Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: kKJrxm9BVgGmV7KDpU67KBpCLxhCDV/rn1SoqCRjai4=
Subject key identifier: 96:0F:75:A7:39:18:BC:2B:A2:BD:9A:97:FA:8A:3B:AF:40:32:0C:E4
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 019E30057CFC498CD78F3C4C93DEF7A6621D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 1183
Signing time: Sat 16 May 2026 09:02:06 +0000
Manifest this update: Sat 16 May 2026 09:02:06 +0000
Manifest next update: Sun 17 May 2026 09:02:06 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: DzPTEE0ecggah1JPH1OqBy7hIP8VxjBm37L/CG4OJNw=)
2: VfT1jovZQbB_GOxrewqAg31IJD4.roa (hash: rEaYnnOYpTkHENGl1d6pSu6EPvs3HHaHkQH4luV+aMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:7c:fc:49:8c:d7:8f:3c:4c:93:de:f7:a6:62:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: May 16 09:02:06 2026 GMT
Not After : May 17 09:02:06 2026 GMT
Subject: CN=960f75a73918bc2ba2bd9a97fa8a3baf40320ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:9f:ff:3f:dc:a0:25:d6:f8:f0:2b:dd:42:
06:75:3b:03:ec:05:8d:a9:79:3a:f9:3f:2c:3a:17:
dd:c1:51:4a:30:66:00:0f:18:49:58:5d:94:d8:05:
3a:17:9c:ea:b2:74:e0:53:18:2f:3f:4a:38:ee:40:
d9:d0:4b:8e:64:80:a2:48:70:0e:93:82:bc:82:2c:
dc:4f:c5:dd:f1:ad:c0:9c:f6:72:c6:97:ed:8a:c9:
44:bc:b4:1e:8b:d6:dd:02:1f:8e:24:c0:8c:19:3c:
6e:96:17:d9:dd:14:6a:84:04:bb:09:71:9e:8b:09:
8f:b2:4c:a1:5f:9a:15:07:2c:9a:64:27:51:ed:6c:
66:d2:8f:08:63:19:92:8d:1f:07:f5:36:da:0a:87:
26:71:e8:13:f3:e1:05:c8:cc:b1:a6:b5:6f:ed:39:
11:68:ce:f2:17:31:e9:cf:26:e5:96:2c:d6:5c:d1:
26:2f:10:d8:57:b3:ff:c2:fa:8b:ef:f1:d7:b0:0e:
2b:6c:a9:8b:8b:bb:c6:2e:54:8b:c3:e9:64:40:80:
13:1d:ac:08:2e:7a:c1:bc:63:34:ae:a9:e7:d9:a4:
6f:eb:0a:9c:c1:d9:77:ea:31:e5:73:55:8b:97:57:
aa:a1:28:43:64:65:76:00:1c:df:71:bc:e6:42:53:
28:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0F:75:A7:39:18:BC:2B:A2:BD:9A:97:FA:8A:3B:AF:40:32:0C:E4
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:63:9c:05:a4:18:c6:12:20:a1:61:09:b6:89:88:56:43:8c:
e5:4c:2f:33:9d:7d:fb:7f:83:fb:11:85:5e:fe:ff:b9:0f:ee:
f5:e2:5f:9d:60:1d:6b:cc:57:84:68:05:18:3f:4e:c2:78:47:
63:0d:92:5f:1e:01:98:90:97:a6:42:b7:4c:45:56:d6:db:54:
8f:5b:f6:3e:1c:31:56:2c:24:06:01:39:68:3c:0c:ee:9a:4a:
31:0f:da:6d:f5:ce:77:50:a8:72:e4:d4:e7:77:68:2e:1a:e2:
33:c1:48:24:ce:fe:f8:9f:02:15:f8:cb:bc:67:17:d0:d6:e8:
a8:e7:70:98:37:3a:65:29:99:cb:0c:b4:c8:61:1d:ee:7c:5a:
cf:d6:18:df:e6:ed:58:ba:1c:b8:e6:82:81:d0:0c:a8:d0:6d:
48:5f:68:80:c9:eb:d5:7e:13:2b:fd:33:34:7c:66:2c:1e:e8:
a0:aa:ed:64:6d:79:99:83:41:6a:ff:78:17:86:82:ef:75:b5:
dd:d1:e5:de:1e:fe:d8:47:46:74:d3:de:f6:c8:7e:50:88:d1:
fe:ea:7e:49:ee:e7:d1:28:dd:8c:d2:97:03:80:ce:2e:43:e2:
83:a7:3e:3b:0a:54:58:81:ce:33:28:74:d5:b6:bb:66:ad:89:
41:9c:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:05 2026 by rpki-client