Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: AOT3Zue3bhDimhgM3Mwc6NaLmPEahqVI+yyoaZojLZw=
Subject key identifier: 00:E7:7C:A4:F3:B9:9F:12:09:CC:18:66:32:20:D8:69:C3:5B:51:D6
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 019E1DC73D3758782E8F077F5FEB1922B04A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 1230
Signing time: Tue 12 May 2026 20:00:56 +0000
Manifest this update: Tue 12 May 2026 20:00:56 +0000
Manifest next update: Wed 13 May 2026 20:00:56 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: 5KTIbIHjv1UuX67GfXiAdX50JEPCQdDCAQj2BODrvls=)
2: 3_erjLvBR9ChA8-FV4FDl1_qWOo.roa (hash: ODC0IK0RSmBwgajSFs0H62MxGdt/m1+W1l/+zS2FxXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:3d:37:58:78:2e:8f:07:7f:5f:eb:19:22:b0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: May 12 20:00:56 2026 GMT
Not After : May 13 20:00:56 2026 GMT
Subject: CN=00e77ca4f3b99f1209cc18663220d869c35b51d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:bd:21:69:eb:a7:16:82:d2:34:c5:7f:0e:
03:f6:3e:72:57:55:84:0c:ea:43:96:e7:66:f9:10:
28:c4:f4:1c:61:89:ed:f2:48:1c:dd:d7:00:eb:c3:
bb:05:39:fc:02:fc:e7:74:45:63:d8:ba:4f:43:0c:
9b:30:62:66:8f:a0:e3:d1:8c:c8:a4:98:09:ce:7c:
67:3c:6b:37:db:02:79:d9:25:97:33:47:04:be:04:
39:94:3e:ce:19:c2:c1:d7:f7:1c:ae:21:15:e2:4d:
c1:d5:2c:85:22:4a:f4:5e:a9:7a:1a:3a:14:f7:04:
50:5f:72:02:a4:13:c4:56:a4:2f:d8:72:ce:74:93:
b4:f6:5d:7c:99:e7:7a:9f:b0:75:aa:27:ae:78:2c:
c3:6e:23:29:02:e0:25:a0:b0:cf:9b:3e:10:c5:fb:
11:b6:4c:17:a5:38:15:89:ae:45:ff:bf:1d:2c:72:
4d:51:2e:69:aa:9b:f3:8d:21:66:5f:84:04:86:bd:
9b:71:86:92:c3:8d:98:0e:74:77:2d:dd:ec:91:06:
de:61:24:a9:f9:5a:c4:fe:7b:de:13:ac:14:f8:8b:
73:6b:c7:1e:b4:5f:80:c4:ee:46:53:4a:96:fe:9a:
40:ef:15:23:e9:e7:22:50:cd:88:ec:24:c3:e6:cb:
47:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E7:7C:A4:F3:B9:9F:12:09:CC:18:66:32:20:D8:69:C3:5B:51:D6
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:7d:e6:b1:0d:b7:0d:6c:13:43:31:8a:eb:88:a7:51:15:b4:
e7:b3:48:94:1e:1a:28:4c:4a:68:cb:7f:14:57:27:12:0f:30:
4d:1a:6a:6e:0e:c7:fa:e8:52:6c:47:99:6d:72:08:39:fa:43:
82:a3:6f:92:33:83:95:4d:a0:89:b3:63:6a:7a:cd:a0:a3:96:
5f:d6:9a:90:1e:7a:d3:78:cf:33:36:dd:4d:55:c8:00:a7:ab:
8c:1b:94:ba:74:0e:66:14:95:92:50:15:d1:d8:cc:1f:ab:42:
81:48:72:72:f4:31:5f:7a:de:c5:c0:d9:95:96:8f:ea:34:67:
26:d6:d5:ad:ca:60:bd:1c:f6:52:e2:6d:74:2d:61:7a:85:d5:
c6:4d:d7:c8:1a:bf:b2:54:75:3e:22:10:ce:e1:27:1d:21:e5:
7a:e8:5e:b9:f6:e0:1a:80:2f:62:b6:c5:bc:09:cb:05:84:08:
28:43:54:87:0c:3b:47:ec:dd:96:19:cb:30:53:9a:51:41:77:
cc:6f:23:7b:64:e9:0f:c0:0f:59:d3:fe:cc:06:a3:cd:6f:de:
e6:b9:57:98:0c:ac:8d:e3:cc:02:48:9c:fb:8f:3d:88:49:26:
1b:aa:f2:cf:cd:45:f2:fa:2e:d9:36:c0:3d:7b:31:d3:99:06:
78:be:20:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:56 2026 by rpki-client