Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: vFclBFrklT1tzXs1vGQaBSKKYvjYGWroTBTf2oOZRQk=
Subject key identifier: 9B:7B:29:77:21:6F:9C:05:CD:82:DE:A1:A2:4C:CD:A2:FF:DF:18:BD
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 019D37F75061672EE9C2DE368B902097E03E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0E05
Signing time: Sun 29 Mar 2026 05:00:47 +0000
Manifest this update: Sun 29 Mar 2026 05:00:47 +0000
Manifest next update: Mon 30 Mar 2026 05:00:47 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: Z/pQOZUfiiX1RjvyqZOsLLB4iIzE3bXWkjbRbRCbCKU=)
2: WKalSGnevGohhpgm-gEVPpoJ6r8.roa (hash: RtBxGLGQ1rKUm3Dw/j2SrY9FsdpNgrlCWPACnmZSvFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:50:61:67:2e:e9:c2:de:36:8b:90:20:97:e0:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Mar 29 05:00:47 2026 GMT
Not After : Mar 30 05:00:47 2026 GMT
Subject: CN=9b7b2977216f9c05cd82dea1a24ccda2ffdf18bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:3d:08:ea:8a:0f:f3:b9:9e:a8:c1:a3:16:
62:99:3d:d9:4b:38:ec:77:e9:37:41:c3:14:65:a6:
ee:2a:66:37:36:91:be:68:32:3a:63:4b:e8:a5:54:
b8:50:9a:b6:dc:f1:a7:71:7c:f8:4a:3f:a8:d5:90:
91:ff:9e:80:12:13:72:ec:6c:96:46:7b:39:f4:75:
d3:e3:af:86:ed:b8:3c:05:44:94:3a:f6:79:58:a4:
55:30:16:bf:a3:59:2a:3a:9b:8b:f8:2c:6f:d5:64:
4e:60:91:7a:02:10:7f:21:60:ad:d4:78:f3:6c:3f:
42:95:31:91:e3:a0:75:d0:68:ff:12:04:9e:8d:b5:
2f:19:9e:65:54:49:8f:54:4d:93:c8:69:eb:11:21:
fd:2c:46:d7:86:74:bd:22:99:cb:5d:c1:c3:30:08:
bb:c7:cc:2b:19:ab:5d:58:ed:98:75:eb:06:c9:64:
63:3d:7f:5d:8c:83:68:e9:50:ea:78:6a:e4:60:88:
7e:0a:56:7d:aa:d6:ee:23:a8:2a:bc:a9:86:fc:46:
bc:db:bc:e4:4b:a0:cd:7a:55:5e:ca:13:e6:e5:0b:
13:b9:f1:a5:c0:c7:a9:aa:29:28:c3:f2:3b:e5:12:
1a:68:cf:d4:72:8a:fd:98:e3:8d:58:ec:4c:df:01:
92:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7B:29:77:21:6F:9C:05:CD:82:DE:A1:A2:4C:CD:A2:FF:DF:18:BD
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:47:68:fc:88:8c:3c:95:f5:b3:e9:9c:ba:3a:fd:29:7e:ce:
0b:cf:65:d3:68:82:03:41:38:77:fa:c3:8e:74:44:1d:95:a7:
46:00:2f:e4:82:71:ef:7f:87:6a:20:03:49:5e:14:98:b5:aa:
a5:5b:c6:c4:bd:97:48:e9:6c:16:b7:51:4d:8a:19:7d:bd:b8:
c4:59:f2:7b:25:12:52:da:f1:98:9b:db:8e:5c:0f:b8:a1:26:
03:95:18:93:66:c3:48:12:2f:17:e0:00:6a:c1:48:99:ec:6c:
8e:fd:21:90:3a:2d:df:62:b2:0b:86:a6:54:f7:8f:6d:e0:4d:
0a:72:a2:e7:a6:f3:be:dc:06:ef:f8:b0:42:14:64:1f:96:d1:
13:fb:4a:91:53:00:78:ee:2f:ef:4b:30:21:23:67:7b:00:ba:
cf:a0:c2:c8:5e:fa:57:c5:ea:3a:33:cc:ee:36:37:4b:f7:ca:
83:b0:a0:ce:fc:0f:bd:91:67:89:00:4f:fd:0f:02:05:e5:4d:
76:70:d5:43:9f:63:f0:25:18:09:a4:a5:93:a3:ea:62:29:ab:
f3:05:1d:07:31:52:1a:9d:99:d6:f7:ad:9b:69:bb:69:e6:46:
7f:bd:db:89:c3:76:f5:bf:a5:5c:94:d8:de:d6:74:bf:d8:b3:
d9:94:05:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:30 2026 by rpki-client