Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json)
Hash identifier: xvZGeBFC7DBEDF7M+2VC3ELF8I74E7zJJxlp9f7/bgA=
Subject key identifier: 48:B0:1D:43:88:27:13:F0:BB:D5:95:70:A7:51:4A:2D:44:D5:AD:F8
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 019F194325BA5222B6139DFC7540B15186ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
Manifest number: 14B9
Signing time: Tue 30 Jun 2026 16:00:58 +0000
Manifest this update: Tue 30 Jun 2026 16:00:58 +0000
Manifest next update: Wed 01 Jul 2026 16:00:58 +0000
Files and hashes: 1: 0I00I8J66neTXe4iZZcrlFXaZ8U.roa (hash: coA5RtPDBJN+kY2dT0FgtVFZYsCgYcbOym4tHbbuY/Y=)
2: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: /HMkQAnxsqHxK1cEKon6Dgdfd5wWWdCPBgzckXeZuYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:25:ba:52:22:b6:13:9d:fc:75:40:b1:51:86:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: Jun 30 16:00:58 2026 GMT
Not After : Jul 1 16:00:58 2026 GMT
Subject: CN=48b01d43882713f0bbd59570a7514a2d44d5adf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:31:7e:4d:63:be:7f:27:f7:67:e6:15:1d:e7:
b6:83:5c:c7:72:f9:cf:a1:f8:55:5c:9a:a7:27:73:
8b:84:47:0e:1b:fd:1f:da:ed:75:bf:f0:23:8f:21:
0c:d0:aa:20:82:66:88:42:c2:ea:fd:bd:e9:0f:15:
f9:28:3e:1f:d2:84:3c:f6:32:21:1f:4c:33:a2:90:
62:3c:10:8c:0e:67:36:fb:7b:33:12:16:e1:ee:d5:
d6:18:4d:69:d0:95:75:a6:70:9f:de:34:f6:af:a2:
8b:44:5f:42:f0:49:22:c4:8e:17:62:5a:76:f1:52:
a8:80:ed:0b:57:85:81:d3:d2:6c:ee:ee:67:03:08:
2c:c8:40:f2:ee:a0:a5:00:36:f0:f4:de:4c:68:2a:
da:79:5f:e4:f9:6b:e8:30:e9:03:b8:ec:9c:26:c1:
40:78:e0:53:62:10:f5:5d:92:0f:75:6c:21:e4:9f:
b6:b3:af:e2:ac:3b:1f:72:46:fd:5b:04:fb:e1:f4:
8c:97:51:40:c0:47:9d:ba:37:fa:e8:ad:75:31:88:
b2:1b:7e:5e:76:bf:5f:d4:97:82:af:76:9b:6d:79:
3c:f0:11:fa:7e:77:bf:ab:01:60:62:bc:4b:cd:1f:
0f:ad:3e:6b:99:95:8d:32:93:6d:3c:0c:05:fb:87:
05:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B0:1D:43:88:27:13:F0:BB:D5:95:70:A7:51:4A:2D:44:D5:AD:F8
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:88:d7:37:2a:65:b7:e9:b1:21:d8:bb:61:2f:5e:71:bc:2f:
d6:45:b2:9b:d0:a6:4c:47:8b:27:82:9a:d8:0f:a4:d8:ee:26:
61:fc:2b:b3:5a:ca:86:e5:6e:02:ae:67:aa:66:b0:07:4b:a6:
a1:d5:13:4f:a2:61:94:71:5b:cc:4c:c8:00:28:e2:ec:fb:a7:
ac:d2:d9:0e:83:4a:87:6f:3e:55:76:4d:ed:54:30:07:88:98:
97:92:54:8c:5d:94:7c:13:8d:68:cf:a4:15:82:ef:43:7f:20:
27:33:f8:fc:e3:06:97:67:36:31:f5:3b:93:65:c3:f2:12:93:
2d:b4:19:b2:a5:4e:35:53:3e:a6:66:ea:fb:a4:3c:bd:bc:6a:
79:49:ef:da:f8:db:ad:48:aa:c1:5a:e3:3a:ee:c0:3a:1d:e6:
49:76:c4:74:ab:11:e0:c4:6a:08:57:b8:57:27:a9:e5:4a:ad:
a5:05:5b:e1:a5:91:05:ae:0d:f8:30:09:d3:08:65:10:5b:85:
96:56:c6:00:fe:a2:be:85:0a:a5:35:e9:f1:21:17:58:8c:59:
a7:89:a1:da:4d:39:88:b6:2c:24:9c:89:d7:d3:81:0e:44:89:
e1:cc:14:ba:8f:8c:97:d7:31:68:ed:2d:79:01:6d:7b:31:b5:
99:48:eb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:32:44 2026 by rpki-client