Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
File: nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft (raw, json)
Hash identifier: eDDbhfT7tChKMv1VAJ0WYGnkMUmvsRDrfALw6J0zgUA=
Subject key identifier: 5E:34:DE:A5:4B:09:8B:71:80:58:79:92:6B:55:B3:58:79:E4:E6:15
Authority key identifier: 9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E
Certificate issuer: /CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
Certificate serial: 019F11C0B995B8723B68183CFEB9869A7AEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
Manifest number: 010E
Signing time: Mon 29 Jun 2026 05:01:10 +0000
Manifest this update: Mon 29 Jun 2026 05:01:10 +0000
Manifest next update: Tue 30 Jun 2026 05:01:10 +0000
Files and hashes: 1: 1-vCuLQv8-0dOJxqABaWxM4UUc8I.roa (hash: E0Bqgi4xo21RkZJec+827sz7pg8AMyWIq6lhPjrYbo8=)
2: nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl (hash: DLIbBDjbaH/FLavkBN7C7J1QkO+XaMKROHwk+M0fVXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 05:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:b9:95:b8:72:3b:68:18:3c:fe:b9:86:9a:7a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
Validity
Not Before: Jun 29 05:01:10 2026 GMT
Not After : Jun 30 05:01:10 2026 GMT
Subject: CN=5e34dea54b098b71805879926b55b35879e4e615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ba:76:27:d6:2e:14:1b:ad:bc:73:76:db:8f:
6e:07:89:15:39:45:c2:d7:d7:8f:18:fe:8e:e2:ed:
4f:75:c3:1c:56:ba:32:9f:05:a1:72:8e:60:08:3c:
7e:b2:df:85:21:78:8e:68:4d:63:9a:7d:6e:46:c8:
6a:ee:ff:2f:98:7a:92:ba:18:13:f0:8e:91:80:c5:
53:f9:8b:6b:be:2f:82:f9:85:80:4d:1e:5b:55:7d:
05:7d:29:50:b7:a3:a3:0b:94:56:96:86:80:d0:cc:
7d:7f:af:e6:f8:d5:53:c1:8b:54:fa:8f:60:57:4c:
44:88:b6:56:19:1d:d6:4f:b0:e0:0c:fd:c4:f8:61:
30:a3:0e:04:7c:13:56:da:43:58:ce:87:5e:36:8e:
0c:43:bd:43:cf:ab:23:4b:e3:0d:45:d4:9b:08:48:
a0:66:5a:53:e8:0f:35:5d:54:01:aa:d2:e5:e0:8c:
27:20:c8:13:f5:eb:3f:a8:53:f1:9b:e4:93:da:4b:
e8:2d:a7:36:b5:2b:8c:db:7d:e3:5e:68:84:f0:56:
67:1e:33:d7:f0:dc:e4:72:a0:1e:0e:54:74:f7:15:
ba:1b:c2:fe:d4:57:8f:ae:28:7c:ab:f5:a6:ab:cc:
83:52:b1:46:11:2e:c9:d4:7a:9f:a8:d1:91:25:0a:
09:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:34:DE:A5:4B:09:8B:71:80:58:79:92:6B:55:B3:58:79:E4:E6:15
X509v3 Authority Key Identifier:
keyid:9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c4:4d:1a:b7:0f:5b:04:dc:8d:dd:a6:aa:ed:ef:7b:62:ab:
5d:12:bb:aa:21:9f:25:78:a1:ae:08:d9:4a:01:d5:c7:7e:91:
a9:e4:23:76:74:1b:0a:c3:10:fd:c7:11:68:0c:31:8b:05:00:
87:8c:a9:61:bb:da:6f:3b:be:dc:f8:24:20:61:7f:35:fb:8c:
dc:03:66:24:c0:99:ff:54:7c:02:13:fc:ae:fd:49:65:17:32:
40:cf:18:a9:64:8b:ea:d0:fb:31:63:13:49:ef:fc:f9:5e:69:
6a:9f:34:f4:38:44:14:86:7c:e9:70:dc:4a:3e:9a:75:12:72:
9b:ab:ef:8d:54:4d:b3:35:91:8a:11:89:5f:f0:b9:15:af:e1:
c1:41:29:2c:c1:44:77:36:7d:be:7e:91:9f:24:bf:2f:d2:64:
8f:b8:76:1a:bd:bf:d8:cc:14:15:cc:44:b7:97:28:e6:29:cc:
a1:cc:b7:dd:ad:67:b6:58:e3:85:e9:95:75:38:d8:ed:3a:5e:
6c:8f:ec:77:7f:5b:ca:71:28:d3:ab:9a:cb:5f:c7:cc:9c:2c:
d5:00:f2:25:1c:e1:37:83:24:af:97:1c:4f:4f:0f:bb:8f:dc:
06:54:65:42:03:44:54:db:03:40:bf:45:96:5b:50:49:03:00:
0c:bd:b7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:43:08 2026 by rpki-client