Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: tBAr+SFCl8jJV6mIoxbE+UIgOKWgWl8zLmGp0eJ3rss=
Subject key identifier: 83:73:66:47:FD:FA:E3:AB:64:06:7A:F4:B5:5F:80:A4:EB:DA:5A:78
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 019E307282065987B83AE17D990A1008B628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 0F4F
Signing time: Sat 16 May 2026 11:01:10 +0000
Manifest this update: Sat 16 May 2026 11:01:10 +0000
Manifest next update: Sun 17 May 2026 11:01:10 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: ggaf9nLU325WoskcUkgXxiLM/m7FK9wg++/zAEAugAQ=)
2: zjvZq0qDo9Cqy2lJeksXnY5wlWg.roa (hash: R3vvsBnC8yjc/6l+ae3jOrD+eH9Ah/ka0B3qOkEBjzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:82:06:59:87:b8:3a:e1:7d:99:0a:10:08:b6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: May 16 11:01:10 2026 GMT
Not After : May 17 11:01:10 2026 GMT
Subject: CN=83736647fdfae3ab64067af4b55f80a4ebda5a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:14:d1:99:b2:9c:bc:6e:c7:cc:16:0a:00:a1:
24:3a:c2:54:84:7c:08:e8:e5:4f:0b:dc:58:e4:14:
ca:10:c8:63:7e:29:22:84:a3:7e:62:06:8a:9b:46:
bf:24:2b:fe:f4:87:79:51:ad:08:f5:02:fe:05:fb:
9b:f5:10:91:72:bc:16:87:e7:ea:5f:7d:cd:54:83:
a6:b9:01:a8:0d:8e:9f:0a:aa:29:1a:83:cb:35:c8:
b8:6a:c1:40:19:15:7a:3b:98:9a:57:2a:00:1c:4a:
a6:15:71:76:d9:ce:ea:72:d2:67:bb:11:d0:16:cc:
47:75:02:cf:e1:82:26:2c:b7:09:ad:5d:0e:17:bc:
56:23:b4:67:d3:a0:a7:c9:ee:2d:01:35:0c:07:f7:
15:aa:b2:1b:e4:cf:37:81:ca:12:47:e2:2f:ce:ab:
22:d0:3a:5c:51:f2:c1:aa:0e:2d:a9:0a:a4:94:57:
bb:55:2b:a9:a0:58:98:06:bb:b2:6f:a5:b3:34:1b:
7b:5f:b9:2c:6a:7c:a0:8a:80:5a:c4:3d:59:64:d3:
30:5d:c0:8c:e9:f6:59:99:29:07:c6:a4:ca:e5:98:
96:5c:ed:19:d8:57:a7:32:4f:75:53:29:a3:80:17:
59:58:cc:c7:4c:84:69:29:3b:84:3c:55:95:0c:e3:
73:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:73:66:47:FD:FA:E3:AB:64:06:7A:F4:B5:5F:80:A4:EB:DA:5A:78
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a1:40:ca:2f:a8:4b:93:31:e4:d4:25:ea:20:76:31:f0:b7:
7f:ce:10:c6:e9:1b:03:e7:a5:12:c4:cf:39:a9:6f:8f:27:39:
ce:9b:24:ee:40:c0:08:26:27:35:79:7c:39:fc:1d:2f:65:5a:
b4:1d:d6:cb:ab:97:e4:50:2b:bd:11:78:d4:a2:3e:a8:59:49:
b9:c7:98:c6:21:28:0b:11:09:e6:3f:8d:f8:4e:55:f6:25:20:
de:29:61:83:9e:56:40:50:81:01:81:7f:22:ad:29:6b:6f:3b:
82:f7:4f:13:3a:4a:58:97:ce:c7:fd:6f:07:53:89:af:6b:b8:
a4:4d:3d:1a:31:65:5f:72:db:d2:3a:e1:7a:8e:c3:1b:83:7c:
2b:25:69:1b:46:b7:3a:89:2e:e7:f3:0c:fd:2a:5c:7f:81:c4:
3c:a6:80:bc:0a:d1:8e:b9:24:7a:bf:03:99:ed:3f:2f:2a:19:
8e:a2:eb:35:cf:8b:22:e7:fe:70:b4:a2:3b:72:af:cf:da:68:
91:94:83:e2:b8:a4:07:34:ef:ed:64:4a:09:0b:d1:ab:e6:4e:
44:27:a7:4b:46:d3:f9:ff:69:5d:4d:96:3f:b0:35:c9:77:d9:
84:b9:92:c4:48:0f:00:d4:74:ee:de:4e:e1:9d:1a:a1:15:f5:
c5:e5:3e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:21:00 2026 by rpki-client