Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: 8oKhplZ8yzWoFDfdzuBF+vzrUWczEFDuXNAP402cwR8=
Subject key identifier: CF:09:4B:4F:AC:CB:9F:71:5F:57:75:69:A2:FC:C2:8C:81:BA:6C:45
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 019DF83AAAAEEC7E3C4CCE495AB54B07C266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 04A6
Signing time: Tue 05 May 2026 13:01:27 +0000
Manifest this update: Tue 05 May 2026 13:01:27 +0000
Manifest next update: Wed 06 May 2026 13:01:27 +0000
Files and hashes: 1: ILxA1XEGj58DPvCJ70R3V0QUW0o.roa (hash: 2pgTad0+RDSMUqb1cSCzcPHq0QPOVvclokToC+rjLTI=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: BCgX3y2Ln+dQmaBT11K3E91jCXBst9Z7ZUsOlMiTNvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f8:3a:aa:ae:ec:7e:3c:4c:ce:49:5a:b5:4b:07:c2:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: May 5 13:01:27 2026 GMT
Not After : May 6 13:01:27 2026 GMT
Subject: CN=cf094b4faccb9f715f577569a2fcc28c81ba6c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a9:bf:78:2c:54:36:e2:98:4c:29:9d:9e:70:
91:8b:4a:32:34:33:5a:58:b9:cd:5d:e7:78:77:ee:
9e:03:c0:9b:e5:5f:64:bf:db:8e:58:a0:1d:ce:6e:
1b:f6:10:5f:17:07:54:fb:c0:63:90:62:e8:59:84:
98:82:7c:06:f6:de:6d:43:89:c1:a2:51:e4:82:24:
ff:4c:53:75:93:79:9a:6a:77:54:3a:6c:ff:1e:72:
3f:94:21:f3:d3:d7:3f:63:68:16:1a:76:63:04:8a:
1b:c2:b1:c2:e3:7e:37:db:a1:dd:52:54:ca:22:fe:
cd:ca:60:fe:11:a5:5b:85:6c:ec:ad:50:19:9e:17:
cd:a7:6a:1f:70:eb:1c:6e:95:72:a9:52:43:85:95:
3f:e8:0b:81:c5:27:a5:b5:70:6c:40:dd:54:bd:32:
73:32:4c:92:ec:32:b2:ac:77:a3:83:77:39:db:7a:
46:df:16:e3:6b:69:db:ea:3d:5f:59:6b:f2:97:f9:
90:81:e8:b6:e1:e8:d6:22:cc:34:17:07:9b:96:a4:
81:99:9c:12:cf:62:82:8c:21:81:57:2c:bb:1a:51:
80:fc:d0:c0:6b:01:29:83:b1:50:a0:83:b3:22:8c:
c0:ad:9b:80:b3:48:5d:87:61:e7:0a:77:03:89:5a:
55:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:09:4B:4F:AC:CB:9F:71:5F:57:75:69:A2:FC:C2:8C:81:BA:6C:45
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a7:8e:1e:77:b2:46:e3:12:48:df:5a:02:7f:09:d8:10:ef:
30:cb:6e:8f:79:21:ac:bc:88:f9:a8:f8:09:ee:2f:ac:ed:09:
30:80:3b:a5:22:1c:5d:4e:37:0f:93:68:59:d2:0e:dc:d8:2c:
14:fd:ee:8f:3a:63:6a:44:f7:57:e4:4c:fa:43:d0:cd:d4:64:
48:06:ee:4b:65:61:34:ac:2a:d6:ea:21:12:e5:6b:63:85:d7:
fc:d6:5b:d4:67:3a:3d:1d:31:9c:75:fa:73:da:3e:62:87:a6:
37:d5:09:3c:dc:68:37:0a:c0:87:1e:6e:7b:0b:44:6a:40:e1:
54:fe:e6:33:3c:df:49:1e:26:09:59:c0:92:54:f6:8f:b2:b7:
e8:d3:05:36:d7:89:9e:4b:23:b1:1a:3b:0e:ee:4a:7d:1f:1c:
12:6c:b7:93:fd:0d:47:fd:0e:bb:0e:98:95:53:92:ba:cf:67:
9b:2d:5f:9e:2e:58:4c:90:ca:ae:34:e2:46:87:50:ee:fc:bf:
52:ef:fb:34:76:a1:42:78:6a:2d:b5:32:37:32:fa:3f:c4:0d:
b6:f4:88:3d:a9:91:1b:6e:b6:5f:09:2f:fa:7a:57:ae:3e:2e:
fa:7f:ac:15:92:63:01:07:ca:9e:e1:a1:fb:95:93:8b:39:b4:
d1:7d:7b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 20:11:29 2026 by rpki-client