Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: d2pGJyq43SxMbQRSM9KJLDPKgpYXHT9+TyEwKZm+8IM=
Subject key identifier: 76:8F:DF:EB:13:1C:5F:A0:A9:E9:27:DE:1E:54:84:DC:8C:86:BE:A8
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019E30E036C6DE4FD615EA492533A7B5E5CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0F78
Signing time: Sat 16 May 2026 13:01:00 +0000
Manifest this update: Sat 16 May 2026 13:01:00 +0000
Manifest next update: Sun 17 May 2026 13:01:00 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: Jy82Mc23h7C/rNnjpZFd+L2MH1ihlLj959G8JRo4ztI=)
2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:36:c6:de:4f:d6:15:ea:49:25:33:a7:b5:e5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: May 16 13:01:00 2026 GMT
Not After : May 17 13:01:00 2026 GMT
Subject: CN=768fdfeb131c5fa0a9e927de1e5484dc8c86bea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:ff:05:4d:51:fb:c2:61:ea:e7:41:ae:cb:
22:e6:94:89:c2:5a:a4:b0:f8:64:d9:8c:b1:81:2b:
05:60:07:01:79:2c:9d:20:00:9b:28:7d:4d:c8:0e:
9d:38:26:ab:1f:6d:5e:02:a0:27:ef:b8:1e:3c:45:
d0:df:4f:e3:61:b6:9e:2d:db:10:d1:e5:f1:8a:ff:
1a:b7:91:7d:f0:f9:7c:c8:c8:94:7f:33:2c:13:07:
d6:f4:2d:70:f1:5b:1d:5e:3a:6b:24:30:12:3c:60:
77:d4:94:69:77:6a:51:41:4a:fb:4b:4f:e9:47:85:
9e:57:e7:dc:3c:18:25:06:b1:00:b5:50:d5:eb:71:
38:1b:74:9e:81:df:e0:9b:48:ff:2c:61:3b:e2:be:
9d:96:34:91:fc:58:40:85:9b:d1:ca:bf:54:f0:9e:
20:ca:eb:1a:b9:1a:fe:96:ee:21:e9:dc:e5:2f:17:
aa:8a:40:94:e9:9d:fb:cc:4b:57:58:f6:a2:9d:b0:
b0:23:56:80:f4:d0:cc:34:b8:fe:30:0a:15:21:21:
c7:42:d3:48:75:27:69:6e:92:9b:1a:1a:c8:fd:07:
4d:52:5e:2e:d3:e5:9b:05:0d:ff:1f:a8:0a:f9:94:
83:4a:94:87:32:e3:0d:c1:b5:fb:f1:97:d1:c5:3c:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8F:DF:EB:13:1C:5F:A0:A9:E9:27:DE:1E:54:84:DC:8C:86:BE:A8
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:fb:66:74:56:b2:f3:5b:b1:a9:04:ea:4f:75:04:7b:a7:dd:
3b:2c:9c:af:74:ef:a9:2d:02:0a:9f:57:d5:e2:ea:68:a4:bf:
cf:7c:b6:81:bd:e1:81:ae:5c:76:f2:10:79:06:b6:36:5f:ab:
ee:ea:f9:5e:a0:98:f7:36:06:ac:31:87:81:fb:87:77:14:dd:
da:22:35:c7:91:4f:4e:94:fa:10:ef:43:8f:44:03:38:42:c1:
e0:a9:be:7e:21:46:1e:a2:68:6c:4d:45:4f:1e:21:49:53:bc:
c4:66:97:4e:71:69:c6:cb:7c:f9:c2:7f:1d:c3:99:cb:28:a7:
a9:89:52:e0:21:89:ce:51:9c:e1:46:72:97:0c:69:7b:25:2f:
65:09:67:52:3f:36:4d:8d:f3:d5:5a:58:31:6c:d2:9a:13:9e:
e2:b3:34:18:d3:bc:21:ad:67:85:21:7d:82:7b:50:87:9a:c1:
61:86:6b:e1:82:b7:e6:d5:54:eb:41:f3:94:05:c0:af:ef:05:
32:9d:f4:c7:7c:18:7c:2b:98:4c:74:5b:a0:01:8f:92:8b:c5:
b3:1b:72:28:e5:9e:94:a6:a4:00:54:24:1c:54:d5:2b:5b:44:
e8:17:70:bb:79:8c:44:72:08:db:f0:ea:a4:2a:5d:ec:7c:5f:
8a:ee:3f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:30 2026 by rpki-client