Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: aRsAQTPkAQqoY0YMoAZDJhDYiqg4Hpr9EMnTOwUCCZU=
Subject key identifier: 5B:7F:10:03:DB:26:94:2F:A8:08:A3:03:71:CD:8B:A4:17:65:AA:DD
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 019F17552B2600F6392F73CE2696D552E3A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 09FE
Signing time: Tue 30 Jun 2026 07:01:25 +0000
Manifest this update: Tue 30 Jun 2026 07:01:25 +0000
Manifest next update: Wed 01 Jul 2026 07:01:25 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: JB7Fwa7/tS5QI5+O+y3yDd2TAOoRdIvriWce925DcJU=)
2: ZVMWIA2gRCKHPJyp2BWSpGeeJhw.roa (hash: rWWFhgQdz68f3CP7zyhwG/M5s65BBuAVvNtPkXYPboQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:2b:26:00:f6:39:2f:73:ce:26:96:d5:52:e3:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Jun 30 07:01:25 2026 GMT
Not After : Jul 1 07:01:25 2026 GMT
Subject: CN=5b7f1003db26942fa808a30371cd8ba41765aadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e8:bc:63:79:a4:32:60:9b:43:73:f1:33:22:
c1:91:8e:59:d7:b5:bf:51:59:84:91:95:d2:91:18:
b6:0f:cb:10:06:5e:ce:55:f6:9f:8d:46:d5:47:89:
f2:75:06:e4:47:94:55:d7:d3:98:39:48:cc:63:6b:
87:73:b6:49:3f:fb:20:2c:00:c2:60:e4:d1:f6:2e:
e5:d1:90:4e:c7:74:d4:29:82:62:e8:cd:5c:68:79:
3b:5f:94:23:48:f4:92:58:b1:00:e1:aa:5e:52:85:
a1:68:e0:65:b5:83:0c:46:7f:9e:a6:1c:fd:20:de:
f9:f8:36:b8:55:28:57:92:cf:ef:ec:39:78:9b:7c:
a2:63:1f:c9:36:12:c2:05:f6:58:d0:6b:f3:28:7d:
a9:6c:41:28:e6:11:df:e7:44:49:ea:a9:5b:ee:9f:
8f:6e:cc:4d:74:38:b1:9f:86:99:22:57:bb:42:f2:
ff:e2:e6:6b:b2:3c:da:f3:74:2b:99:9a:ba:f8:94:
02:4a:cd:5f:57:78:2f:5b:0e:32:89:49:24:22:ca:
f8:82:2b:4e:8a:87:80:ec:c3:54:ff:75:a4:3b:65:
30:d3:37:46:f1:13:b1:7e:a5:8a:d9:7e:0b:31:9a:
39:c1:cc:8a:4e:77:16:77:76:85:7b:20:b4:0f:97:
2f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7F:10:03:DB:26:94:2F:A8:08:A3:03:71:CD:8B:A4:17:65:AA:DD
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:fd:d8:bd:6e:ef:95:c2:f9:3e:1d:c6:b3:ad:01:bd:89:a1:
45:a5:a5:5e:5a:e0:aa:fc:d4:48:6e:58:59:f6:5c:43:52:3c:
07:1f:de:94:ab:38:41:94:4e:df:51:3d:a5:1c:83:9c:02:2e:
8e:10:44:f1:4e:76:65:b6:28:2e:c7:11:bf:a4:99:34:c5:ec:
40:ac:78:9d:b8:61:23:9c:61:6b:8b:7b:82:d2:37:5c:18:44:
a8:4b:66:c1:c9:7a:22:ec:73:41:dd:34:e6:26:12:44:5e:03:
3c:3d:a8:f4:93:fd:fe:bd:22:78:e8:94:26:a4:c4:70:40:09:
92:0a:f4:ee:ac:93:6b:6a:b5:c4:66:f2:a8:ff:50:50:c3:e5:
fa:36:34:0c:16:cc:eb:75:16:dc:f5:d9:25:05:e9:63:a5:21:
b1:af:2f:e5:8a:ee:c0:7f:bc:40:66:6e:66:bc:79:ee:4d:a1:
77:06:d1:1e:b4:b7:50:2b:e8:73:d0:c1:44:6a:9e:e9:ca:45:
ca:46:b3:57:1c:7f:73:2f:e0:fe:ff:c4:de:1b:65:3d:3b:3d:
b4:84:34:d4:72:4a:5f:ef:05:82:a7:4c:6d:95:e0:f5:99:b5:
ab:76:03:b3:00:90:ed:a4:fe:31:3f:88:a6:c6:1f:11:4a:91:
8f:06:81:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:27 2026 by rpki-client