
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: xjUUkf+4vR00LOpsfg8xj2IhWNIED3GilBY+Yab3oP8=
Subject key identifier: 9D:E4:9A:10:6D:36:39:B4:FC:14:7F:2E:A4:FB:B3:13:BE:26:B8:FA
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 019F31F03FDA13FD059725A288939B9428BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 0C63
Signing time: Sun 05 Jul 2026 11:00:56 +0000
Manifest this update: Sun 05 Jul 2026 11:00:56 +0000
Manifest next update: Mon 06 Jul 2026 11:00:56 +0000
Files and hashes: 1: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: NYBpHit6sKJxDetQxKPnkhrOIzApb/Owz7vVjyk7ibM=)
2: jrESc5APENrqQkJhnFt6y_8ea-8.roa (hash: aS9GuOaG5e1hqXNc5Tek76eZwNGPGkUH9oPiGIbY26k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 Jul 2026 07:10:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:31:f0:3f:da:13:fd:05:97:25:a2:88:93:9b:94:28:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: Jul 5 11:00:56 2026 GMT
Not After : Jul 6 11:00:56 2026 GMT
Subject: CN=9de49a106d3639b4fc147f2ea4fbb313be26b8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:88:82:d3:12:b3:74:77:ec:d6:d8:87:97:ee:
d6:94:ca:a6:dc:9b:69:45:62:3d:0c:95:9c:ca:ff:
23:ec:db:d9:c2:5e:bf:11:4b:1a:b2:1f:7b:35:1c:
df:b1:96:14:2a:66:ec:89:64:60:ee:17:13:d6:24:
8c:9c:de:8c:70:29:02:4d:2f:7c:41:42:6d:70:27:
ce:b9:cb:93:25:64:0c:f4:e8:f8:56:21:e8:0e:34:
dd:20:7d:c7:98:d3:6e:24:63:50:f3:dd:41:1b:9c:
30:c3:ff:ea:da:fd:06:94:bc:8b:94:ff:bd:16:9e:
8e:1f:25:c4:4f:2e:b9:ec:61:46:8c:9c:59:38:5f:
22:33:d2:1f:49:37:f4:b3:0c:f1:7e:71:62:0c:99:
ea:36:cc:d9:83:db:94:c0:e9:f7:d3:5e:d5:f0:f6:
76:9d:eb:1d:05:5f:5d:6c:43:f6:96:e7:64:93:fd:
56:27:c1:51:f6:6b:da:5b:4e:9a:85:6a:be:64:70:
42:37:fb:42:6f:09:ae:6c:ee:d3:db:b3:ee:8b:c7:
d2:05:dc:ca:6d:20:af:ad:3a:53:5a:0d:76:fb:ad:
ab:6b:47:c9:3f:8e:c8:5d:fb:63:4a:e1:8b:f3:1e:
6d:8e:8f:77:f7:c8:f2:44:77:f5:de:06:bb:9b:52:
17:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E4:9A:10:6D:36:39:B4:FC:14:7F:2E:A4:FB:B3:13:BE:26:B8:FA
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:30:29:90:4c:93:23:f9:34:c2:89:2b:ce:5b:17:92:4d:b5:
39:9e:7e:3b:00:71:cb:78:f2:04:84:3e:92:fb:04:4b:6c:6a:
55:22:6e:c6:de:58:c2:89:a2:62:7e:35:eb:9e:12:d6:ea:9e:
f4:22:90:21:19:ba:60:04:e5:b3:02:75:b0:26:ba:60:60:f7:
2c:56:83:59:9a:c2:1a:b4:89:99:41:ea:2f:37:84:24:d8:c4:
a0:b6:b7:e2:8d:44:bd:cb:e9:f2:16:9a:18:56:7c:32:eb:2c:
08:c3:94:40:83:0d:2c:c6:39:98:7a:07:42:0b:fa:d0:f8:56:
b8:93:52:68:eb:8f:39:b8:d4:06:cf:af:e5:1d:19:e6:90:21:
ac:d3:76:3a:de:3f:ec:c8:bc:9a:28:f3:6d:8b:5f:88:78:f0:
7b:dd:62:8d:d1:4d:96:d8:45:60:06:86:7e:1d:b9:fe:c5:d1:
db:ea:0c:b3:ac:27:7b:de:1b:d7:53:3a:10:2a:40:ca:48:41:
3f:81:72:b8:2a:84:bc:05:6d:bf:ad:f0:3f:f2:2f:4b:ea:dc:
fe:f6:ca:d8:77:c9:62:9d:2f:21:54:2a:6e:df:22:5b:99:b6:
a9:74:e6:9c:7d:3b:36:63:90:03:fe:c5:3f:91:7e:ad:98:6d:
53:7b:45:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:35:37 2026 by rpki-client