Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: 2qTtEnX9XkeizzfdkRjbjlW+k1TBt+tS6BG1L535Zuo=
Subject key identifier: A8:8F:87:B6:C6:33:CE:86:74:59:A5:5C:40:20:44:F4:58:36:DD:31
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019E30049FD097AECA48E033559198E2BC29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1529
Signing time: Sat 16 May 2026 09:01:09 +0000
Manifest this update: Sat 16 May 2026 09:01:09 +0000
Manifest next update: Sun 17 May 2026 09:01:09 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: FmUaD3obwOusykRwclS2mT3CbyCC0J3eRuy9vXuSCQ4=)
2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:9f:d0:97:ae:ca:48:e0:33:55:91:98:e2:bc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: May 16 09:01:09 2026 GMT
Not After : May 17 09:01:09 2026 GMT
Subject: CN=a88f87b6c633ce867459a55c402044f45836dd31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e5:14:dd:0e:9b:e6:80:ce:b2:04:54:ec:9f:
28:16:01:cf:06:cb:3b:7f:77:bd:55:ac:39:b2:97:
87:5f:4a:f7:01:39:20:95:ac:40:0a:73:fa:b8:20:
d9:35:ad:a8:cd:09:dd:3d:5a:54:bc:03:19:95:5d:
31:4c:cf:ea:f3:6d:57:2e:81:9d:37:8f:11:06:4c:
c7:5b:e6:94:e2:25:80:0b:2f:ca:fd:5a:48:f4:fb:
e8:e1:cd:23:2c:69:12:a0:a6:e3:bb:ac:fd:8f:9e:
f8:e8:5b:a6:c3:80:5f:82:d1:ab:69:31:ec:38:ee:
83:3e:22:28:63:6d:af:25:36:80:bc:4e:cb:f1:98:
44:d4:cc:c8:65:2b:d3:5b:86:95:ea:0a:df:ba:db:
31:b2:fb:d2:74:6a:c7:6a:64:59:27:a2:39:b9:00:
e9:d1:ab:c1:3d:18:aa:f7:a0:89:b6:26:84:cb:09:
9f:c5:af:1e:91:4d:b6:7c:cc:34:f5:d8:61:05:45:
b7:e5:62:82:a1:1b:3b:05:83:da:6e:a3:8a:af:de:
33:0f:67:d4:ba:f8:a8:38:06:77:54:19:d1:f2:85:
34:a8:34:99:fe:18:d4:ef:da:b1:c5:a5:2d:fb:aa:
ea:de:9b:0e:72:81:6a:98:8b:76:b8:b8:20:b3:78:
79:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8F:87:B6:C6:33:CE:86:74:59:A5:5C:40:20:44:F4:58:36:DD:31
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:2c:1e:ec:4d:4e:7e:ad:9e:36:cd:83:20:33:79:cc:22:53:
5b:78:c1:0b:ca:75:65:b8:78:b3:2e:8e:a3:d2:3f:a7:80:bd:
9b:d7:e7:f5:cb:7c:97:aa:0d:e4:9b:4d:fe:f6:96:1b:bb:e0:
a9:03:92:6f:c8:09:d2:43:a3:0b:24:dc:44:57:c6:16:10:08:
08:81:cd:5d:e7:1e:cb:db:35:ce:71:cb:f2:96:fd:62:1d:55:
f9:ef:d2:a4:38:82:b9:50:c9:6d:36:c1:f3:03:48:5d:c5:09:
17:6a:48:cb:9b:c2:55:6a:bf:c7:36:18:cd:ef:ce:4a:70:fe:
e8:7a:fe:57:6c:a5:fd:00:cc:e0:d7:95:c2:b0:93:07:6a:2e:
05:f6:53:46:6d:ee:14:77:07:7f:1c:ac:18:33:3a:ff:31:f3:
42:d3:b9:47:81:50:75:04:c2:57:82:ec:4a:e0:03:28:f8:c0:
21:cc:44:4e:d7:39:1a:f5:d7:b3:af:f6:da:a6:0b:68:78:8f:
46:da:46:ea:44:35:4f:32:04:df:6d:48:63:0f:b9:df:fa:5a:
27:3c:01:b7:e5:e2:c1:3b:e4:55:82:7f:7b:59:5d:49:46:6b:
8e:df:d2:77:09:98:7c:70:95:6e:e4:4d:0a:2a:13:df:0d:bd:
23:f0:ff:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:03 2026 by rpki-client