Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: Ejd1HSGkaHii5XSISsolPnhVEOI+0+BT7nmRRJ6RAao=
Subject key identifier: 88:67:8A:6F:D4:3B:21:5C:A3:9E:9E:D4:FE:EF:B1:FC:18:4A:72:18
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019E405418696841A6FB8A5265B4AB5C5C00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0B92
Signing time: Tue 19 May 2026 13:01:53 +0000
Manifest this update: Tue 19 May 2026 13:01:53 +0000
Manifest next update: Wed 20 May 2026 13:01:53 +0000
Files and hashes: 1: AaBEOZ3ZZUPRMOYr0HR7shqRlxU.roa (hash: oniToucQYdIHu6lqhV89eqCsufsXROkFzPNah6lqOE4=)
2: BLrQemDWjWx48NYMm5EU7FEE2fs.roa (hash: 3uO6NEJSsXjHXxW7DrT2w1ELWOo2S4puGWGymObsq9I=)
3: cCJJNwn_gJuAQtsmGPX_UDP9tnY.roa (hash: rNInpx5nNSrUT999uu8Pr9WEUgG03eUXK2AlHeyvWXE=)
4: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: OKcxhQfHuAXm794/ZQK674Un5qbfIjFnnPioIobn+mA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 13:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:54:18:69:68:41:a6:fb:8a:52:65:b4:ab:5c:5c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: May 19 13:01:53 2026 GMT
Not After : May 20 13:01:53 2026 GMT
Subject: CN=88678a6fd43b215ca39e9ed4feefb1fc184a7218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:05:2b:84:aa:6d:cf:2c:27:8d:c2:f6:0b:cb:
d1:71:eb:7e:6c:87:3b:6d:23:89:c9:93:e4:91:b7:
69:b8:65:55:30:91:df:e6:8f:82:03:8f:43:9f:18:
45:75:6c:80:58:81:8e:0b:c1:1b:8f:5c:70:46:24:
23:47:77:fc:1b:c7:fc:0e:2f:f3:3c:25:d9:8f:4d:
1e:c7:72:2e:c7:5f:aa:42:8c:0e:f2:9a:e4:7a:07:
c3:8a:ac:13:89:87:33:f5:23:6f:4a:01:6b:ea:33:
6a:ee:f8:43:fa:71:92:0e:ca:e5:9c:cc:dc:2e:48:
76:93:48:4c:34:02:2c:f0:0c:2f:3e:e5:ef:71:b0:
35:a3:7a:09:5a:4f:07:93:0f:0c:af:3e:62:56:96:
16:0e:a4:56:79:a0:48:dc:69:d3:3d:95:1d:12:3f:
79:d9:94:ce:44:a3:ee:48:62:cc:1a:92:d0:5c:06:
da:24:72:45:26:c9:25:87:bd:e3:dd:dc:e1:85:14:
49:ce:76:d5:91:98:77:76:f3:68:d1:fe:52:29:75:
18:3c:58:c0:26:5f:eb:e9:94:86:62:e7:0c:0f:c8:
c9:e0:36:90:65:dd:4f:5a:5d:0d:f8:52:c6:f4:29:
c0:ff:b5:f1:4e:5e:85:e4:fa:ba:5e:59:cd:6c:8e:
e9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:67:8A:6F:D4:3B:21:5C:A3:9E:9E:D4:FE:EF:B1:FC:18:4A:72:18
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fd:7e:58:fa:df:77:00:a0:ff:f6:8d:e8:21:d4:c2:c9:f4:
bb:c2:ae:c3:7e:ef:8f:67:6d:3e:e0:02:7d:70:1b:89:69:c8:
9f:f0:80:d1:24:19:83:54:e2:4d:c3:45:3d:72:96:74:00:90:
9a:5c:76:34:0a:61:ee:66:3b:69:5c:5a:60:b5:96:73:aa:42:
39:5b:65:64:33:31:b4:20:6d:fc:4b:9f:cc:f8:d9:9e:dc:b5:
55:0e:46:76:02:18:7f:99:10:65:71:aa:db:84:68:56:02:01:
f8:7e:b7:cf:8a:a5:68:3c:a5:1a:30:7f:fe:a8:1b:c9:ed:b9:
42:3d:6d:a8:ee:1f:89:7e:46:52:a5:33:40:83:c6:44:2a:d4:
82:98:1f:f9:9a:7f:9d:56:1b:00:ae:ef:fa:5f:25:76:b6:0f:
22:17:fe:c3:4a:04:c9:25:65:30:34:91:65:0d:4f:40:62:bb:
d4:80:b4:a6:88:c1:ca:2a:c1:4a:6d:91:75:66:5f:56:b9:70:
6d:70:39:12:06:2c:6a:06:58:b4:a0:52:ba:9f:dc:34:94:aa:
e0:fe:b0:31:c8:11:08:b7:f9:c9:29:d1:b2:4a:a0:e7:cf:ac:
f7:09:08:e4:27:be:69:b1:d6:47:f3:e4:4d:fd:98:90:de:a8:
51:4d:d3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 16:32:34 2026 by rpki-client