvleV+9Z6h4uVNEHfiQl1WSDD5Zv9C5+33A4Ge0nzcEioH6l0qfAMo/vzQT
KsmUcnxvNNr8zm7P9+TggdBjAln8+QoQcR9nQxv+Q/6qrd1PRZLnUQGtXms0GLts
KNDeCbWd90HCvPODM2zkVhiiGJ20CTN3UQHkUWPANIu8zHKBAjW9L2bLMM/QBdyK
hj7EPQHfyPsysQrhj6F7eWqHHlPQWr44Uq5qKGfpRzHH9vTjPh2WKuWUZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCrqNv6g4lTw5y2+Fflgkqw5La79MB8GA1UdIwQY
MBaAFNsjloVAn2S6HDpUqO8UHJJOcdiSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmIt
MmVmNDQ3ZTFiMDhjLzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmItMmVmNDQ3ZTFiMDhj
LzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADK2L1AkD
3yjpSQH8128O87C0dpqoxWYe+lTeJGjRcqUANc37kc+Tem5EKfkH0Ye3zLOcvVEf
K9h01xBuKsWY5B+/SlRbGCqSQuBMPXnJ6v1m+vui6HfMuzs9BpTQGTr8/h7xXkkL
fwgGkjpj3dZLxgTc71vXGnd20QiH9Tulw/l91+9sdE2zL5+bGyLX+9yPEQzD4FkF
0CsphUADqL7oups4o/VHwlXAd9uWEZx28Zw4z2mFgYNoepVh3MTy2m9irUu0CHwG
K+wCLY8RI3pCMZdNeLIzxCoF8MQJjH5jxEqKnYv0xIaP8Fi7jXzVeSpcwfaW2c2z
4XB/un7eLjmbqQ==
-----END CERTIFICATE-----
Generated at Thu Apr 30 17:28:45 2026 by rpki-client