Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: OaMvZBaxYN2oSyzcvHgF2hQZqapQwVXGVLXzdEVu/Ig=
Subject key identifier: 04:6C:22:D1:75:89:44:45:04:B8:BA:DB:7F:61:95:21:3F:33:7B:3C
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019E1EA2CF91B578A343D739A5827EE8E521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1520
Signing time: Wed 13 May 2026 00:00:46 +0000
Manifest this update: Wed 13 May 2026 00:00:46 +0000
Manifest next update: Thu 14 May 2026 00:00:46 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: QV3KGe/hjz+vQTkN/W/E1wGbHQSP+XqmYFgYu5geisY=)
2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:cf:91:b5:78:a3:43:d7:39:a5:82:7e:e8:e5:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: May 13 00:00:46 2026 GMT
Not After : May 14 00:00:46 2026 GMT
Subject: CN=046c22d17589444504b8badb7f6195213f337b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0c:d4:55:f7:33:a9:50:b4:b2:1f:1f:92:f9:
5e:a3:ef:a0:59:9f:77:97:f4:54:6b:3c:a0:48:0d:
cc:9e:28:39:4d:b3:e9:45:d2:c5:4a:a8:9a:10:42:
87:df:ee:60:87:c0:e5:01:72:ed:32:91:e9:c6:7d:
18:e7:2c:5b:02:51:9c:11:bd:9e:07:e0:f8:b1:39:
62:6c:67:08:f2:b5:8b:c4:6b:ca:13:0a:86:ef:ea:
59:5b:c7:59:ed:87:f9:5d:68:1a:ea:c8:37:fb:e8:
38:3b:ca:b0:1f:0d:cf:ea:38:74:61:da:af:da:74:
05:6b:60:c7:79:5f:b2:1a:d7:7b:11:08:3c:22:8d:
06:da:4b:59:f0:80:f7:c1:a5:d6:c1:ba:77:40:b9:
d8:75:18:bb:c5:2f:b1:4c:40:ca:ec:c5:ac:68:e7:
0f:12:78:56:fe:90:f6:8a:ab:63:2e:20:3d:50:10:
a7:2e:b9:3d:af:5f:8e:94:43:6a:2a:0b:51:f6:6f:
75:88:d4:69:f0:ad:e5:eb:8f:f5:bb:4b:a5:95:ee:
64:b7:db:ec:bd:60:83:63:f4:02:7f:20:cc:ff:27:
d7:dd:44:b7:bd:d2:03:d7:ff:81:52:d3:f0:af:81:
05:b3:15:3c:95:9e:97:d2:c8:a1:df:f0:ff:8d:f4:
79:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6C:22:D1:75:89:44:45:04:B8:BA:DB:7F:61:95:21:3F:33:7B:3C
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:4a:7d:32:7d:b0:6c:19:c9:7f:a3:c1:a2:d2:17:c5:e0:32:
8b:13:14:9c:72:6f:79:f8:10:4e:ff:c2:f1:10:95:a0:96:ad:
f4:5d:88:60:00:bb:b1:db:33:46:3d:34:e9:c3:c6:e5:14:c2:
8c:1e:1c:45:58:70:49:f7:36:dc:5d:fa:7c:ee:83:b8:6b:15:
eb:91:74:e1:9f:f7:1d:b4:dd:cb:ec:6c:83:2a:34:2c:fa:4e:
78:ef:2c:ce:de:dd:c1:05:f5:ab:e5:78:1a:e0:14:c6:03:46:
f5:74:a6:04:ad:43:da:f9:10:0c:72:ae:23:bd:d6:c4:ac:ca:
1e:6f:21:0d:0a:9e:b8:2d:c6:f6:60:1c:51:54:4c:36:55:f3:
9d:b3:ef:fc:af:3a:20:e4:19:f4:3c:87:34:15:1e:fb:fd:5c:
67:c2:9e:9f:12:92:39:be:67:95:99:7a:03:39:e3:9c:76:21:
ee:26:d5:f2:0a:ba:e2:b1:7c:e8:40:93:5f:c6:d8:87:9b:15:
ca:6d:46:be:23:43:7c:a9:6c:09:41:5f:fd:73:53:cc:95:c8:
da:24:f5:34:ef:98:35:76:02:cb:58:2b:bc:6a:ea:8a:fa:43:
41:18:41:1a:32:93:36:fd:4c:6a:95:85:cd:de:af:88:36:f3:
ef:76:b9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:01:56 2026 by rpki-client