Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
File: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft (raw, json)
Hash identifier: WHA4gBu5nMesP3h+W40AyYUduiH046UOwK2gk7KSIQY=
Subject key identifier: C4:9D:C3:10:3E:F5:92:F7:C6:10:DE:3D:85:72:7C:F4:96:7F:60:B3
Authority key identifier: DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
Certificate issuer: /CN=db2d75c6d547750642241b0749cfa052c8c17f34
Certificate serial: 019D382EC069D829B779ACA267F4EF0791DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 06:01:21 +0000
Manifest this update: Sun 29 Mar 2026 06:01:21 +0000
Manifest next update: Mon 30 Mar 2026 06:01:21 +0000
Files and hashes: 1: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl (hash: vNPTNrZvXAmdVbaMxs1EBLMbBwHrQv4/FgjdfzunLYQ=)
2: RYCkmpH2b2Jhy7VdmwMy71iHAMU.roa (hash: m7nxILjYkQDIx4jO5jxneiBadE/Bw699fTnvikNCX4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:c0:69:d8:29:b7:79:ac:a2:67:f4:ef:07:91:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2d75c6d547750642241b0749cfa052c8c17f34
Validity
Not Before: Mar 29 06:01:21 2026 GMT
Not After : Mar 30 06:01:21 2026 GMT
Subject: CN=c49dc3103ef592f7c610de3d85727cf4967f60b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1b:98:06:e3:69:12:61:f5:93:ca:44:28:03:
e3:bf:18:a5:d5:12:e2:41:c2:88:c6:9b:8b:12:ef:
eb:0c:62:31:fd:cb:00:96:07:7e:9c:2b:18:8f:ef:
e5:7d:24:37:96:87:c7:60:04:2f:53:06:15:c3:3a:
f4:6d:16:a5:20:0f:b3:1e:de:2d:e1:03:e2:17:1b:
7e:00:3a:0f:cc:42:c4:41:63:45:cf:80:6a:01:41:
a8:73:cf:22:be:f2:b1:1f:5c:02:7b:5c:b9:d2:a5:
4c:37:ac:7b:a0:ac:40:d9:92:e4:cd:2f:14:8b:84:
cd:56:b8:4b:c4:b9:ef:90:38:0d:8b:52:3e:bb:50:
5e:b0:43:aa:b4:17:1f:d5:48:f5:19:61:81:4e:67:
f1:0f:d6:7b:a7:28:5c:d9:08:64:5c:03:bc:eb:db:
60:06:ec:f8:72:f2:69:ac:db:4f:12:f8:7a:c9:bd:
69:2f:20:b8:64:ce:f8:a2:31:7a:ca:cc:74:19:b6:
e3:a9:80:d4:56:57:ae:8c:d2:1f:9d:28:8d:57:49:
a9:22:59:56:49:ad:e1:8e:b5:2c:0f:2d:34:f7:74:
56:92:cc:a5:78:c3:17:c5:98:0d:1f:b4:31:81:25:
0f:a5:fe:fd:04:78:d9:cc:0b:6d:8b:c4:37:52:78:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9D:C3:10:3E:F5:92:F7:C6:10:DE:3D:85:72:7C:F4:96:7F:60:B3
X509v3 Authority Key Identifier:
keyid:DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:26:e9:32:50:21:c2:39:df:53:e4:3a:b9:da:af:1b:ef:bd:
b8:f0:9e:92:f6:6a:cb:56:2f:46:ad:36:47:48:fe:72:17:00:
c0:08:65:fe:9e:e7:88:28:72:57:d5:29:b6:42:6e:ed:3b:56:
ab:5a:9c:a3:ce:ca:79:c3:b2:f3:0e:4b:d0:eb:e6:1b:3c:14:
27:35:e8:ba:c0:79:04:e3:b0:e2:a9:d0:6e:60:4c:2c:83:b8:
69:00:05:55:c5:2b:76:8b:0e:a1:a3:4b:0c:26:9a:d1:44:79:
c4:6f:a6:a2:fe:9a:7b:83:46:f7:1a:e6:26:4d:7a:91:c5:62:
e1:5d:6c:c8:db:20:1b:f0:b8:ec:6f:a9:27:83:4b:de:66:db:
5f:68:ab:94:65:6d:c1:70:21:64:44:9c:33:1e:fa:a7:8e:02:
ff:d9:c7:86:10:20:36:37:8f:ff:e2:d0:9c:fd:1f:3d:9b:ba:
3b:5e:ee:d0:7e:f7:0d:fb:70:18:85:02:4d:ee:6b:1d:70:fe:
5d:2d:f5:0b:6e:a1:c6:b8:98:dc:d5:e9:6d:1a:c2:7c:3e:78:
69:82:4f:24:26:fd:de:c0:c2:a9:41:fd:2d:53:92:40:a1:0d:
6b:a5:b6:e2:f2:99:db:eb:db:fd:9d:a0:4c:f2:61:56:1a:0f:
27:50:84:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:46 2026 by rpki-client