Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: 1R8kw7jL5SKyuM10u+k+VwJdAsd1Lmx6GFeIYikHExc=
Subject key identifier: 77:4E:A3:7B:D7:FF:9E:4E:C3:7E:CA:24:94:FA:5B:42:CD:F3:39:FF
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 019D38D3696E8BC073214B916432F85E2364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 16DA
Signing time: Sun 29 Mar 2026 09:01:12 +0000
Manifest this update: Sun 29 Mar 2026 09:01:12 +0000
Manifest next update: Mon 30 Mar 2026 09:01:12 +0000
Files and hashes: 1: Afbz_CgFHMzfcYyB-LhD-CN5fJo.roa (hash: UVJ+Ac4Bp4WWuF6LeTd+T8dhUJ7FlhzP+dm7sJQtR5c=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: /Y0orEcM9f+miBSzlxccsxfxzkGC+/yrDHp55Ue1EuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:69:6e:8b:c0:73:21:4b:91:64:32:f8:5e:23:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Mar 29 09:01:12 2026 GMT
Not After : Mar 30 09:01:12 2026 GMT
Subject: CN=774ea37bd7ff9e4ec37eca2494fa5b42cdf339ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:01:ee:8c:c5:da:c1:d0:ca:1f:72:12:d3:20:
4f:95:2b:79:0f:14:18:92:94:c4:65:e5:28:c5:01:
3c:ae:1f:f4:1a:4b:45:bd:75:c0:6a:f5:16:f8:95:
d1:55:a6:0b:cf:cd:75:81:32:84:71:d1:b5:22:4b:
19:4a:ac:e4:2a:a6:e8:6b:03:1f:51:04:f8:af:25:
ac:b7:4c:ab:5e:16:1b:46:e1:3b:9d:f3:33:08:6c:
4f:8a:35:3f:a1:3b:cc:3f:23:8b:c7:a1:96:26:3a:
f6:cc:6c:aa:cd:a5:16:71:61:3d:db:2d:b1:6f:31:
4f:ef:1e:18:0d:67:dc:b5:1d:fd:66:05:27:91:81:
76:4e:46:4a:7d:09:1a:12:71:4b:9f:e0:a4:bf:3a:
f0:b0:23:26:08:3c:a8:cb:53:2b:fc:0e:fc:cb:ab:
e7:0a:0e:49:a6:f4:a3:c6:85:4b:89:46:e0:b7:6a:
ca:8e:2e:41:ce:55:6e:cb:8e:1f:12:31:54:b5:c5:
18:73:9d:0b:07:ca:8b:f8:03:81:45:fc:27:8a:df:
eb:61:ac:03:6c:c1:e3:c7:39:84:1a:1e:eb:27:07:
84:3c:12:15:52:b9:68:d3:cb:41:22:cb:d0:1a:6d:
c2:22:7c:53:fe:db:76:71:32:61:aa:fa:27:56:e1:
50:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4E:A3:7B:D7:FF:9E:4E:C3:7E:CA:24:94:FA:5B:42:CD:F3:39:FF
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:5a:0d:b6:78:b3:d3:4f:de:7f:b7:ea:76:99:ce:05:84:de:
61:ed:95:9d:53:2c:de:77:da:72:79:91:d6:2f:07:72:f0:0d:
fe:2f:aa:2b:d9:df:2d:06:25:7f:67:0a:ac:c9:98:03:79:b3:
2c:4f:a1:f9:11:76:fe:bd:c8:7e:1d:5f:ba:71:64:20:b5:39:
8a:5e:ec:94:e9:f1:76:9e:b5:b5:c1:8e:6e:2d:f2:f1:6d:12:
ed:03:be:ef:ab:51:21:96:2c:04:6b:70:30:56:54:32:af:e6:
b3:e3:51:d7:49:3b:e9:07:a2:19:57:7d:22:bc:33:60:68:2d:
8c:cc:30:74:fa:17:12:5b:28:11:90:ed:1f:1a:6b:62:c0:5a:
9b:58:96:59:4e:0d:90:db:65:4b:dd:4a:e2:77:94:2a:ab:78:
65:6f:26:77:20:d8:48:7a:80:c0:d0:b6:97:4f:5f:11:57:15:
2b:ae:01:48:fc:9c:e9:ab:33:1c:23:8c:09:55:da:0c:14:8a:
5e:a8:aa:ef:2a:c4:26:6f:ff:69:2d:ed:f7:f0:ed:17:98:4e:
4b:bc:72:fb:65:c4:7e:e9:39:f9:9c:cc:e5:2a:97:54:67:5e:
74:b1:b3:f7:86:68:69:5d:c6:46:2b:21:5f:ff:42:42:ae:da:
dd:2c:87:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:40 2026 by rpki-client