Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: VSv6gmpyjn2156BMkreF+cufbPvOAPhdsJY4mQVc1uA=
Subject key identifier: D2:83:CE:C6:56:4E:46:46:EE:20:66:04:F4:D8:92:38:EE:9A:D0:2B
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019F19B169FC427683B6EBAFE360C98078F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 15A2
Signing time: Tue 30 Jun 2026 18:01:24 +0000
Manifest this update: Tue 30 Jun 2026 18:01:24 +0000
Manifest next update: Wed 01 Jul 2026 18:01:24 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: llRcI8QqYtJP/NwRdSaN1USCo1K+7WBm6k/n5ySBAhE=)
2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:69:fc:42:76:83:b6:eb:af:e3:60:c9:80:78:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Jun 30 18:01:24 2026 GMT
Not After : Jul 1 18:01:24 2026 GMT
Subject: CN=d283cec6564e4646ee206604f4d89238ee9ad02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:55:67:ae:97:7d:ed:7c:32:37:0a:89:0d:
b2:ab:5a:5f:e1:51:fc:68:37:ba:62:d2:a3:d0:46:
ab:6d:f4:1b:bd:e3:f0:dc:b0:17:47:ba:fe:8d:42:
8f:5d:a0:6c:c0:f8:b9:01:d6:a9:7d:09:7f:51:ec:
2e:5f:2f:b2:90:dc:32:92:8e:03:7b:55:fe:ec:da:
07:70:a1:e0:ad:71:fc:dc:f4:dd:41:8f:cc:16:ce:
90:72:e2:08:5f:9b:bf:c0:68:9d:a1:2f:f6:0c:17:
07:35:27:c4:40:9f:3c:36:89:69:63:f8:09:e0:f0:
ce:21:cc:01:c6:1a:62:d4:ef:b0:4b:66:75:41:67:
0b:f7:36:fd:53:b8:ce:44:8b:b3:c7:f3:17:e6:b6:
b6:fe:a7:79:ae:70:3f:03:1b:21:48:93:de:28:ad:
ce:5e:09:87:14:ce:9c:62:d9:5d:32:68:c0:69:9a:
98:e8:ae:b1:3a:52:2d:83:5a:ac:8a:55:2b:70:54:
d7:c0:c1:41:05:1c:79:96:67:63:b4:05:e2:fe:fc:
ca:97:7d:da:b7:fc:c9:a1:37:4a:9e:34:34:3b:36:
da:e5:28:b8:0d:5b:65:d8:d3:64:35:3d:80:6f:d2:
96:d7:9e:30:e2:a8:3e:86:13:15:ce:82:62:1e:96:
0f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:83:CE:C6:56:4E:46:46:EE:20:66:04:F4:D8:92:38:EE:9A:D0:2B
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9e:40:1e:bf:31:ad:8e:d0:18:ba:bf:e8:a2:00:dd:cb:66:
20:bb:59:66:b4:8b:8e:b5:00:d2:27:ef:0d:a0:f6:8a:88:f9:
c9:61:f8:49:77:7a:66:0e:94:62:b5:90:25:c7:23:b6:a7:b1:
d9:43:d2:da:c8:76:63:0b:ec:f6:05:99:f0:12:b6:33:73:5c:
12:b9:fb:76:3a:c8:2e:94:3f:9a:d2:64:a7:9e:e1:93:fc:2b:
ff:d7:47:ab:52:7e:a9:6b:b6:14:95:32:e1:27:4a:0e:e6:08:
91:dc:14:16:12:c3:56:6f:c9:b0:db:56:b4:a0:75:5a:a2:c2:
fa:e3:8d:1d:cf:c6:5c:9f:ae:55:ce:46:83:fc:46:82:c6:14:
ed:8f:47:cb:1b:5c:1f:d0:5c:41:dc:3a:09:e6:d5:ae:57:95:
ff:57:aa:9e:43:db:f6:1c:86:dd:fc:a5:f4:56:de:3a:ef:76:
6b:9b:c6:ec:64:e8:b7:51:ca:e8:46:ed:58:94:5b:7b:a1:6c:
fd:e2:28:38:f9:8b:df:88:44:bf:56:0a:b0:eb:da:f9:b4:b7:
a8:69:d7:b2:fe:81:1a:1d:02:0f:86:37:24:a9:c7:27:9d:44:
b2:e0:f6:5b:d0:0a:78:d0:33:00:fb:8a:71:ec:b6:a7:a0:74:
af:de:1f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:34 2026 by rpki-client