Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: +F3DwUDWgJKG+TcDnxHtM2W3Tp6ru9P0DbOO5agNTiI=
Subject key identifier: B1:1A:13:2C:25:5D:C6:4F:26:39:34:B7:39:96:08:D8:B1:40:B9:AA
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 019D2703BFC30E0F4C05D70D41D5315F7AD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:00:50 +0000
Manifest this update: Wed 25 Mar 2026 22:00:50 +0000
Manifest next update: Thu 26 Mar 2026 22:00:50 +0000
Files and hashes: 1: 9GyPy5VxmA8Grjp6KPGlBXEzQEs.roa (hash: cZRk0f4ULOIcvr4Kq3jJj23UFievd5ZXiHt0/5E2LwY=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: V/B0LGHbu+ZvEB9hFd0xB1kKKUvjACZnxPtd+x543HI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:bf:c3:0e:0f:4c:05:d7:0d:41:d5:31:5f:7a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Mar 25 22:00:50 2026 GMT
Not After : Mar 26 22:00:50 2026 GMT
Subject: CN=b11a132c255dc64f263934b7399608d8b140b9aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b4:80:89:50:88:80:c5:ea:fa:13:c0:a6:2f:
34:94:9b:08:ce:2c:f9:e1:11:83:a7:0c:f8:d9:de:
5e:d3:81:ca:f7:0f:92:c8:6d:dc:e1:b0:e8:5d:1e:
34:33:df:87:cd:dd:6c:aa:7f:21:cf:c9:34:7f:d3:
7a:73:67:d1:ca:71:05:bf:47:56:eb:73:7e:2b:cf:
55:cd:5e:73:2d:45:b2:74:92:27:0b:e0:c3:0d:33:
92:11:e5:a0:e7:f3:6c:ae:f4:90:9b:59:72:2e:ba:
12:3d:7e:10:f8:c1:49:83:2b:b5:08:bd:55:a0:48:
11:82:66:0d:95:d7:62:33:e4:c3:ec:ef:20:ac:c0:
bd:ea:88:bd:59:c7:01:d1:eb:50:cf:ba:63:d8:db:
69:79:9d:c1:be:1e:51:1d:7f:9d:f8:b2:c1:5b:ec:
df:d9:43:90:08:b4:e1:1a:14:d1:94:fc:3a:62:f2:
4c:41:6e:36:3a:3a:7f:b1:cd:e4:02:94:90:ae:28:
a1:5e:07:e0:4f:18:2d:7e:22:16:dd:be:89:c5:0e:
99:7c:89:c2:0e:b8:21:45:59:aa:ec:cc:41:e0:c5:
95:35:7e:97:3b:7f:5d:24:9a:04:d4:00:70:83:f5:
a1:3d:c4:54:49:15:22:f7:d0:27:1e:9b:0a:15:af:
0c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1A:13:2C:25:5D:C6:4F:26:39:34:B7:39:96:08:D8:B1:40:B9:AA
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8b:ad:cf:93:49:b2:85:0a:fd:ae:fd:9d:68:f8:85:de:e9:
cd:11:c4:31:e1:b2:f6:2e:75:b7:cc:5f:26:22:72:93:16:f9:
1a:1f:6a:ec:fe:79:28:f4:45:03:13:46:1a:4f:1a:a0:f9:f0:
8d:be:96:a9:bb:88:f6:ed:48:be:80:97:3b:f2:7f:23:94:99:
36:94:d9:f1:07:53:a5:d1:4c:aa:15:a5:ea:a7:b4:67:d9:af:
5e:69:9e:5a:25:82:a3:4e:56:da:26:a3:c2:10:14:1b:d4:62:
83:a0:67:65:e6:7a:ec:5a:db:b9:f0:98:dd:d7:6e:15:1a:96:
2e:ff:bc:ab:2d:ee:52:85:39:75:b5:75:a1:8d:69:e0:65:7b:
26:12:bd:e9:12:32:a5:65:bc:f9:00:b7:cd:91:0e:be:de:aa:
63:40:82:c5:2d:44:c9:35:44:f8:7a:0d:fb:43:df:7c:d7:73:
3a:36:76:44:cc:e6:46:d3:57:60:87:d4:62:76:93:9b:04:20:
04:23:fc:e5:6c:1f:c3:7b:39:40:55:f7:92:10:fa:fb:37:55:
4d:96:7b:bc:71:10:03:9a:5e:4f:61:74:f0:64:03:ad:3f:b2:
01:87:b6:b6:c9:a3:d4:7e:a5:4a:0b:92:f5:a3:05:99:01:1f:
b0:3c:0a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:19:57 2026 by rpki-client