Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: EwPXNFloryIYc0n+ql2lTfNRR7vfkiNgDA4cAs7T5Xk=
Subject key identifier: A7:F3:AC:B6:BA:A8:3C:1C:DD:D2:B6:C0:09:06:A7:7F:DF:47:F8:68
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 019E1CEBA861ABA815F17F329DC9A6365D09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 1720
Signing time: Tue 12 May 2026 16:01:06 +0000
Manifest this update: Tue 12 May 2026 16:01:06 +0000
Manifest next update: Wed 13 May 2026 16:01:06 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: 8DFUpz2xweLUaAHuVuXlIcfjmM0ZD0sD+n1bAJVuVXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:a8:61:ab:a8:15:f1:7f:32:9d:c9:a6:36:5d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: May 12 16:01:06 2026 GMT
Not After : May 13 16:01:06 2026 GMT
Subject: CN=a7f3acb6baa83c1cddd2b6c00906a77fdf47f868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d4:95:1d:5e:37:0e:45:5a:20:15:8a:73:83:
3f:da:4a:34:cb:1f:8b:37:ac:1d:0e:9a:84:16:05:
a2:15:02:71:17:e7:52:22:eb:86:7c:f3:9b:c8:f9:
b1:b1:27:96:bd:5c:94:a0:a6:b0:90:19:21:87:9d:
b3:5f:6f:08:27:0a:08:b7:74:0f:0c:a2:93:a9:55:
0b:d8:6f:aa:f0:1a:9d:f7:8e:6c:45:d0:b5:a2:64:
8b:7d:6d:c7:7c:91:32:74:87:aa:2c:89:f3:b0:87:
8e:a9:5b:1e:af:69:d6:7b:b1:ea:4e:34:af:a7:52:
8d:71:0b:34:6b:d2:28:15:bb:93:da:e7:b2:ec:56:
bc:21:24:bd:6a:73:1a:8e:31:aa:3a:cf:1d:e5:32:
20:71:f1:09:f3:c2:6e:a1:b7:1c:85:5a:d1:fe:f7:
73:61:c1:1a:21:e6:65:d6:0e:18:63:18:25:c4:c8:
92:3f:63:c3:f7:12:98:db:30:c0:c0:03:b1:c5:8e:
87:1a:72:e6:22:2b:86:26:99:d0:7a:b0:3e:06:bc:
12:b9:20:93:ef:17:f8:a4:ef:99:82:5d:32:18:e8:
2f:ea:86:f3:d1:e3:81:35:e0:40:59:5b:66:c4:ba:
3c:10:52:4f:0e:54:21:ef:3a:c0:59:23:13:e9:f3:
02:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F3:AC:B6:BA:A8:3C:1C:DD:D2:B6:C0:09:06:A7:7F:DF:47:F8:68
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:3f:bc:db:8d:f4:a3:aa:40:9e:82:3e:3a:37:c3:87:0a:9b:
5e:90:b9:43:6e:1b:6e:dd:58:82:b3:f9:72:c4:d6:8d:6a:73:
c4:ab:e1:75:b1:7d:21:35:dd:cd:4d:d8:46:e0:6f:59:e8:4d:
4e:43:f1:8f:74:c2:99:ca:1c:94:83:12:28:17:57:18:a3:d7:
45:52:2b:f4:f4:62:bf:7c:7b:1e:90:e0:86:23:39:68:68:d1:
a2:04:1e:31:45:30:44:30:ef:79:de:d4:3f:79:6a:df:63:d1:
8c:2e:37:53:1f:38:47:05:34:79:4f:c4:8e:44:c1:ba:46:66:
07:01:e1:45:f5:e7:68:e2:6a:ed:19:ad:42:c5:2e:c0:a2:7c:
7d:a6:90:c4:81:e2:04:74:0e:1d:9d:52:4a:c1:c9:bb:f2:51:
91:62:33:5f:f5:7c:6b:b9:01:a6:54:12:39:0e:41:80:1d:dc:
ec:6b:07:01:f5:a9:ab:79:8a:f1:e7:28:89:0a:d9:e4:b7:ae:
dd:a9:a1:48:6f:e6:e8:7a:72:44:54:ca:ce:ae:a7:29:db:f9:
c9:18:c5:64:f4:8c:5e:42:f7:46:9d:b1:f1:1b:35:35:50:fd:
ba:51:2f:d1:da:7d:05:d5:4a:f3:a8:32:ad:7a:45:fa:5f:f5:
8a:93:17:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c66hhq6gV8X8yncmmNl0JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMjM1NjAwMDQ1NWI3YjU4OTRjZWQxNDY5ODVhMGE4ODg5
ZjllNGMwHhcNMjYwNTEyMTYwMTA2WhcNMjYwNTEzMTYwMTA2WjAzMTEwLwYDVQQD
EyhhN2YzYWNiNmJhYTgzYzFjZGRkMmI2YzAwOTA2YTc3ZmRmNDdmODY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdSVHV43DkVaIBWKc4M/2ko0yx+L
N6wdDpqEFgWiFQJxF+dSIuuGfPObyPmxsSeWvVyUoKawkBkhh52zX28IJwoIt3QP
DKKTqVUL2G+q8Bqd945sRdC1omSLfW3HfJEydIeqLInzsIeOqVser2nWe7HqTjSv
p1KNcQs0a9IoFbuT2uey7Fa8ISS9anMajjGqOs8d5TIgcfEJ88JuobcchVrR/vdz
YcEaIeZl1g4YYxglxMiSP2PD9xKY2zDAwAOxxY6HGnLmIiuGJpnQerA+BrwSuSCT
7xf4pO+Zgl0yGOgv6obz0eOBNeBAWVtmxLo8EFJPDlQh7zrAWSMT6fMCSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKfzrLa6qDwc3dK2wAkGp3/fR/hoMB8GA1UdIwQY
MBaAFNsjVgAEVbe1iUztFGmFoKiIn55MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85Yjg3ZjgtY2E5NC00ODNmLTg4ZWEt
NDg2MzkxMTQxMmZhLzEvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85Yjg3ZjgtY2E5NC00ODNmLTg4ZWEtNDg2MzkxMTQxMmZh
LzEvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyD+82430
o6pAnoI+OjfDhwqbXpC5Q24bbt1YgrP5csTWjWpzxKvhdbF9ITXdzU3YRuBvWehN
TkPxj3TCmcoclIMSKBdXGKPXRVIr9PRiv3x7HpDghiM5aGjRogQeMUUwRDDved7U
P3lq32PRjC43Ux84RwU0eU/EjkTBukZmBwHhRfXnaOJq7RmtQsUuwKJ8faaQxIHi
BHQOHZ1SSsHJu/JRkWIzX/V8a7kBplQSOQ5BgB3c7GsHAfWpq3mK8ecoiQrZ5Leu
3amhSG/m6HpyRFTKzq6nKdv5yRjFZPSMXkL3Rp2x8Rs1NVD9ulEv0dp9BdVK86gy
rXpF+l/1ipMXTw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:15:23 2026 by rpki-client