Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
File: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft (raw, json)
Hash identifier: /LW7eRb79D1IWJdnPgOUtCI6qpGESkKH9jD5SP/sPvg=
Subject key identifier: 07:91:23:10:2D:23:75:52:78:EB:B6:BE:09:E5:D9:18:91:69:77:83
Authority key identifier: DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
Certificate issuer: /CN=db2d75c6d547750642241b0749cfa052c8c17f34
Certificate serial: 019E314E61A6BF399FB20E6AB91FB20685A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 15:01:20 +0000
Manifest this update: Sat 16 May 2026 15:01:20 +0000
Manifest next update: Sun 17 May 2026 15:01:20 +0000
Files and hashes: 1: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl (hash: BBoGjWCHbWTgcVYcZd5oCgC8edq0DzYOaUKgAvqvIsw=)
2: RYCkmpH2b2Jhy7VdmwMy71iHAMU.roa (hash: m7nxILjYkQDIx4jO5jxneiBadE/Bw699fTnvikNCX4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:61:a6:bf:39:9f:b2:0e:6a:b9:1f:b2:06:85:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2d75c6d547750642241b0749cfa052c8c17f34
Validity
Not Before: May 16 15:01:20 2026 GMT
Not After : May 17 15:01:20 2026 GMT
Subject: CN=079123102d23755278ebb6be09e5d91891697783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bf:5e:91:ad:9d:1e:c7:3e:39:68:73:a9:dc:
04:ab:97:d7:6f:85:61:3f:d4:69:cd:65:2e:f0:1a:
12:83:7b:ac:d0:96:44:e3:c4:78:cb:64:3e:1a:8a:
fb:9e:af:31:e7:b2:9e:ef:c5:1f:f2:5c:67:04:ab:
ef:0d:ec:b9:e0:d6:6f:47:fe:9d:df:62:2d:42:ce:
fd:6c:52:78:03:b4:02:03:13:2c:81:56:4b:70:bb:
1a:2e:84:e8:4d:8f:67:ba:ad:e2:71:62:b3:b9:fa:
e6:af:40:16:3d:88:d2:cc:e4:c9:e7:dc:4a:ef:b1:
63:c5:49:46:87:99:f7:6c:42:0e:78:d8:04:6a:0b:
4a:22:36:39:cf:f4:b3:e9:df:0d:1f:ff:7e:04:e3:
63:77:44:46:61:29:46:67:83:91:2e:1a:5c:4a:1d:
28:b2:cf:e6:98:0c:47:50:dc:ce:dc:9c:e0:7a:7f:
80:f4:19:53:88:c4:4c:9f:e7:92:a5:5f:d0:f2:f2:
96:04:df:45:b1:e5:e8:2e:0b:48:c4:d4:1e:28:01:
fd:1b:76:0f:16:c3:ab:ae:59:e6:76:5d:10:ab:3b:
70:cc:52:7a:e0:af:09:03:52:34:21:94:04:26:0d:
1c:56:16:54:9f:8b:41:06:2e:e7:9e:f8:a8:6f:47:
09:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:91:23:10:2D:23:75:52:78:EB:B6:BE:09:E5:D9:18:91:69:77:83
X509v3 Authority Key Identifier:
keyid:DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:8f:15:18:b2:13:27:9a:6d:f1:4b:0b:49:e9:c9:c7:08:0f:
08:29:78:d7:50:6a:a5:6e:95:4f:a9:67:02:7d:6b:bd:fa:20:
96:f5:ee:c5:e6:72:a9:6e:8a:a4:46:58:08:c9:5d:df:66:ff:
cc:ca:49:a2:04:1d:7e:e4:7b:9d:81:0f:a5:12:b2:fc:88:e6:
d5:bd:88:ed:25:79:4a:c8:05:15:28:6c:e2:63:f6:fb:9d:0f:
d5:55:be:1f:68:ab:05:a1:4b:24:e1:b6:31:fd:c6:a8:f2:6e:
64:24:ee:dd:33:3a:e2:e2:65:38:54:c2:b1:c3:be:cc:9f:97:
22:37:5b:db:28:17:d9:a8:dd:86:2a:fd:be:9d:50:78:df:b0:
99:9f:d8:b5:e0:75:24:47:af:30:28:ba:0d:59:4d:35:ac:be:
31:59:09:71:e7:35:45:81:23:e0:0c:90:67:6f:5d:ff:37:9f:
57:27:09:ed:0e:70:9e:7d:7c:ab:2d:e6:1e:3a:a8:c6:50:61:
61:d7:2c:3c:d7:48:8b:2f:34:82:2d:5e:2b:18:cf:a2:8d:66:
be:30:fb:83:70:5e:ea:97:9c:cd:48:2a:22:eb:2e:5e:9c:a2:
48:4e:65:16:c0:b1:14:e1:a8:12:84:25:68:38:4c:55:d8:f1:
9d:1f:d4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:02 2026 by rpki-client