Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: JyPrY8UMwOSm/SI1btPS1TpKOA+RkdsCg/OyBn05B4M=
Subject key identifier: A0:A7:F4:F2:DB:77:95:00:9A:C9:92:D4:8D:A8:F1:30:0B:5B:13:B5
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 019E1C7DD62179AE44524FE9466680403486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 05D8
Signing time: Tue 12 May 2026 14:01:09 +0000
Manifest this update: Tue 12 May 2026 14:01:09 +0000
Manifest next update: Wed 13 May 2026 14:01:09 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: PChGbRvt+UCk4Exn5VD0A17iiXOY+BPyyRUSC/rEusg=)
2: m0MG-eJyS0zFzaAWWkTJJ5qGS-I.roa (hash: Iq+qXgVKWt2Kx6N9DmTJowNt5dRM8IzSViFs0l/+0uY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:d6:21:79:ae:44:52:4f:e9:46:66:80:40:34:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: May 12 14:01:09 2026 GMT
Not After : May 13 14:01:09 2026 GMT
Subject: CN=a0a7f4f2db7795009ac992d48da8f1300b5b13b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:50:8c:5b:38:cf:62:79:c2:7d:db:ad:6e:f4:
a9:43:fc:89:f8:b7:0e:c8:9b:2e:5f:ff:d9:e8:e8:
27:ba:b1:40:ed:12:34:8c:92:89:3b:c2:89:14:bb:
1f:74:0b:b3:dc:ff:8a:39:cf:42:02:e0:62:6f:2c:
52:b2:5c:13:3f:66:ba:8b:d6:66:56:29:b1:84:7b:
7a:48:11:43:24:0b:ba:6d:48:b7:3e:fd:dd:7b:75:
fb:28:0b:57:d0:38:f9:ee:ac:6a:4b:93:62:1a:e8:
16:4f:67:c7:0a:35:d6:6d:a3:8d:28:02:1a:55:91:
e7:29:f5:0a:7d:fd:2c:48:28:f7:61:40:62:e9:7b:
f2:34:d6:a3:65:9b:16:0d:90:16:a7:55:62:d5:6d:
2d:89:74:b9:6f:d8:1a:56:9a:8f:ea:2d:69:4f:25:
b7:76:4d:be:27:58:a9:b1:9b:56:15:80:01:f3:81:
df:2e:74:2d:28:0f:46:b5:9b:28:88:d7:f9:c9:4a:
9e:7c:d1:a4:bb:be:de:85:f1:50:f2:ae:29:7f:bd:
fe:14:0c:c5:73:58:63:b8:64:9e:19:cb:2e:b2:97:
20:b6:bd:6b:04:8e:b9:bc:4e:db:ab:8c:dc:d4:30:
6d:20:3e:98:fc:aa:47:33:c6:fc:a5:a1:2f:67:30:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A7:F4:F2:DB:77:95:00:9A:C9:92:D4:8D:A8:F1:30:0B:5B:13:B5
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:38:80:3a:e8:34:8f:58:83:f3:c4:19:2c:13:78:7c:eb:53:
ad:71:3b:aa:81:79:cd:91:68:8d:61:b5:c9:af:fd:57:e4:7d:
af:4f:c6:ff:fb:8a:1e:8b:96:f5:93:2b:2b:87:9e:8f:b1:bb:
f6:7c:0c:09:8c:75:69:d1:af:99:c0:f9:ff:2e:21:0c:d4:c3:
73:c6:a0:50:51:f4:c6:a5:59:94:e7:83:2a:7f:bc:7c:71:ab:
4f:b0:56:33:f7:65:e3:0b:d2:cc:f5:f0:8f:b0:74:8f:fa:6d:
85:1e:72:74:c4:f0:10:21:b0:96:98:9e:b7:29:2a:64:be:09:
7f:c2:33:1c:cc:59:97:0e:b6:78:a1:d8:6c:b0:0c:90:3d:05:
11:61:a3:6b:18:48:5f:81:ee:f8:cf:e5:54:64:ac:ff:24:73:
33:68:69:e7:55:d2:64:07:ac:61:01:9e:4f:74:18:cc:0b:f4:
f1:e2:03:7d:b8:2e:86:76:98:94:38:8a:26:db:ea:3e:3d:37:
c2:2a:e3:3d:1b:bb:4a:de:19:40:25:8c:c5:27:fc:b5:23:92:
fe:2f:b9:ec:f0:c6:47:fc:a8:ed:c2:e6:31:60:d0:5d:27:df:
59:b0:9b:62:a6:d9:24:56:69:59:22:ab:28:e9:39:3d:86:ac:
53:1b:c2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:44:14 2026 by rpki-client