Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
File: 2NYGQYZJDYzqI0f_ejqCSS0feXc.mft (raw, json)
Hash identifier: hYa7kEAflJCmBihlIz8IQl5bT1XSjIjSh+BMKQcHzKY=
Subject key identifier: B0:54:2B:5E:0E:70:37:11:41:D4:BD:BB:A0:5A:F4:FE:02:9D:AD:ED
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 019D28F2EF7C9023492BBEF408612ABB97B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 07:01:42 +0000
Manifest this update: Thu 26 Mar 2026 07:01:42 +0000
Manifest next update: Fri 27 Mar 2026 07:01:42 +0000
Files and hashes: 1: 2NYGQYZJDYzqI0f_ejqCSS0feXc.crl (hash: 3baLuRvJlCR63ZlKqxVxhhlf3R//jH0L+Ty4cqPXfq8=)
2: Oj7GkZ1gosIE_T4nDeotCzCQC7s.roa (hash: fIjNvO1HQDm8ZWSxbByrHxdGUOYQvhWGEJs5EIKuVmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:ef:7c:90:23:49:2b:be:f4:08:61:2a:bb:97:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: Mar 26 07:01:42 2026 GMT
Not After : Mar 27 07:01:42 2026 GMT
Subject: CN=b0542b5e0e70371141d4bdbba05af4fe029daded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a6:2d:43:b4:57:18:42:3a:34:d7:d1:97:9f:
b8:0b:94:44:e9:72:28:09:54:0c:c4:3c:04:6e:6e:
0a:00:2f:d0:d7:a8:4f:79:41:8b:7d:30:15:f2:d6:
ff:da:f5:95:dc:0d:ff:1f:3d:4a:71:56:f2:fd:cc:
3c:8e:29:c9:41:6f:fa:9f:1f:3d:7f:82:f5:67:4c:
0a:a1:14:95:4f:92:1c:c4:6e:8e:86:15:bf:54:8a:
71:69:84:7a:16:17:d8:fb:1f:21:af:82:b5:36:e7:
96:43:d2:b2:09:42:e3:dd:95:4a:68:25:12:0e:d3:
5b:c0:8f:0a:7e:cd:7c:b3:cb:56:e7:ce:98:0d:2f:
81:d1:b7:4c:51:c8:0f:4f:c6:f3:e2:9c:e0:ce:e8:
7c:e4:20:bb:53:e6:ed:4e:40:92:8b:54:69:94:27:
d6:ef:4d:e1:a9:ef:49:f3:4f:6f:5d:58:6d:4f:8d:
7a:a0:c7:0c:51:65:03:94:63:63:ee:c5:52:b6:b3:
60:a5:e5:72:4a:de:b9:55:fa:54:41:51:d9:87:62:
57:79:fd:14:22:15:2a:83:eb:4e:e4:93:25:3f:fe:
65:04:76:fe:7a:a7:2d:0a:07:89:38:be:dd:6c:1d:
0e:57:01:81:08:79:d3:21:b6:e5:91:44:66:61:bd:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:54:2B:5E:0E:70:37:11:41:D4:BD:BB:A0:5A:F4:FE:02:9D:AD:ED
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:6a:5d:20:fa:63:42:12:36:09:6f:a8:9d:ad:39:c6:2d:02:
64:5e:9d:f0:d2:7f:b7:47:38:4f:4b:b9:58:49:88:3a:a8:23:
aa:a2:fe:1b:ed:2b:66:4e:be:c4:9c:f5:7e:c6:6b:61:13:f4:
7d:b9:bf:46:13:8f:be:23:a7:c9:ad:16:ae:ee:17:f3:6a:42:
49:b0:f8:f0:d5:f7:da:fc:2e:da:4b:99:ea:e4:81:39:3c:ab:
c2:e8:57:59:c5:4c:cb:08:87:13:0e:3a:6e:d8:38:24:b7:aa:
f0:99:e9:c0:2e:65:7b:8d:9d:4d:51:39:74:f1:a9:e3:23:50:
2d:66:b2:e2:c2:49:bd:3f:33:d5:a9:3c:28:b2:0d:21:8a:9f:
d9:e9:4b:af:c4:90:60:c4:94:3a:6a:9a:34:73:82:b1:bf:f5:
95:ff:57:14:7c:5f:3c:2c:90:f5:65:1e:04:24:28:3e:9f:2e:
2b:10:09:14:29:70:ef:3b:e8:11:e1:47:5e:7a:40:81:82:16:
a1:f8:a8:98:0f:ab:50:52:a9:f1:78:f7:f6:f4:f7:a1:93:94:
4f:e2:af:1e:dd:71:7e:48:99:26:ca:00:06:28:5e:3f:c4:e4:
6b:43:d2:1c:94:ed:70:46:03:fa:2c:82:09:fd:a4:21:12:99:
e0:b1:21:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8u98kCNJK770CGEqu5exMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZDYwNjQxODY0OTBkOGNlYTIzNDdmZjdhM2E4MjQ5MmQx
Zjc5NzcwHhcNMjYwMzI2MDcwMTQyWhcNMjYwMzI3MDcwMTQyWjAzMTEwLwYDVQQD
EyhiMDU0MmI1ZTBlNzAzNzExNDFkNGJkYmJhMDVhZjRmZTAyOWRhZGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qYtQ7RXGEI6NNfRl5+4C5RE6XIo
CVQMxDwEbm4KAC/Q16hPeUGLfTAV8tb/2vWV3A3/Hz1KcVby/cw8jinJQW/6nx89
f4L1Z0wKoRSVT5IcxG6OhhW/VIpxaYR6FhfY+x8hr4K1NueWQ9KyCULj3ZVKaCUS
DtNbwI8Kfs18s8tW586YDS+B0bdMUcgPT8bz4pzgzuh85CC7U+btTkCSi1RplCfW
703hqe9J809vXVhtT416oMcMUWUDlGNj7sVStrNgpeVySt65VfpUQVHZh2JXef0U
IhUqg+tO5JMlP/5lBHb+eqctCgeJOL7dbB0OVwGBCHnTIbblkURmYb30DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLBUK14OcDcRQdS9u6Ba9P4Cna3tMB8GA1UdIwQY
MBaAFNjWBkGGSQ2M6iNH/3o6gkktH3l3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83YWJkZWYtOTFhYi00NmZiLTgyZTIt
NTYwODVjOWU1MjJlLzEvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC83YWJkZWYtOTFhYi00NmZiLTgyZTItNTYwODVjOWU1MjJl
LzEvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGpdIPpj
QhI2CW+ona05xi0CZF6d8NJ/t0c4T0u5WEmIOqgjqqL+G+0rZk6+xJz1fsZrYRP0
fbm/RhOPviOnya0Wru4X82pCSbD48NX32vwu2kuZ6uSBOTyrwuhXWcVMywiHEw46
btg4JLeq8JnpwC5le42dTVE5dPGp4yNQLWay4sJJvT8z1ak8KLINIYqf2elLr8SQ
YMSUOmqaNHOCsb/1lf9XFHxfPCyQ9WUeBCQoPp8uKxAJFClw7zvoEeFHXnpAgYIW
ofiomA+rUFKp8Xj39vT3oZOUT+KvHt1xfkiZJsoABiheP8Tka0PSHJTtcEYD+iyC
Cf2kIRKZ4LEh7A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:20:23 2026 by rpki-client