Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: 9jRkGWt/47LZKRa1hKuhNRCdM5VJpAH7gVrcT7gv5yM=
Subject key identifier: F5:DD:20:BD:A0:74:8B:F2:5E:48:CF:D2:8D:FC:69:76:D3:C2:D2:D8
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019D39AF45E0DB4A0FE17E9392E11BBB65CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0B0A
Signing time: Sun 29 Mar 2026 13:01:21 +0000
Manifest this update: Sun 29 Mar 2026 13:01:21 +0000
Manifest next update: Mon 30 Mar 2026 13:01:21 +0000
Files and hashes: 1: AaBEOZ3ZZUPRMOYr0HR7shqRlxU.roa (hash: oniToucQYdIHu6lqhV89eqCsufsXROkFzPNah6lqOE4=)
2: BLrQemDWjWx48NYMm5EU7FEE2fs.roa (hash: 3uO6NEJSsXjHXxW7DrT2w1ELWOo2S4puGWGymObsq9I=)
3: cCJJNwn_gJuAQtsmGPX_UDP9tnY.roa (hash: rNInpx5nNSrUT999uu8Pr9WEUgG03eUXK2AlHeyvWXE=)
4: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: gC9NAKsymAqgEVxsBMtmqT5+Ml/EgAvt66aPCkJuW08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:45:e0:db:4a:0f:e1:7e:93:92:e1:1b:bb:65:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Mar 29 13:01:21 2026 GMT
Not After : Mar 30 13:01:21 2026 GMT
Subject: CN=f5dd20bda0748bf25e48cfd28dfc6976d3c2d2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:53:de:49:f4:fa:ed:2e:3c:1d:ba:22:d4:
9f:72:16:4d:0b:a2:68:15:54:af:41:70:f2:be:32:
be:80:9d:d7:5c:3c:34:a8:0e:19:5d:61:1c:41:11:
28:e0:82:9d:8a:88:83:fa:cf:c2:b2:90:f6:9e:10:
be:6b:f9:92:12:b3:ab:14:ee:e6:18:89:b4:11:3e:
6f:fd:63:fc:83:9a:4f:68:4f:14:2f:cd:d1:db:e6:
13:01:31:5f:bf:0a:96:3c:f0:91:5b:3a:1d:11:8e:
86:3a:40:de:85:46:b4:a7:7a:10:3c:7f:cb:b1:56:
e7:91:6d:8d:be:da:4b:cf:59:ec:2f:28:c4:03:6c:
1b:54:61:e9:b7:1a:d6:c7:1d:5d:c4:df:f0:a7:a4:
ff:cd:8d:d4:8e:6c:71:02:58:1d:16:89:0e:d0:cf:
03:dd:be:09:f1:e5:1b:29:8c:d1:d7:f0:34:2f:90:
9d:bf:b1:39:90:a6:31:19:86:7a:14:0f:da:60:78:
70:a2:07:23:75:c0:86:fe:5c:4f:3c:a9:d5:c3:7d:
94:a8:9a:50:4f:6a:95:1f:22:b8:f4:c2:e6:00:5b:
db:c4:3e:09:ed:16:46:1d:cf:39:33:b5:9d:03:70:
42:3a:0f:79:46:02:f8:0c:61:d6:b1:c3:0e:ec:1a:
e3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DD:20:BD:A0:74:8B:F2:5E:48:CF:D2:8D:FC:69:76:D3:C2:D2:D8
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:1c:25:9e:bb:b0:ae:4e:37:e6:1d:09:4f:64:02:83:70:8b:
a0:d1:21:01:0c:cc:7d:28:19:d8:e6:38:ce:f6:20:08:d9:13:
c0:d8:ac:99:22:00:31:a7:37:e2:4a:67:79:9d:47:7d:2d:80:
19:ac:8b:7a:1a:94:e1:5b:f0:f5:4a:4a:7b:04:a2:32:c5:89:
79:f8:6b:4e:0f:37:39:bb:9f:6c:58:a7:f4:f4:58:60:1c:22:
eb:07:ab:ea:e8:df:2d:c1:63:b7:c3:6c:83:a7:90:f5:e0:44:
e5:60:8e:20:f4:fd:d2:bd:12:88:c2:11:06:60:30:66:ce:be:
f4:58:a3:91:eb:68:0f:0f:a9:35:63:19:93:d6:1b:8b:6e:bf:
84:69:6f:c1:86:b9:96:4b:58:50:76:1f:71:c7:a8:c7:f3:40:
2c:83:09:a5:e0:9c:8a:97:6b:ff:09:d7:c1:21:ce:25:0c:e2:
70:52:5c:43:29:86:97:99:5e:4e:7d:9b:b2:46:bd:b6:b8:30:
e5:63:dc:49:15:f9:62:16:c7:74:0e:52:fa:21:f2:dd:dc:5c:
40:d7:94:81:db:22:3f:04:ba:8d:bd:0e:7d:12:1f:e8:19:63:
7d:b2:99:e6:0b:7f:77:9d:7b:47:ce:9d:5f:04:a2:29:ac:1f:
80:ce:6f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:40 2026 by rpki-client