Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
File: CPyf1Et5SoQuKacYi0qMbkcuHVA.mft (raw, json)
Hash identifier: Zs8kUO55V94dI/FuneB0GWbOfh8dZ5UEzIz9vdv1FJU=
Subject key identifier: 0C:9A:6A:2B:69:38:8C:E2:89:C5:AF:F5:38:C0:F1:FF:E8:CE:DC:CB
Authority key identifier: 08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50
Certificate issuer: /CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50
Certificate serial: 019E1BD902531FEBE356331D75332108970A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
Manifest number: 0127
Signing time: Tue 12 May 2026 11:01:07 +0000
Manifest this update: Tue 12 May 2026 11:01:07 +0000
Manifest next update: Wed 13 May 2026 11:01:07 +0000
Files and hashes: 1: 2Cp0m0oboXHVnEkkibc7MZ0iVno.roa (hash: 0rfuIAzK1SMPi5hQRwB+Vwr/Z1zW0RzBLtrMrDa24eI=)
2: CPyf1Et5SoQuKacYi0qMbkcuHVA.crl (hash: +RFandiQERFj54ermg0VKJ9nXS/lbvVpS7AVbK72tfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d9:02:53:1f:eb:e3:56:33:1d:75:33:21:08:97:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50
Validity
Not Before: May 12 11:01:07 2026 GMT
Not After : May 13 11:01:07 2026 GMT
Subject: CN=0c9a6a2b69388ce289c5aff538c0f1ffe8cedccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6a:b7:82:15:c5:6c:5c:a0:ff:f8:03:21:81:
11:6b:23:7a:8f:96:f3:c9:71:80:81:ca:42:36:a4:
80:2f:42:9d:de:a4:85:d0:2a:2a:73:0f:51:bb:a5:
6c:7d:6d:a3:20:32:f8:7a:68:82:b7:ca:bd:ac:81:
67:81:25:24:6a:45:65:73:88:df:f2:b3:48:fd:90:
74:45:2e:da:be:4d:2c:33:0d:fd:6d:91:9f:2b:82:
b1:86:cf:36:33:ae:d7:17:27:1c:00:58:fe:17:eb:
12:e3:19:ed:f0:95:e5:a2:2d:05:71:80:e7:1d:45:
7c:a1:ea:54:6d:6c:44:ff:3d:58:ab:69:12:2b:00:
e5:da:e8:20:86:ad:0c:f8:ca:85:fe:eb:07:9f:35:
cc:2c:30:fa:a8:29:19:7d:89:2c:f2:d8:69:4e:f6:
70:d3:4e:b5:54:67:50:fb:59:ee:c8:6b:63:64:94:
8d:57:ae:ce:7d:e4:58:5b:cf:e9:5c:74:17:a6:b2:
d1:19:c0:ac:9b:44:8f:36:fd:0e:f4:77:ed:a7:89:
4c:9b:43:34:15:17:da:2d:bf:b2:83:cf:11:13:40:
d3:8e:82:93:0d:83:63:69:5c:a1:e4:c8:59:50:e0:
45:38:f5:48:ee:ab:82:b1:04:77:84:9b:bf:53:65:
74:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9A:6A:2B:69:38:8C:E2:89:C5:AF:F5:38:C0:F1:FF:E8:CE:DC:CB
X509v3 Authority Key Identifier:
keyid:08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:f3:05:25:f4:e1:d5:f0:53:fe:f2:b0:de:36:7a:bd:b6:60:
96:4c:55:66:09:32:e3:c9:88:1f:3a:b9:8c:66:1f:9d:86:db:
70:4a:3f:5d:e6:1b:18:f9:e0:b1:0d:07:8b:81:3a:01:35:2b:
1a:d3:92:91:9c:84:d9:08:74:8a:15:f5:f4:e1:44:bf:78:14:
aa:7f:02:85:3e:f0:1a:f9:f4:a4:74:24:b7:77:7d:22:48:de:
78:85:55:03:37:4e:60:e9:25:24:62:c6:2c:db:79:d9:e9:35:
1f:81:85:0d:b7:d4:c2:68:26:3e:53:0e:5f:c5:65:98:97:2c:
85:2a:2b:54:77:43:65:a1:53:de:6c:0c:52:4a:c6:13:65:ad:
c0:a4:cb:fe:8e:9b:a5:92:6d:f4:55:fa:d9:ff:6c:e6:c2:be:
79:0a:aa:b2:1f:ae:2b:9a:bb:49:bd:75:83:c6:5e:32:4b:34:
9f:65:d9:5f:62:de:d4:e6:e1:74:49:21:1f:44:e7:1c:b3:78:
1b:8d:59:a7:03:64:ed:8d:46:4e:9c:06:a1:b1:06:cc:36:1f:
1c:94:f9:db:24:9b:46:32:fb:cd:a3:64:57:7d:ec:10:15:1e:
b5:7d:d3:57:33:0b:11:c4:b2:09:86:66:2b:db:59:38:a3:a0:
10:49:bd:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:21 2026 by rpki-client