Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: kVwH/VKcCFgs5+XRpAbYFmHoyD4coobT4Xia93DL8U4=
Subject key identifier: 4A:E7:1B:8E:F1:BB:5B:6B:0A:2D:A5:23:09:C3:BD:AA:CB:A5:3D:87
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 019E1CB47A5FF44F9684F6507C52A2134A01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 1179
Signing time: Tue 12 May 2026 15:00:50 +0000
Manifest this update: Tue 12 May 2026 15:00:50 +0000
Manifest next update: Wed 13 May 2026 15:00:50 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: HtHFTXmBiakcFEmUnA2L4i1pYvnUZA4+ywCvhg2fPBs=)
2: VfT1jovZQbB_GOxrewqAg31IJD4.roa (hash: rEaYnnOYpTkHENGl1d6pSu6EPvs3HHaHkQH4luV+aMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:7a:5f:f4:4f:96:84:f6:50:7c:52:a2:13:4a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: May 12 15:00:50 2026 GMT
Not After : May 13 15:00:50 2026 GMT
Subject: CN=4ae71b8ef1bb5b6b0a2da52309c3bdaacba53d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:ba:ba:16:52:1e:c6:a3:31:9a:82:12:22:
dd:ba:8c:71:01:c5:3a:5b:ff:b4:2f:46:e1:20:83:
10:c3:a2:42:cb:b0:b7:de:08:87:ec:19:c1:3e:df:
33:c9:c1:c4:e7:1c:d4:78:ba:29:d6:0c:52:3c:94:
d7:54:05:e0:ae:ec:45:7f:c5:61:e1:c2:4d:cf:bf:
be:2e:60:6b:0b:a6:e1:74:77:2b:5a:d7:cd:5a:fb:
7d:1b:b1:26:c9:2a:cf:70:2c:90:65:e9:cc:96:fd:
34:34:9f:98:44:ea:64:e2:99:25:3b:42:64:e5:b8:
c4:5c:da:5d:9a:60:38:d3:26:e2:61:c0:78:c5:47:
fd:92:b6:9d:3a:1e:bc:65:53:00:08:55:34:48:18:
5a:b1:e4:7f:c1:a9:22:c0:73:b8:06:79:bb:ac:28:
75:0e:9e:bf:22:53:cc:db:90:f8:f0:84:ef:ca:ac:
76:36:03:0b:b0:7c:0a:d5:cd:ab:46:f6:34:7b:27:
20:f9:f0:3f:08:e9:2d:4a:9e:1f:24:35:07:b5:83:
c4:08:8d:23:43:93:d6:9a:ea:b8:2c:3f:7d:b7:f8:
39:5b:a7:a9:49:b0:5d:74:8a:b9:1f:f8:3d:27:9b:
83:fa:8d:a2:6e:25:93:7a:00:42:28:60:c7:58:98:
e4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E7:1B:8E:F1:BB:5B:6B:0A:2D:A5:23:09:C3:BD:AA:CB:A5:3D:87
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:16:cf:de:8a:84:45:62:17:e7:6b:87:3d:52:7d:93:63:cc:
1f:ce:a2:c0:bd:2e:e0:77:14:c1:01:a7:a0:b3:90:20:6d:fb:
2e:73:ea:51:eb:87:1d:39:5a:69:f3:98:59:c7:bc:42:9b:f5:
7a:f6:eb:03:37:9b:8c:6d:25:3d:8a:bf:7f:13:20:92:e1:2a:
83:c6:15:bb:f2:f6:c9:46:c8:b7:d9:b6:5a:a2:c0:0c:fc:8f:
d5:66:a4:82:fe:71:d9:f6:0d:c5:c1:ba:c0:cf:ce:b9:cf:f4:
30:91:34:cb:fa:33:00:76:92:c9:67:c8:bc:82:8e:9c:3c:59:
47:91:fa:a2:10:b7:93:59:e9:af:9a:16:87:28:71:b3:67:b6:
90:e4:37:12:96:5f:af:3a:5c:93:27:3f:f5:54:34:42:19:22:
ee:26:e0:62:64:d1:fe:c7:04:ce:6c:be:5a:0c:73:5f:ea:a0:
af:bf:e9:33:78:bd:d9:de:75:2d:ae:d4:58:a0:6a:ce:55:7d:
9e:60:85:41:29:4f:0f:41:92:c6:91:51:1b:10:33:99:ce:2f:
c5:ee:07:ec:b1:de:83:e2:45:22:a7:8b:19:67:de:10:f6:c9:
85:4b:5b:83:81:8c:d6:2b:8e:69:00:f9:e0:79:af:ca:a9:31:
ee:13:61:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:43:11 2026 by rpki-client