Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: li4nEwqeZA+uE/xQCTHaCVHfBwD6lEXtMtL6YQmR7qg=
Subject key identifier: E7:4A:CF:6D:FF:C2:D5:E5:FB:4E:C0:7D:73:5F:C5:BB:9C:08:36:1B
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019E1D904BA85A577047B128909492227DA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0F6E
Signing time: Tue 12 May 2026 19:00:56 +0000
Manifest this update: Tue 12 May 2026 19:00:56 +0000
Manifest next update: Wed 13 May 2026 19:00:56 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: Zyh+tXgbMFOKk63hcw3WRTryRCj5oZyNNX/oonD/r0g=)
2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:4b:a8:5a:57:70:47:b1:28:90:94:92:22:7d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: May 12 19:00:56 2026 GMT
Not After : May 13 19:00:56 2026 GMT
Subject: CN=e74acf6dffc2d5e5fb4ec07d735fc5bb9c08361b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bf:ae:b9:07:36:23:2d:af:a1:55:62:84:31:
ae:62:0c:bc:d2:37:81:5e:ca:4c:c8:64:4e:36:59:
23:e1:59:a4:c2:b2:de:b8:3a:4f:8e:aa:29:97:f1:
8f:84:7d:35:a0:61:7e:59:1b:50:37:9a:5a:27:da:
d6:da:73:fc:c4:c3:ba:5b:22:73:de:c4:fc:73:54:
11:9c:ac:a2:96:65:56:09:ee:ba:f9:3d:24:0a:d3:
08:37:a1:12:f2:89:fb:43:e8:e3:07:ab:ee:9d:e7:
96:73:97:b9:6d:eb:f7:ac:5d:f1:c7:15:af:ba:12:
e9:9f:3d:d7:66:28:74:8f:18:b4:cf:ab:f5:b7:77:
3d:cd:20:23:f0:dd:cc:83:54:e2:0c:86:5c:b7:52:
24:84:40:79:a3:4f:dd:fa:a2:39:99:a5:36:fa:cd:
35:6f:4f:2d:07:da:56:26:b9:79:86:88:3c:ec:67:
fe:9d:28:56:37:63:fd:3f:c1:59:57:4f:c1:53:17:
58:c0:7b:97:0d:41:3e:4b:53:d5:10:17:6d:9c:d4:
94:4e:32:da:59:21:a5:1b:50:e6:35:c7:0d:8b:42:
d6:3d:b6:27:cf:4d:98:00:43:b7:0b:d7:94:ae:84:
11:e4:00:c0:2e:1d:2d:58:78:53:08:69:32:58:ff:
d4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4A:CF:6D:FF:C2:D5:E5:FB:4E:C0:7D:73:5F:C5:BB:9C:08:36:1B
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:8f:91:70:4a:fa:13:94:61:62:a3:e1:80:9d:7c:37:2e:f9:
70:6e:92:e3:b8:d4:b4:4b:2f:da:6a:e6:57:72:f2:d7:4d:9a:
3f:0a:e5:02:37:c1:24:c5:51:00:d7:07:1c:10:10:8b:19:59:
85:97:e3:1a:4b:4e:69:67:c7:0d:cd:56:67:6d:ca:cb:03:cd:
76:fc:c1:57:2b:aa:e0:23:49:30:40:75:27:76:de:0a:cc:87:
d4:32:e2:40:44:c1:5d:d4:0a:a9:0b:e8:72:cc:64:25:a8:cd:
f1:f2:78:59:0d:ea:e0:62:08:71:3e:b5:0f:83:5f:d6:c9:25:
28:07:80:92:36:cf:1c:38:4e:22:fd:66:21:73:55:13:29:bf:
08:5a:8a:a4:1e:94:92:b5:be:bf:6c:ee:27:2d:cd:7d:79:fe:
70:65:02:fb:d1:41:44:94:38:db:f1:f2:87:60:3d:d8:ab:38:
a6:53:29:22:ca:12:0f:d9:e1:f9:b4:18:d0:c2:10:aa:e2:b7:
bc:84:76:9b:10:57:31:52:d2:c8:19:21:19:4e:77:c3:b2:d4:
b8:a1:13:8a:f9:35:f2:ad:22:59:35:bb:40:96:da:65:f3:6e:
3b:86:5b:01:67:a1:08:90:65:fd:98:a0:9a:93:ac:2d:f4:fd:
2c:60:25:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:07:58 2026 by rpki-client