Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json)
Hash identifier: wl2SHOhn+cJ/X/nkMh+1olVDL38ZbHZopBjbZ24v3FA=
Subject key identifier: EF:6D:68:E6:2D:46:CE:32:16:3D:44:EC:F7:42:A0:49:B3:9F:06:33
Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Certificate serial: 019D25F1783D7BD6EA036A9995222F9461A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
Manifest number: B3
Signing time: Wed 25 Mar 2026 17:01:14 +0000
Manifest this update: Wed 25 Mar 2026 17:01:14 +0000
Manifest next update: Thu 26 Mar 2026 17:01:14 +0000
Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: Wb3xubL8DQ+zAT1uHWg0CPHDMgRH2L+CwTmHclVwo2M=)
2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=)
3: 6SEduMHXynvLbGLXlQ-nCG4KDz0.roa (hash: hLjPkc07rz71V/VBtG395boX8ca8vKM/q8gofGURfjw=)
4: RGSDwCL_3DhopF7DDMpgOjHlruI.roa (hash: I4TOgGmivQDbOrWFawlOof5iCr25D2qkBqiHBfM3G6Y=)
5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=)
6: nbL3W9rua5RoYoYaynypFHyWDSM.roa (hash: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:78:3d:7b:d6:ea:03:6a:99:95:22:2f:94:61:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4
Validity
Not Before: Mar 25 17:01:14 2026 GMT
Not After : Mar 26 17:01:14 2026 GMT
Subject: CN=ef6d68e62d46ce32163d44ecf742a049b39f0633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2f:5d:cb:57:b2:86:e8:8c:4e:d6:ce:5c:54:
5f:7d:6b:b7:10:61:84:fe:e8:23:c2:6e:3d:75:8c:
e5:1a:90:1b:12:d9:76:b1:a7:b8:20:bb:2c:c0:fc:
b0:31:41:ea:ed:f6:ab:b0:79:60:f8:4f:2d:7e:67:
a8:dd:b0:bf:96:98:6c:33:3f:4e:8a:d3:cf:c1:a6:
2e:5b:f4:1f:85:a4:8c:28:26:15:45:17:48:92:03:
f3:16:4a:85:2d:6a:d0:fa:af:09:60:4c:cc:e6:8e:
7e:e5:6f:5e:7d:a6:aa:d4:7e:6b:38:d7:da:97:86:
b1:c9:cc:49:5c:83:0f:41:da:85:06:5a:f6:0d:b6:
97:37:4a:fb:2e:8f:93:c1:d4:f9:35:fe:c3:bb:ab:
9b:2b:f6:4d:48:c0:cb:d7:1e:eb:a2:84:2a:61:b2:
2d:c1:21:0f:f4:f3:62:b7:e8:b5:46:2c:36:83:17:
01:52:1b:ea:31:ca:bf:7d:57:b7:92:ba:1c:1d:a3:
cb:39:fa:d1:ca:49:26:cb:af:4e:15:dc:28:22:53:
95:4d:be:05:d6:f6:86:d6:03:0c:f9:99:09:dc:6d:
4f:42:19:ad:eb:35:82:dc:61:67:53:16:4d:71:98:
ec:0b:12:23:88:88:ac:09:8e:6e:6c:e7:99:0d:0d:
0b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6D:68:E6:2D:46:CE:32:16:3D:44:EC:F7:42:A0:49:B3:9F:06:33
X509v3 Authority Key Identifier:
keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a8:ec:94:b6:b5:b4:a8:b5:5a:47:6b:b7:ce:06:72:a4:9e:
5c:c6:b5:2d:5e:8c:34:0e:02:d8:8e:ba:56:53:db:e2:2e:09:
0c:55:7e:17:3d:3c:38:1c:63:dc:3b:78:ce:ba:5c:2f:d8:56:
14:12:42:be:0a:00:49:d5:7e:30:7d:f7:9b:f9:77:d1:a0:08:
de:d4:cd:70:c5:83:d5:58:26:52:b0:23:20:15:d8:2b:1c:30:
96:75:27:9d:6f:f4:c7:d6:b8:1b:4b:b3:77:0b:23:62:b7:68:
13:d8:96:94:82:8a:fa:d0:9e:7d:da:d9:e4:e3:8e:dc:1a:bc:
33:db:a2:79:16:87:26:6c:0b:06:11:aa:d0:24:e5:85:a6:99:
66:7b:b7:45:b7:37:0c:81:4f:cc:44:cf:ff:7d:fd:eb:09:61:
db:1d:2a:49:a5:2a:8d:12:2a:96:4e:88:46:d7:75:f1:eb:23:
25:0e:e7:34:cc:78:85:f3:bd:85:e9:90:ca:06:83:7c:eb:fc:
bd:43:a1:4e:75:c9:c9:4a:88:a7:c1:d9:bd:1f:6a:0b:b4:53:
1a:63:c5:1f:32:20:91:bd:04:79:67:62:9a:56:b3:a1:17:27:
72:7e:ca:39:59:69:09:76:c6:67:ba:0c:60:35:d8:f7:71:ca:
18:3e:57:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:29:06 2026 by rpki-client