Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: MOBPqf2BtllUH0k1rdhDBzAD9tlVp1fZjsHxpVnxz0I=
Subject key identifier: 86:8D:C2:A7:2F:A2:C4:E5:B8:F5:22:92:87:71:39:9D:29:58:5B:6A
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019EBEED4AC88BE75A87BBD8DF881329E9AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1573
Signing time: Sat 13 Jun 2026 03:01:22 +0000
Manifest this update: Sat 13 Jun 2026 03:01:22 +0000
Manifest next update: Sun 14 Jun 2026 03:01:22 +0000
Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: IPqzzeuwmG53PMMcIFZHWLV3La7YW8uhPCSy3Ihrjus=)
2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ed:4a:c8:8b:e7:5a:87:bb:d8:df:88:13:29:e9:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Jun 13 03:01:22 2026 GMT
Not After : Jun 14 03:01:22 2026 GMT
Subject: CN=868dc2a72fa2c4e5b8f522928771399d29585b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:3c:98:72:d1:21:d4:ec:ee:e9:4d:c2:2f:
ab:1f:61:a0:ea:73:c5:a0:90:64:db:96:cf:64:ec:
fd:89:17:3f:4c:27:ad:cb:36:22:12:1f:2d:f8:1b:
8f:de:dc:b0:9b:f0:02:a4:d3:44:51:cd:51:50:67:
d9:96:6b:d1:b0:63:fb:82:cf:ee:4a:96:c5:e8:ed:
3b:a4:4a:c9:3f:49:19:36:40:14:d9:24:47:b2:f1:
2f:3a:87:ae:5a:88:9c:bc:a7:b2:d3:7a:97:3e:f7:
f3:76:85:ac:65:47:c8:c2:d2:03:3f:0f:4e:6d:b3:
0d:55:e4:f5:74:8f:f7:9c:b4:a6:df:21:ec:21:17:
2c:cb:2f:bc:1c:b3:5b:e4:84:e3:b5:dd:41:06:14:
9c:82:2e:60:15:91:44:c2:ae:f2:9b:4d:1e:39:fd:
ce:b2:91:e7:12:51:b8:53:ba:bc:43:a0:34:c7:d1:
f9:87:8c:46:9e:13:74:47:ec:54:86:d7:8f:37:ee:
e8:8b:18:1f:31:5b:ca:67:9c:7b:26:e5:dc:c5:81:
39:e6:8f:27:b4:cf:47:62:93:0e:5a:02:b3:85:d8:
6d:32:d4:a9:ef:2a:63:ad:c6:bd:af:80:23:7b:23:
8c:16:68:8e:be:bb:65:e5:c6:1c:03:28:a7:a1:54:
65:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8D:C2:A7:2F:A2:C4:E5:B8:F5:22:92:87:71:39:9D:29:58:5B:6A
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e0:bc:b5:3e:8b:93:61:50:8d:92:45:86:15:23:e9:46:34:
9c:92:35:4d:93:8f:af:2f:09:94:e7:7d:02:a8:35:3b:ca:c1:
c5:83:76:af:0d:5e:fc:0b:1b:1f:68:be:4a:87:cc:fb:35:26:
8a:d8:a9:04:14:e4:55:52:a7:61:8e:c3:21:7c:05:a7:eb:42:
ac:c3:0f:14:76:be:24:54:33:02:5f:15:11:a4:7f:7f:d1:24:
47:8e:75:de:59:8a:80:03:8f:c9:c4:fe:52:64:6e:22:87:83:
30:ab:00:d3:c9:d9:b9:30:d2:cc:2c:21:27:c5:ac:3a:25:bb:
67:58:29:a0:8a:0d:45:02:bb:b6:c6:96:a0:74:66:bf:5b:f1:
c6:fa:a0:c9:c8:c5:f8:61:bf:f7:45:e6:55:bd:49:99:a5:69:
81:74:e4:48:c6:e4:37:32:bf:b9:d0:f3:eb:59:1f:43:5c:5b:
8d:8a:1c:e9:d3:ba:45:65:10:cd:1f:37:b6:fd:cc:22:69:72:
4c:03:82:67:d2:d9:e9:8f:92:b2:a3:75:16:81:43:f1:a6:33:
61:a7:23:e1:b0:eb:60:78:6c:91:c4:9f:af:80:89:9f:9a:f4:
e3:02:00:81:a6:4c:26:79:a7:95:26:46:09:9b:5e:0d:08:bb:
3b:11:06:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:40:53 2026 by rpki-client