Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: B5OE2d+afVpF0+f8xTfifPOseTM0kSbRFnQXXMiKMgY=
Subject key identifier: 88:2B:8E:C9:5D:2B:11:02:69:A6:4D:E5:8E:3C:D9:A2:F5:62:66:B4
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019F189EC9B202E11B93294ADFF339AB9F83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0FF0
Signing time: Tue 30 Jun 2026 13:01:27 +0000
Manifest this update: Tue 30 Jun 2026 13:01:27 +0000
Manifest next update: Wed 01 Jul 2026 13:01:27 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: 11g4V+P5dqzeXkm5/i8ntFSFJ8RcyogITNVOnMaGJ18=)
2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:c9:b2:02:e1:1b:93:29:4a:df:f3:39:ab:9f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Jun 30 13:01:27 2026 GMT
Not After : Jul 1 13:01:27 2026 GMT
Subject: CN=882b8ec95d2b110269a64de58e3cd9a2f56266b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:19:2c:aa:33:59:52:6a:94:11:4b:38:6e:1f:
9b:29:a4:a1:32:d1:42:24:a0:8f:c4:81:33:6e:31:
f8:94:8c:e2:90:0a:61:35:c1:3f:5e:99:44:ae:28:
62:8f:bf:b3:9b:2b:ed:44:37:b9:23:91:bf:9e:6e:
ce:98:89:6d:6b:54:73:cb:31:56:48:e2:5e:f4:3a:
1b:6a:d1:7c:2a:12:1e:cb:93:66:3f:cb:dd:19:77:
e2:55:d7:da:d5:cb:3a:a0:5f:84:cd:b2:d0:1b:c2:
09:5c:d6:3d:17:1b:95:99:60:ac:b5:64:0f:71:77:
c9:8e:7c:49:6c:c1:6e:1d:e2:02:68:01:93:ea:0b:
83:7e:48:81:6d:2c:62:48:10:9b:8b:55:d6:49:70:
da:e1:04:c1:e9:a2:65:ef:f2:ca:43:be:f4:2e:f4:
e0:0e:39:54:00:18:b5:ad:42:c0:b7:6d:51:c3:5f:
1b:1f:58:8f:c4:3a:85:90:94:38:f3:fd:af:91:1b:
ee:51:82:de:8b:6a:7d:cb:3a:ba:d6:27:f2:af:0b:
5a:de:7b:8a:8a:37:e2:3e:97:cd:fa:fc:5f:38:d2:
29:fd:73:fe:75:bd:c5:a1:d2:d0:1f:a1:65:bc:a1:
6b:a9:68:15:aa:26:e1:a5:e1:96:fc:b5:72:90:12:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2B:8E:C9:5D:2B:11:02:69:A6:4D:E5:8E:3C:D9:A2:F5:62:66:B4
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:0d:df:12:00:8a:ac:de:78:46:b6:8a:ea:15:a6:6b:13:a5:
d5:5a:29:38:5e:b5:e9:a0:3a:13:0d:89:eb:66:f0:d6:bf:38:
65:f4:0d:c9:2d:47:9a:8f:da:17:1d:42:04:0c:ed:19:42:98:
25:66:43:ed:6f:70:98:80:1d:54:eb:14:e4:c4:6e:4f:54:30:
4c:c3:eb:ac:6f:f2:2b:5e:56:90:c2:09:c4:4f:d0:08:1c:1f:
18:fe:42:4a:27:4c:ff:76:ad:9b:07:76:05:60:6d:f6:88:67:
66:d8:8c:5c:80:67:69:b1:39:d9:57:2a:9f:4c:09:4b:7d:11:
54:ac:fb:9e:6d:25:19:b9:3f:e0:b3:6a:7e:c7:ae:28:15:d7:
f0:c9:3c:e3:b9:d6:7e:12:d8:ef:46:c4:4e:34:44:96:de:b7:
5f:df:b5:c0:98:84:66:34:a1:29:1d:d2:f6:29:8d:1e:8f:f2:
28:e1:8f:b4:ab:3f:8f:b2:f0:36:72:40:22:a9:ff:15:25:d8:
9d:a3:36:34:3c:7c:ac:bc:11:ab:20:d4:58:b9:bc:3d:80:e3:
3e:40:7a:5e:94:43:bc:81:e7:92:9f:ee:fc:79:92:66:de:8f:
b3:24:05:bd:55:8a:b6:7f:9a:6f:e4:b3:78:1c:11:c4:e0:7f:
35:19:2e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:44 2026 by rpki-client