Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
File: 2NYGQYZJDYzqI0f_ejqCSS0feXc.mft (raw, json)
Hash identifier: 8+qigfA88WkeERX894eIzi7eIRA1DOmDL86Mxrnpkf0=
Subject key identifier: D5:D6:16:72:E6:D2:1D:F4:86:6B:4E:A7:3E:37:96:BB:19:B4:47:84
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 019E1C46BFA531BB46379D2BD119645D2256
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
Manifest number: 1906
Signing time: Tue 12 May 2026 13:00:59 +0000
Manifest this update: Tue 12 May 2026 13:00:59 +0000
Manifest next update: Wed 13 May 2026 13:00:59 +0000
Files and hashes: 1: 2NYGQYZJDYzqI0f_ejqCSS0feXc.crl (hash: EldTPQQMMxbXcgRnU321L7tH8r82C28ndtEHtG0HZqg=)
2: Oj7GkZ1gosIE_T4nDeotCzCQC7s.roa (hash: fIjNvO1HQDm8ZWSxbByrHxdGUOYQvhWGEJs5EIKuVmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:bf:a5:31:bb:46:37:9d:2b:d1:19:64:5d:22:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: May 12 13:00:59 2026 GMT
Not After : May 13 13:00:59 2026 GMT
Subject: CN=d5d61672e6d21df4866b4ea73e3796bb19b44784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:7f:63:39:1e:36:f9:d7:05:6f:44:09:2e:
81:aa:94:d1:88:01:f3:7b:08:ff:d1:a7:5f:c9:8c:
33:22:99:76:ff:af:7a:05:17:70:19:9c:b6:c4:85:
09:cf:df:0f:ab:c7:ed:45:9f:77:85:a4:b8:f9:ad:
60:5c:cb:45:92:6a:d8:52:1c:50:6d:fb:13:d9:97:
8b:e9:ad:ea:0e:c9:55:e1:b4:c3:c5:be:33:78:59:
d3:50:7e:8e:9e:ed:9f:81:1a:a3:fe:db:30:c8:f9:
67:5a:81:11:ba:51:0c:05:40:47:cd:e5:08:33:32:
f4:0b:3a:40:47:3b:b9:60:96:a4:69:72:16:89:37:
8c:42:18:0b:8e:4f:b9:f0:0e:58:9f:8b:44:c7:4a:
4f:1a:44:e0:b5:16:c3:1c:f9:c2:ca:5d:3b:0c:5e:
45:69:68:c5:da:0d:df:84:22:cc:dc:b4:d2:e6:dd:
43:fd:a0:a4:73:45:eb:06:bf:1f:7a:e2:8e:b8:9c:
16:94:fb:1d:d9:c9:ea:e9:fb:e9:1b:2d:cb:8b:c3:
45:ab:31:95:ef:34:e8:f1:70:6a:a8:27:3d:15:0b:
a2:bd:47:e3:c5:a9:22:1a:5b:06:13:c5:ef:bd:9b:
0a:f0:6a:af:75:6a:28:3a:9f:9d:f5:a0:66:ad:91:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D6:16:72:E6:D2:1D:F4:86:6B:4E:A7:3E:37:96:BB:19:B4:47:84
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f5:f8:cf:dc:51:50:62:12:75:48:ac:f6:c2:bd:27:4e:fc:
04:f9:70:59:a5:70:50:b1:72:8e:95:b8:7d:18:64:8d:70:13:
b5:21:df:35:dc:47:30:af:0e:68:c3:50:ca:45:8d:c5:48:4c:
1c:1a:cc:74:63:ed:19:ad:7d:97:57:dc:1c:8f:60:23:f2:68:
a0:de:c6:92:c6:68:64:82:e7:56:ea:5a:98:1d:f9:97:ee:35:
aa:eb:3b:fc:41:ac:c8:8d:81:76:81:2e:00:86:81:80:b2:35:
10:94:6c:d0:b5:56:74:36:5f:6f:2f:cf:cb:50:61:95:99:07:
51:b7:b0:5d:8e:48:34:72:ce:e1:2d:f6:76:15:ed:f6:2c:bd:
3a:3a:c8:8a:3b:31:90:31:b8:98:da:89:7b:a7:4c:56:94:68:
4c:1c:51:2e:73:1d:d5:79:72:4f:d1:de:01:6f:3c:be:81:bf:
14:cc:6a:20:35:dc:c1:0f:0e:bc:f5:fb:67:c1:82:19:0a:1c:
e0:05:00:25:6a:77:df:10:59:37:68:98:41:fc:a3:1d:3e:21:
22:0c:01:ba:a1:7f:2d:de:f0:6a:9e:9d:f5:a2:3e:b0:f3:81:
89:1c:0d:b0:3f:57:cb:14:e3:6d:1c:22:75:af:79:b4:d0:7c:
0b:8f:a7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:19 2026 by rpki-client