Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
File: nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft (raw, json)
Hash identifier: 18Fld3q9/BEW9KJcz1LtyAgMPcq+YDrKQcWx4DYyONQ=
Subject key identifier: AC:74:CF:F9:48:AC:C3:50:0D:43:41:E5:F8:9D:67:D2:E2:C6:01:CE
Authority key identifier: 9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E
Certificate issuer: /CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
Certificate serial: 019E2A02677988BF4A80245F54AE888A1B19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
Manifest number: 96
Signing time: Fri 15 May 2026 05:01:00 +0000
Manifest this update: Fri 15 May 2026 05:01:00 +0000
Manifest next update: Sat 16 May 2026 05:01:00 +0000
Files and hashes: 1: 1-vCuLQv8-0dOJxqABaWxM4UUc8I.roa (hash: E0Bqgi4xo21RkZJec+827sz7pg8AMyWIq6lhPjrYbo8=)
2: nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl (hash: wauBjyEIvhNR75EHXY1+m15AGSiya3ti2cyexVAcKbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:67:79:88:bf:4a:80:24:5f:54:ae:88:8a:1b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2a686b1c25d44c7dbd4d4a31fe0c7afd02a12e
Validity
Not Before: May 15 05:01:00 2026 GMT
Not After : May 16 05:01:00 2026 GMT
Subject: CN=ac74cff948acc3500d4341e5f89d67d2e2c601ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:07:88:fc:13:6d:55:fb:66:49:4b:79:06:2e:
e5:43:d9:15:e9:0a:c3:45:c7:71:de:66:4a:ab:68:
2b:fb:71:76:33:b3:52:3b:25:2e:f7:bc:4d:80:af:
65:9c:9b:85:84:10:0e:90:13:8a:86:52:d5:8d:41:
67:82:3c:65:54:55:86:86:80:dd:9f:5f:4b:70:1e:
b5:cc:4b:64:5d:47:97:8e:f8:44:ad:66:ae:9a:a5:
48:01:fb:2c:2a:65:85:82:42:a5:d1:b8:63:f8:1f:
18:82:f8:23:aa:a7:b5:04:20:86:65:bf:c3:f9:eb:
82:b7:e9:aa:37:4e:b6:f6:ce:13:e9:ad:de:60:0d:
a4:84:c6:b5:d8:c5:86:8c:fb:4d:d2:cb:13:4f:85:
c7:3e:ee:74:00:a4:8c:48:0c:25:c5:a1:b8:6d:27:
7e:ab:43:e5:40:77:98:ff:67:d6:70:a1:88:36:5a:
bf:9a:68:e1:ce:60:0a:92:16:7c:98:d3:23:58:94:
ce:9a:86:94:c7:83:ba:6a:90:dc:d8:4a:ca:ac:82:
57:f5:40:10:0d:48:83:bd:dd:cb:64:b5:51:58:85:
66:61:1d:c0:d7:f5:4b:97:b1:43:2f:10:b4:c7:f1:
3a:4e:c5:47:1e:bb:c0:53:db:54:11:83:8d:5d:aa:
0b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:74:CF:F9:48:AC:C3:50:0D:43:41:E5:F8:9D:67:D2:E2:C6:01:CE
X509v3 Authority Key Identifier:
keyid:9F:2A:68:6B:1C:25:D4:4C:7D:BD:4D:4A:31:FE:0C:7A:FD:02:A1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nypoaxwl1Ex9vU1KMf4Mev0CoS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5bf8a9-d434-454b-8885-525d626799ef/1/nypoaxwl1Ex9vU1KMf4Mev0CoS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:f7:56:28:b1:71:12:57:37:23:95:7f:4c:13:a1:55:8b:60:
8f:00:cf:b3:09:fb:87:41:aa:7e:eb:91:23:88:f6:98:10:bf:
f9:28:fa:06:37:c7:4b:14:45:81:6e:53:97:d1:38:30:50:26:
7f:1d:05:64:85:d6:27:94:0d:e8:72:6f:1b:c3:5c:d5:31:51:
52:e1:ce:40:f4:eb:00:77:b6:cf:f8:5f:a1:29:1e:b9:f0:a0:
97:f8:d5:9e:e1:1b:cd:6f:a6:70:b5:07:67:1d:2e:55:a6:d0:
d9:68:3e:b8:3a:72:a7:89:49:d6:51:51:fe:0a:d2:5f:de:fa:
08:11:f2:b9:9d:0f:d3:4b:5c:ac:91:8f:0a:22:2d:38:c4:ea:
13:fe:2e:88:b5:0e:49:e8:1d:66:ed:6a:a6:53:dd:18:46:e4:
54:d0:a9:42:a7:7e:ea:67:4b:98:de:b6:bd:3b:8b:bf:a8:f6:
35:09:c2:d7:eb:4a:3e:6f:0e:f0:a9:a5:8b:61:1b:ae:9a:ea:
4a:59:b3:9b:e5:20:c9:ef:37:0f:7e:e2:e5:e2:ab:e1:f8:3a:
96:d6:2f:7f:61:4f:98:78:c2:76:a2:c5:d5:52:53:64:ae:af:
48:6e:40:d5:81:48:07:d7:34:9d:fd:99:aa:b6:01:70:1a:06:
f5:18:7f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:38 2026 by rpki-client