Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: RIqsKzUNJWbz6EulfLodDg9/ZiFj8Jr5CkOkTfQBHFc=
Subject key identifier: B1:4B:6A:1B:03:EF:C1:FE:D2:71:EA:02:1E:7A:FE:FA:93:EC:CF:83
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 019E1E35171557A86BF3B65DDE7AD5AC5CF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 1906
Signing time: Tue 12 May 2026 22:00:56 +0000
Manifest this update: Tue 12 May 2026 22:00:56 +0000
Manifest next update: Wed 13 May 2026 22:00:56 +0000
Files and hashes: 1: Wx516h-ycz_F6WDuwcZAFe5X748.roa (hash: OBge6N4+W5EoPiH34P9HhCCHgJeyBg+k4ngzYQtz6A0=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: BhS53YXk5joKx4sy8uN5EnQR1HglPnuiOAbmEceAqZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:17:15:57:a8:6b:f3:b6:5d:de:7a:d5:ac:5c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: May 12 22:00:56 2026 GMT
Not After : May 13 22:00:56 2026 GMT
Subject: CN=b14b6a1b03efc1fed271ea021e7afefa93eccf83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9f:05:35:7e:b6:0b:a4:f8:74:f3:d1:4d:45:
22:14:05:04:56:ef:9c:d7:16:64:10:da:c0:d9:9f:
1b:1a:a0:18:1d:b5:85:9c:aa:b1:f3:c8:40:d6:4e:
c2:ce:4b:44:96:72:25:b6:5a:d0:59:33:90:a6:6f:
1e:d1:c3:1f:77:58:a5:eb:f7:b9:c5:06:87:cb:28:
5f:63:eb:d3:56:f3:8e:45:58:f3:a4:4f:b9:f2:a9:
5c:97:63:d7:18:eb:c9:59:25:a9:90:6b:78:e7:4d:
74:22:cc:c4:a9:f8:cf:5c:21:c6:10:5f:ca:5c:83:
7c:ea:bf:5b:cd:e8:4a:20:d8:f6:2a:28:83:80:0e:
ea:dd:0d:1f:ad:17:f5:20:a5:a0:81:e3:da:36:8b:
6f:28:14:ba:8e:e1:80:ce:37:ed:36:00:7f:64:26:
34:62:12:bf:86:a7:a4:5a:c2:68:1e:ac:90:d9:2e:
d9:7f:54:11:c6:fa:22:af:a7:92:a0:48:29:d2:77:
7b:9e:7c:f5:5e:e7:38:88:0b:4f:1b:22:ba:a8:9e:
81:55:60:26:ba:e0:67:63:39:58:bc:a8:0a:a8:ae:
b5:49:01:96:e0:91:1b:e2:21:58:cb:0b:1b:f2:af:
71:0c:9d:bb:64:6f:24:3f:20:a6:fa:e5:3d:8d:f9:
51:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4B:6A:1B:03:EF:C1:FE:D2:71:EA:02:1E:7A:FE:FA:93:EC:CF:83
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:19:29:db:00:14:bc:04:57:03:90:7f:03:7d:8d:3d:48:cb:
e0:69:aa:cf:77:61:8e:50:3d:14:c4:a1:9d:08:21:84:1b:67:
9f:69:da:5b:e0:1c:12:90:05:bd:c3:a9:0e:bd:79:db:89:be:
6b:f8:41:96:a9:73:6a:a5:1b:7a:6e:6b:64:58:bc:4a:7f:72:
81:db:8c:35:3b:2a:6d:29:18:56:57:85:94:f3:9a:89:e7:4d:
8e:42:90:07:6b:d7:fe:b2:2a:0b:15:5d:a7:a0:02:09:2a:db:
c7:9d:d7:74:5a:db:ba:e9:17:1b:a2:7d:0f:89:17:f0:b5:1c:
97:06:aa:01:e5:14:17:48:26:83:94:78:8e:ac:e7:fe:32:7a:
0f:a5:43:a5:95:7f:fd:c8:d3:b1:e5:6e:bb:18:e6:b9:8d:61:
76:43:59:97:41:bc:21:ac:f6:33:37:30:a7:af:f8:cd:24:6f:
e9:3a:35:30:3f:80:4b:84:06:58:59:3a:e4:01:5c:3c:e1:98:
52:81:81:30:a8:16:db:7d:0d:f5:f7:46:73:c9:c2:28:42:bf:
51:c8:54:51:43:61:a8:2f:6c:00:24:f2:7d:52:07:81:08:3f:
a9:ea:22:67:5f:eb:d1:ae:95:3e:43:72:c4:f8:5f:88:bb:50:
65:e2:07:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNRcVV6hr87Zd3nrVrFz3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMmQ5ZmY4NmUzNjNkYjM0ZDA1NTZlYzE2NDUxZjJmN2Yz
MDNkMjQwHhcNMjYwNTEyMjIwMDU2WhcNMjYwNTEzMjIwMDU2WjAzMTEwLwYDVQQD
EyhiMTRiNmExYjAzZWZjMWZlZDI3MWVhMDIxZTdhZmVmYTkzZWNjZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ8FNX62C6T4dPPRTUUiFAUEVu+c
1xZkENrA2Z8bGqAYHbWFnKqx88hA1k7CzktElnIltlrQWTOQpm8e0cMfd1il6/e5
xQaHyyhfY+vTVvOORVjzpE+58qlcl2PXGOvJWSWpkGt45010IszEqfjPXCHGEF/K
XIN86r9bzehKINj2KiiDgA7q3Q0frRf1IKWggePaNotvKBS6juGAzjftNgB/ZCY0
YhK/hqekWsJoHqyQ2S7Zf1QRxvoir6eSoEgp0nd7nnz1Xuc4iAtPGyK6qJ6BVWAm
uuBnYzlYvKgKqK61SQGW4JEb4iFYywsb8q9xDJ27ZG8kPyCm+uU9jflRawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFLahsD78H+0nHqAh56/vqT7M+DMB8GA1UdIwQY
MBaAFMstn/huNj2zTQVW7BZFHy9/MD0kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMWFmNWItMDg5ZS00Y2JlLWJiZTkt
NDI1ZWU5NjhkZjBiLzEveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMWFmNWItMDg5ZS00Y2JlLWJiZTktNDI1ZWU5NjhkZjBi
LzEveXkyZi1HNDJQYk5OQlZic0ZrVWZMMzh3UFNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATRkp2wAU
vARXA5B/A32NPUjL4Gmqz3dhjlA9FMShnQghhBtnn2naW+AcEpAFvcOpDr1524m+
a/hBlqlzaqUbem5rZFi8Sn9ygduMNTsqbSkYVleFlPOaiedNjkKQB2vX/rIqCxVd
p6ACCSrbx53XdFrbuukXG6J9D4kX8LUclwaqAeUUF0gmg5R4jqzn/jJ6D6VDpZV/
/cjTseVuuxjmuY1hdkNZl0G8Iaz2Mzcwp6/4zSRv6To1MD+AS4QGWFk65AFcPOGY
UoGBMKgW230N9fdGc8nCKEK/UchUUUNhqC9sACTyfVIHgQg/qeoiZ1/r0a6VPkNy
xPhfiLtQZeIHiA==
-----END CERTIFICATE-----
Generated at Wed May 13 06:30:25 2026 by rpki-client