Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
File: CbtjJ836FlJNx9AzcTivMl-14tk.mft (raw, json)
Hash identifier: CfA/8e+V0/jPHKwhkds17g0DgVNUWQyjWlOJxqogB0Q=
Subject key identifier: 8F:F1:95:05:F9:15:16:00:EE:6D:F7:A7:17:0E:4D:62:8E:EE:1A:77
Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Certificate serial: 019EBE477F28146C8D3E1B79CB9DCFD1C6A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
Manifest number: 171D
Signing time: Sat 13 Jun 2026 00:00:17 +0000
Manifest this update: Sat 13 Jun 2026 00:00:17 +0000
Manifest next update: Sun 14 Jun 2026 00:00:17 +0000
Files and hashes: 1: CbtjJ836FlJNx9AzcTivMl-14tk.crl (hash: 4HD29gqo2zXAM3v0kjFxwGaoAtp8cd3MYB79p3L1gLI=)
2: xAAFr_8pM0qHutXKz5bJzNuOHSs.roa (hash: mrqi/YUBSl2ewfWvM3J/1CATw90lWobMjcJ1JqVQVtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:7f:28:14:6c:8d:3e:1b:79:cb:9d:cf:d1:c6:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Validity
Not Before: Jun 13 00:00:17 2026 GMT
Not After : Jun 14 00:00:17 2026 GMT
Subject: CN=8ff19505f9151600ee6df7a7170e4d628eee1a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ff:dc:32:53:2f:22:1f:09:a7:53:dd:bf:56:
0c:85:bc:3e:e3:84:55:fd:e0:80:fa:97:c2:06:aa:
e8:22:ea:5e:67:49:b6:ce:63:89:40:78:59:aa:fb:
14:2e:6a:8c:4c:5c:80:50:bd:93:ba:69:9a:4d:8c:
99:fb:86:67:e5:73:7f:bb:9b:92:14:e8:42:81:65:
bc:c4:c7:30:ae:2a:8a:1b:03:b4:28:10:5f:b4:52:
ae:9e:cf:c5:e1:64:06:12:f3:2d:89:b6:4a:57:b4:
ec:9e:f1:c9:db:44:fd:a3:0b:23:51:6f:c9:64:cb:
de:fb:f4:c7:72:60:a1:5e:85:ca:5b:72:45:ad:d2:
8b:d7:35:f2:2e:f9:5b:4a:a9:ff:90:f5:1a:bd:15:
55:57:97:ff:36:d1:22:73:d7:bc:05:09:48:75:0b:
aa:06:a6:4d:e5:49:18:58:3f:a4:41:6e:b8:f5:e9:
d0:55:6f:fc:4c:a2:f5:89:14:52:ba:23:2a:ed:ad:
26:9e:bb:c6:27:42:51:c0:84:96:a5:01:dc:51:f2:
0e:72:71:a8:c7:4f:94:a3:5c:5a:07:49:9c:e7:4b:
fe:96:22:79:9d:42:28:f2:bc:d3:99:cd:cf:b8:46:
c2:e6:84:56:6b:64:06:12:b8:62:1f:1e:46:81:34:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F1:95:05:F9:15:16:00:EE:6D:F7:A7:17:0E:4D:62:8E:EE:1A:77
X509v3 Authority Key Identifier:
keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:8c:d0:67:41:59:62:20:f2:b1:c3:f2:d7:d8:12:7c:d4:64:
8d:68:85:c1:c8:8a:3c:b8:2a:c2:88:9e:a6:d3:f7:02:9e:d0:
cc:c1:ed:80:60:91:8c:3d:f0:d3:94:2d:32:0d:01:5b:71:ad:
f9:53:fa:3e:02:5c:61:88:c2:1f:16:21:b3:4a:91:d4:c4:e5:
38:c7:a7:5b:49:75:3d:3c:de:12:49:7b:31:0d:66:f9:bf:47:
49:4b:c6:66:c6:79:9b:94:05:98:19:0f:0c:73:a4:61:af:a1:
69:60:07:a1:a5:e1:65:0b:84:98:12:34:07:a8:9a:b0:1c:40:
69:d6:11:3a:0e:6f:08:ba:c0:d9:0d:39:62:1f:48:1a:5a:e5:
0c:b9:90:ce:5a:5e:53:14:70:b6:db:6d:44:2c:3d:45:6a:84:
52:0c:fc:9d:89:2c:a7:88:5c:3a:bc:ab:61:5c:d4:68:bc:07:
08:b4:90:f2:7c:80:ed:1c:0e:28:3e:d9:27:91:6a:aa:f5:96:
05:c7:55:10:df:58:3a:37:2b:dc:6e:4f:65:34:6f:fb:d0:0d:
a2:fd:1b:5a:83:5d:bc:0e:3a:79:c7:14:1f:94:d9:de:a2:c9:
40:01:83:ce:0f:9e:a1:d1:40:29:0d:0a:20:9a:52:00:7e:51:
0e:1b:45:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:22:41 2026 by rpki-client