Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
File: cNySeAi5pn58uhunTvtb9sEsiVs.mft (raw, json)
Hash identifier: lzyQRNh2k64iJkJ6td+XC/NX7B02gTGa67yVT24OA6g=
Subject key identifier: 15:FD:73:9A:4C:14:53:7D:49:12:9B:A8:C0:59:E6:F8:A5:6E:D1:72
Authority key identifier: 70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
Certificate issuer: /CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Certificate serial: 019D390A44B4B00D5496F1A74CB53BBAEE84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 10:01:07 +0000
Manifest this update: Sun 29 Mar 2026 10:01:07 +0000
Manifest next update: Mon 30 Mar 2026 10:01:07 +0000
Files and hashes: 1: CGASqwsZcGaWA7KhgQteEYO55EY.roa (hash: wP8KXOiWGgF6XyMWqWY5eIrUa40yWygDD4xGf13foh4=)
2: cNySeAi5pn58uhunTvtb9sEsiVs.crl (hash: u9y9GBR8tWbg5+4sLUp3OIavSSfMf5erE3Wm2unxbIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:44:b4:b0:0d:54:96:f1:a7:4c:b5:3b:ba:ee:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Validity
Not Before: Mar 29 10:01:07 2026 GMT
Not After : Mar 30 10:01:07 2026 GMT
Subject: CN=15fd739a4c14537d49129ba8c059e6f8a56ed172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:3e:90:32:0a:4a:ad:b1:08:4c:6c:b9:04:
11:88:32:ce:b7:d9:21:49:e3:df:89:e0:0a:71:d0:
70:c2:ad:f3:ea:e2:7f:71:b2:4f:ef:45:c2:cf:67:
19:44:aa:80:f7:41:1d:4d:82:fa:fe:a7:de:fa:7b:
c1:50:fe:0f:2d:90:88:ed:78:64:ba:2e:1f:63:26:
9d:56:e0:b5:7b:17:0e:c7:e3:9a:4c:7f:71:6c:37:
60:89:90:9a:1e:61:03:f6:a3:e2:da:33:39:49:6d:
ec:11:22:59:e7:e0:e2:5d:9a:1d:e5:36:18:99:8e:
19:24:1b:8f:31:7e:be:e8:73:fb:40:95:08:34:0b:
89:e4:41:dc:e7:13:52:75:a3:09:5a:c5:b3:70:19:
a3:68:0c:78:33:8c:fc:cf:9f:81:de:72:9a:95:cd:
c0:2b:d5:a2:73:8b:71:37:88:81:8d:5b:0e:fa:95:
8a:05:29:0f:a5:c8:0d:e6:47:d9:b1:78:3d:e1:59:
ae:3a:49:ff:58:33:d2:20:2b:5d:9c:ee:ac:d3:12:
38:66:af:e6:da:49:33:2b:f7:16:b0:f6:7d:d7:56:
4d:ea:e6:7a:23:c5:c4:5c:71:a4:d8:88:c5:61:8f:
9e:1e:9b:a1:21:46:9b:53:20:1a:18:27:cc:f7:04:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FD:73:9A:4C:14:53:7D:49:12:9B:A8:C0:59:E6:F8:A5:6E:D1:72
X509v3 Authority Key Identifier:
keyid:70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:a8:d8:b8:37:68:d5:92:cb:cb:0b:d5:b8:eb:c2:55:13:d1:
e6:6d:a2:67:ad:bf:02:c6:09:62:20:e4:f0:91:90:17:3d:57:
ec:fc:bc:60:4e:1c:35:ed:29:19:b3:e1:45:c4:56:1a:11:10:
b0:01:be:48:22:5d:3b:3c:2b:97:9e:01:95:ca:ca:ab:33:e3:
34:d9:a5:f3:45:97:5b:c5:62:de:6c:8d:5e:00:35:3e:1c:61:
9a:fb:8a:04:b0:36:2c:84:a9:1f:e3:f5:e2:08:46:a0:82:91:
48:d0:5f:89:38:c3:09:9a:ca:b9:5c:33:50:c3:8d:eb:90:99:
03:5f:70:76:5a:91:dd:cf:17:31:72:d2:f0:4e:1d:4b:80:c9:
17:7d:96:d2:cb:1b:5d:6e:46:2f:80:89:b2:c6:01:9e:0f:45:
58:90:9b:8a:2d:ba:90:c7:68:a6:cb:23:f9:9b:82:0e:2b:69:
ce:35:78:1f:46:06:d7:0b:53:02:f4:ae:a8:3f:f1:37:29:5f:
81:47:f0:8e:b0:a7:56:7b:42:cf:22:5f:5e:1c:05:e6:93:85:
5e:b6:6e:29:15:7c:14:15:71:cd:58:64:02:83:d1:e5:c3:d6:
06:3b:6b:54:75:7d:e3:81:52:fa:bb:0d:aa:5c:9a:75:94:9a:
f4:08:ed:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:41 2026 by rpki-client