Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: KYxRtTJIjfDdXeuZoXYttMVzfEkBv07DhMQl8zKWEv0=
Subject key identifier: 0D:F2:0F:73:50:40:2F:4D:9C:12:B5:2F:1F:E3:BB:D4:CA:84:87:9A
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019CABD927900A1A16D2B977DEBCA103F717
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1460
Signing time: Mon 02 Mar 2026 00:01:01 +0000
Manifest this update: Mon 02 Mar 2026 00:01:01 +0000
Manifest next update: Tue 03 Mar 2026 00:01:01 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: 1iEM4oM9hDPCVE3TfibIVrMDqo+igNoqwfCiXVreTwU=)
2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:27:90:0a:1a:16:d2:b9:77:de:bc:a1:03:f7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Mar 2 00:01:01 2026 GMT
Not After : Mar 3 00:01:01 2026 GMT
Subject: CN=0df20f7350402f4d9c12b52f1fe3bbd4ca84879a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:ae:01:a0:b7:70:7c:bc:35:a0:f7:7a:f7:
03:dd:62:da:57:26:2e:ee:04:59:ce:ec:9f:b0:a0:
f4:24:29:fe:af:6b:fb:22:a7:09:a9:b5:d9:80:fd:
77:d1:29:24:6c:20:5a:bd:c4:c1:95:a2:db:80:51:
18:a4:56:da:9c:7f:ce:71:f9:77:a8:74:4d:97:be:
bb:ac:2b:55:41:05:fd:8d:56:4d:de:45:89:00:c4:
cb:31:30:0b:8e:05:7f:51:16:2b:9e:d3:97:cb:df:
dc:44:26:45:84:6d:bd:dd:fb:90:d7:f2:b5:6f:0e:
e1:2d:35:9c:d8:af:c2:95:47:42:6d:45:ec:e6:cc:
2a:03:a3:e6:9f:f0:5e:56:2a:29:7e:9d:63:23:b4:
ba:5f:a7:05:72:5a:ff:ee:48:c4:51:6e:7c:13:e2:
c7:9a:68:4f:33:f2:08:9c:a1:8e:2a:ef:1e:fa:fe:
3d:53:27:87:a0:e9:73:18:ef:f3:58:fb:7c:49:eb:
e4:f8:c0:89:03:f6:c4:73:6f:e3:58:cd:55:5b:7a:
89:dc:4f:5a:71:3b:0a:b0:7d:05:d3:bf:77:1d:49:
13:e6:2f:bf:78:37:12:a9:19:5f:91:70:0a:a9:56:
ba:ec:bf:f3:76:01:5e:80:d8:c4:6c:14:bf:8d:65:
50:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F2:0F:73:50:40:2F:4D:9C:12:B5:2F:1F:E3:BB:D4:CA:84:87:9A
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:02:7f:5f:bb:2a:ca:f7:87:e6:f9:b0:dd:95:f1:bb:ec:85:
7d:53:e2:4a:cb:1a:89:9e:c6:f2:d8:77:4a:1d:f2:73:59:71:
c8:f2:4b:9a:fc:f5:56:ea:fe:14:b5:de:e2:4a:d1:bd:f4:a0:
61:ca:fc:e9:30:5e:a1:6c:53:e0:b4:cb:0b:69:d8:0e:2b:f5:
ff:bc:9c:c2:2c:d3:b6:76:7f:52:7b:66:2f:c0:db:82:22:89:
73:ee:71:a2:87:af:81:78:e5:f1:12:d1:2d:cd:a0:bc:dd:33:
4f:9d:0a:fb:dd:f5:30:15:5d:e2:ab:c9:73:69:bc:9c:74:9d:
ea:07:51:4d:3f:e0:7b:f3:7f:80:f4:4a:e8:0a:f3:ef:eb:74:
1e:d8:a6:d5:ff:45:96:01:68:ce:48:3c:85:f7:99:b1:41:2c:
3f:b2:86:51:ec:d6:ca:20:64:f7:ce:92:e6:15:9a:86:47:99:
8e:27:82:4e:02:14:bc:3e:59:7e:f9:f3:c7:df:83:81:b4:ad:
3f:59:9c:48:5d:43:11:17:d3:99:35:7b:96:95:56:2f:ca:74:
d6:bc:00:39:a3:0b:a9:ba:b1:21:2f:7c:d9:2f:3b:4d:f5:22:
a1:e0:aa:e2:ce:c2:f3:aa:14:5e:7f:e7:a9:09:12:53:fc:3d:
ca:38:17:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:46:35 2026 by rpki-client