Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: jzFK75nn4lGPeZTXtcnWyIPzcGZbldb0FAHRaEQjb2U=
Subject key identifier: AE:A8:40:7C:5F:C3:64:97:02:AA:FA:24:E4:48:83:DC:7E:55:D6:59
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 019F17C26F0CF6098C1E1AF85A937B4B4D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 11FB
Signing time: Tue 30 Jun 2026 09:00:46 +0000
Manifest this update: Tue 30 Jun 2026 09:00:46 +0000
Manifest next update: Wed 01 Jul 2026 09:00:46 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: 2dnR7xni419eSTJyMWh5hyeTTt7hfzMB8ygEj5R2l1s=)
2: VfT1jovZQbB_GOxrewqAg31IJD4.roa (hash: rEaYnnOYpTkHENGl1d6pSu6EPvs3HHaHkQH4luV+aMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:6f:0c:f6:09:8c:1e:1a:f8:5a:93:7b:4b:4d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Jun 30 09:00:46 2026 GMT
Not After : Jul 1 09:00:46 2026 GMT
Subject: CN=aea8407c5fc3649702aafa24e44883dc7e55d659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f3:fa:ea:48:ae:e5:1e:28:d9:02:d6:55:75:
7b:55:d5:06:60:a9:0f:67:14:d5:0e:96:6a:2f:33:
55:6a:6e:c6:4e:8f:fe:07:2c:6f:1e:95:27:51:b4:
a1:cd:4d:b3:94:f9:19:88:49:ea:14:0c:7f:81:10:
46:6b:1c:dc:09:a1:8e:96:c3:29:df:f4:e0:90:47:
0e:09:e9:6c:eb:9b:a3:82:73:51:10:b6:9b:12:e1:
b0:35:0d:f7:83:ea:2e:ab:be:41:7a:4b:53:fe:59:
61:d9:fb:02:75:8d:d2:71:6c:82:ad:a4:00:a7:db:
10:e4:93:79:d2:f7:8b:53:14:96:a5:61:f8:20:1f:
f6:30:ab:56:22:1e:c5:5a:04:5c:e9:17:da:d8:0e:
a9:ee:0f:85:cd:6b:42:e9:d0:90:70:bf:ff:1f:4d:
a7:16:03:7a:c5:50:ce:d7:f9:fe:48:b7:f0:ff:78:
8e:b4:2e:cc:26:e3:75:3d:d7:e9:f3:d3:59:61:c3:
3c:fe:d2:2d:ec:21:9b:5b:0a:1b:62:91:25:e4:91:
53:ec:18:86:cf:31:29:72:5c:a0:79:5f:a2:3d:06:
72:50:5f:f6:9c:33:84:75:a4:db:44:b7:be:38:db:
3d:94:d0:b1:1b:57:cd:de:9e:e4:2b:48:4b:a7:4a:
c2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A8:40:7C:5F:C3:64:97:02:AA:FA:24:E4:48:83:DC:7E:55:D6:59
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c0:45:1c:09:0b:05:ed:2d:89:55:ee:7b:fd:aa:e5:7b:bb:
28:76:93:09:cc:49:6d:38:94:89:95:04:49:e3:c9:83:f9:01:
79:62:20:0b:e1:c8:c0:78:45:15:2c:11:64:6b:b0:88:35:8d:
46:b3:7f:a1:a4:4e:54:de:5d:2a:fe:55:26:f9:ef:ff:bb:35:
ac:6d:fb:76:4a:0b:94:bc:aa:3b:d3:64:90:64:af:db:b5:c8:
e0:f9:53:a3:4e:4f:13:88:22:7c:21:8a:68:26:15:5f:4b:17:
6b:01:0c:04:62:52:cf:55:5c:19:7b:dd:ce:fe:9a:f0:10:5a:
cc:b0:79:f8:d1:0a:9c:60:2d:1a:41:28:f5:ed:43:e9:8e:71:
f6:e0:64:d5:fc:e0:2a:1a:1e:99:a4:0f:58:2d:04:b6:07:ed:
fc:60:6b:aa:b4:98:0c:53:0b:79:bf:89:50:99:5c:56:40:7b:
9c:16:ee:15:a7:70:2a:23:95:08:8b:58:22:89:86:48:7b:e9:
d7:ee:6d:ec:72:9e:79:66:d4:bc:59:fa:ee:2b:db:83:1a:06:
3e:f5:b1:35:bd:ef:83:54:97:89:bd:47:0f:d3:63:6d:2b:60:
33:4e:26:62:a6:28:b2:35:0c:9b:61:91:2e:82:39:13:fb:fe:
42:a8:53:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:34:01 2026 by rpki-client