Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: NCD+/mw6HBYW0fO3iVUcThX78SKcG3vecLK5v8hAWl8=
Subject key identifier: B1:47:5B:23:DD:93:03:C5:38:2E:8C:6E:5F:85:D4:08:81:F5:E1:15
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 019E2BBA958797475CA1322A6C8813CB8B99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 0984
Signing time: Fri 15 May 2026 13:01:48 +0000
Manifest this update: Fri 15 May 2026 13:01:48 +0000
Manifest next update: Sat 16 May 2026 13:01:48 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: e8jntA+yLubhs4h824LNKfAHkj0VAeqJTP3xlrBnePA=)
2: ZVMWIA2gRCKHPJyp2BWSpGeeJhw.roa (hash: rWWFhgQdz68f3CP7zyhwG/M5s65BBuAVvNtPkXYPboQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:ba:95:87:97:47:5c:a1:32:2a:6c:88:13:cb:8b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: May 15 13:01:48 2026 GMT
Not After : May 16 13:01:48 2026 GMT
Subject: CN=b1475b23dd9303c5382e8c6e5f85d40881f5e115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1c:3c:4b:fc:16:d2:1c:1a:58:41:cc:31:6c:
d6:75:c4:9f:1a:b1:22:c8:6d:0a:41:96:bf:2a:08:
9c:9d:51:37:11:c0:01:c3:81:4c:4f:d2:0d:22:62:
6a:0e:f3:3a:1a:f1:11:c3:f2:cb:0e:13:3f:3d:f5:
6d:66:b0:4c:3c:d0:c8:4c:f5:e0:14:2a:7f:44:15:
d8:25:13:2d:4c:f4:df:35:95:2a:9a:25:9b:92:46:
23:aa:b7:d2:aa:05:c0:86:d8:c7:82:fb:4e:d5:0b:
10:0a:4b:84:e0:72:25:ab:3d:c3:89:21:4c:96:f6:
ae:2d:49:ec:35:a5:fb:8d:8a:fb:10:a5:e8:02:bf:
4c:52:16:9b:0a:d8:72:51:ff:b9:d1:9b:f7:b2:ed:
b2:b9:eb:86:3a:9c:f7:2f:57:f0:b3:99:a4:2c:cb:
2b:b5:15:56:fb:cf:dc:7d:11:54:75:95:1b:08:51:
45:21:74:0b:94:83:dc:c8:bf:db:78:12:31:23:27:
ed:73:fc:fb:e9:23:0f:6a:49:3d:f1:d3:66:cb:ff:
ed:8d:20:21:03:b8:32:c8:f0:d0:3f:3e:96:dc:0f:
d9:c6:2d:40:a6:fc:f7:fc:f2:71:d5:60:d7:e7:55:
21:b4:4e:71:65:a0:c2:83:10:9f:ad:17:69:a1:e6:
db:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:47:5B:23:DD:93:03:C5:38:2E:8C:6E:5F:85:D4:08:81:F5:E1:15
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:67:97:ba:ca:01:89:6d:72:2c:7a:05:be:57:61:81:f5:95:
ef:9f:d6:48:c8:60:ff:bf:1e:ad:18:1d:bf:19:06:e8:56:94:
4d:a2:fa:f6:d5:da:ea:1a:2c:9b:08:46:05:56:7a:e8:79:fb:
ea:3d:13:d8:36:ea:f8:b0:77:05:f8:e8:8b:1a:81:0e:da:19:
4d:04:af:da:41:2e:00:0a:27:7b:35:6a:c0:fb:70:f3:9d:55:
02:15:8d:1f:5a:9c:6e:b4:18:99:33:77:b6:ed:c8:a7:47:d0:
06:2c:05:ec:89:22:2a:ae:2a:c8:b7:30:bf:db:30:69:da:bf:
ae:dc:42:1f:41:1e:1e:46:74:7c:6c:51:c3:6b:cd:93:4b:ff:
33:86:a6:9e:cc:06:e4:1e:f8:94:ae:60:e7:fa:ed:22:83:54:
89:01:74:40:b9:6b:91:8c:d5:71:8b:5e:4a:c3:2a:29:58:b9:
28:b0:5f:51:e4:ad:f5:0c:f6:bf:bc:93:3d:2b:80:84:32:8c:
21:d2:8b:0c:f6:80:ad:0f:5e:d8:8c:d2:25:f8:f5:13:26:57:
68:ba:64:3b:41:4c:47:49:bc:0e:8c:3b:81:9e:1e:13:aa:67:
74:75:d9:a0:5e:83:9a:7d:5f:80:8f:3f:55:3d:d3:d4:0a:45:
59:f8:a7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:34:35 2026 by rpki-client