Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: UyKVYl9dS9e71bCMawCJ7PAZh9kJpOTuSYABhkA29+M=
Subject key identifier: D9:28:DB:42:5D:0C:EC:36:68:0A:C1:12:4D:CF:E1:69:EB:FC:18:62
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 019D28F20196535B987132F6B8E9F2E8B063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 07:00:41 +0000
Manifest this update: Thu 26 Mar 2026 07:00:41 +0000
Manifest next update: Fri 27 Mar 2026 07:00:41 +0000
Files and hashes: 1: 9GyPy5VxmA8Grjp6KPGlBXEzQEs.roa (hash: cZRk0f4ULOIcvr4Kq3jJj23UFievd5ZXiHt0/5E2LwY=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: PGLAUcVweWFBs5ZSw+NMgSxUGvmUwiYq/9gl+cZOtJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:01:96:53:5b:98:71:32:f6:b8:e9:f2:e8:b0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Mar 26 07:00:41 2026 GMT
Not After : Mar 27 07:00:41 2026 GMT
Subject: CN=d928db425d0cec36680ac1124dcfe169ebfc1862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b1:3c:e8:d7:ae:d6:a2:1b:8f:64:49:2a:75:
f5:3d:ca:e2:28:96:7e:bb:38:bc:98:ee:1a:5e:bd:
91:87:85:02:03:11:80:b8:0e:42:fb:a7:52:13:60:
ff:54:ac:c1:cd:f2:57:e4:94:46:07:90:64:cc:a0:
5a:30:32:9f:b6:19:65:e9:75:bb:b8:25:8e:7f:44:
c1:64:e3:0f:63:a2:3c:e9:83:cd:25:30:fc:98:83:
ab:bc:df:d2:c3:28:d4:08:9b:87:9c:ca:dd:42:4e:
f8:b9:70:2d:d1:34:7f:9e:c7:4c:3c:7a:33:eb:ab:
50:11:b7:4b:9c:73:ac:5d:78:51:8a:3e:d3:52:2d:
2e:8c:02:c0:54:1d:68:65:3e:be:a2:1f:1b:ee:35:
ba:81:35:7e:5f:2d:c1:77:4d:53:b6:60:ef:d8:bd:
ca:78:78:02:89:1f:3c:61:48:0e:6f:01:ee:51:83:
4d:e1:a3:b3:44:5f:30:a6:7a:09:c4:0b:35:62:ef:
d4:70:a2:72:bf:4b:93:9a:29:9a:f7:cc:57:25:60:
14:50:f4:63:ca:22:e1:a2:56:18:28:41:83:91:b3:
69:54:01:7d:f7:f8:46:90:2e:ea:9f:16:95:d6:98:
c4:08:d8:26:10:3e:14:7f:c2:d7:7c:5d:49:7b:ac:
8a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:28:DB:42:5D:0C:EC:36:68:0A:C1:12:4D:CF:E1:69:EB:FC:18:62
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:58:33:d4:a1:b2:7d:98:ec:79:0d:3c:a4:df:f8:88:cb:49:
c7:ed:74:5c:2a:31:75:ac:b6:3d:6e:9c:28:2c:27:24:f5:77:
9e:e6:97:24:35:28:2f:2f:b8:99:18:4d:ce:18:52:f6:0b:b3:
77:ef:e7:36:6e:4c:43:b9:0e:cb:8a:f0:de:62:c2:a3:e2:21:
13:60:80:60:8e:57:75:65:3c:86:10:25:e5:14:23:4b:56:fb:
7c:d6:8a:54:9c:6c:f9:cb:0a:47:3f:c7:69:32:4e:0c:57:b8:
26:93:46:dc:aa:75:c5:50:c0:1b:1e:66:ec:ba:9f:aa:9a:fd:
a3:8e:e6:ea:74:ed:7b:3a:a9:98:99:81:76:bd:1a:c5:59:50:
57:9c:5f:51:b4:b5:b1:06:ed:51:77:58:12:d6:6b:7f:f1:72:
54:e4:36:1f:46:3b:6e:d8:94:b6:87:9a:48:25:ee:f4:ee:4a:
c3:13:50:0f:86:2d:9d:c5:3a:6e:41:57:82:c3:ae:5f:df:9f:
a8:68:03:96:9d:65:f2:e7:29:8d:c9:6a:bd:7a:79:e6:78:b6:
e1:24:17:c0:66:a0:52:ff:0a:c3:0c:97:05:2b:a9:82:99:20:
51:3f:10:a4:84:c3:6f:9a:d0:a7:65:f2:64:f4:68:73:1b:87:
57:be:2f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:52:56 2026 by rpki-client