Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
File: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft (raw, json)
Hash identifier: b3csUsBjO5+rPi/CX6kKBfK70tdJRMvZJFwA3RqyOOc=
Subject key identifier: 46:AA:55:69:F1:9D:35:82:66:7C:53:F6:79:31:08:2C:E5:FD:1D:1D
Authority key identifier: DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
Certificate issuer: /CN=db2d75c6d547750642241b0749cfa052c8c17f34
Certificate serial: 019F190CC8E3165EB053A1F6EC6A9E68EC4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 15:01:35 +0000
Manifest this update: Tue 30 Jun 2026 15:01:35 +0000
Manifest next update: Wed 01 Jul 2026 15:01:35 +0000
Files and hashes: 1: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl (hash: X+WhgyMV6xaCIL2JuMuT73B25qwgLAL19Eew0swKo/o=)
2: RYCkmpH2b2Jhy7VdmwMy71iHAMU.roa (hash: m7nxILjYkQDIx4jO5jxneiBadE/Bw699fTnvikNCX4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:c8:e3:16:5e:b0:53:a1:f6:ec:6a:9e:68:ec:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2d75c6d547750642241b0749cfa052c8c17f34
Validity
Not Before: Jun 30 15:01:35 2026 GMT
Not After : Jul 1 15:01:35 2026 GMT
Subject: CN=46aa5569f19d3582667c53f67931082ce5fd1d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:19:fb:27:8f:95:ae:6d:18:a7:e6:52:cc:
bf:35:6b:49:65:4b:a2:0c:bd:64:6a:4f:03:56:e8:
e6:85:aa:29:65:b5:fa:78:b5:3e:15:fe:f7:c5:3c:
8e:06:64:09:2b:2a:72:bb:18:86:ce:8f:cb:df:08:
88:cd:84:a4:ed:b0:f2:e7:90:99:c5:99:bd:d8:99:
de:89:f2:fd:e9:f2:4f:32:b1:f1:4d:59:96:60:23:
22:0a:43:0d:91:fb:75:24:12:29:38:20:8d:2b:0b:
73:a1:fd:b3:40:c0:09:4b:92:db:26:ae:61:3f:9a:
18:b6:be:11:48:58:7e:24:d7:f5:b0:81:42:55:91:
20:31:68:98:67:92:a9:0c:e8:31:55:24:5f:d5:9a:
7a:6c:71:93:82:da:2c:bb:3e:76:d9:31:41:f0:9a:
79:20:84:7d:aa:19:5d:94:72:e0:fa:19:ff:58:63:
08:88:16:93:f3:4d:9f:55:48:b0:0d:f6:1e:4b:2f:
47:a8:41:91:a9:ed:1e:6b:f2:1c:f5:d9:0d:61:7c:
a3:30:1c:a8:91:d3:09:7a:d7:cb:61:be:24:71:c4:
da:59:bf:15:d7:7d:0a:15:82:92:73:bc:49:34:ff:
da:ff:18:10:b6:e6:0b:cd:a4:57:9e:23:d7:92:ed:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AA:55:69:F1:9D:35:82:66:7C:53:F6:79:31:08:2C:E5:FD:1D:1D
X509v3 Authority Key Identifier:
keyid:DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:af:b2:80:b7:db:de:24:79:3e:ca:c1:44:92:cc:2b:45:cd:
90:29:e8:a5:6e:6e:a2:b4:bb:a9:ae:7d:7f:70:3b:b8:42:3f:
90:70:7e:d9:7b:30:07:76:f1:32:dc:a4:e5:f0:bd:23:5e:a8:
25:83:27:f0:9a:36:0e:2f:bc:d4:ff:52:38:7f:a7:fa:54:9d:
b0:2c:d3:c9:a7:a2:6e:26:17:d1:00:5b:4b:f2:f3:25:43:a8:
18:1e:0d:56:82:af:81:18:51:f7:c7:d3:5e:13:ab:e8:c6:f4:
51:66:fd:4d:85:5c:b7:66:38:fc:bc:4c:84:4d:5b:54:99:8d:
8c:3a:da:70:98:0a:1b:56:08:7b:ef:a0:5a:5e:6b:3b:0c:a4:
2c:56:a4:e6:63:b4:e2:a4:08:5b:e2:36:4a:0b:03:be:af:aa:
15:68:43:8a:99:65:08:12:27:45:26:c2:54:15:c2:2f:65:57:
ea:06:73:f0:42:89:48:8f:61:b1:09:44:4e:5c:f4:73:f1:a3:
d0:b2:22:45:45:8e:5b:98:e5:95:97:df:77:a3:d0:99:2a:b4:
36:53:be:37:73:04:f1:ad:9a:ba:11:f1:63:7f:18:74:23:8a:
48:a8:6c:72:5d:c7:3a:a9:1b:dc:00:fb:66:61:28:e4:7a:18:
d1:7a:31:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:31:44 2026 by rpki-client