Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: SlptnIEM4AxGjH/DnHysd+OWOuk9/nAFQ/TWaFz6wOk=
Subject key identifier: 15:DA:FF:4E:91:FA:30:23:34:23:80:F7:07:68:69:41:4E:36:B8:79
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 019E3117798B63E849005629B43ED5C9C13B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 0BDE
Signing time: Sat 16 May 2026 14:01:22 +0000
Manifest this update: Sat 16 May 2026 14:01:22 +0000
Manifest next update: Sun 17 May 2026 14:01:22 +0000
Files and hashes: 1: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: 6kn2R6wmUUOzqEggsMrriv1RNG9D6uw9sSSAkhQXU/Y=)
2: jrESc5APENrqQkJhnFt6y_8ea-8.roa (hash: aS9GuOaG5e1hqXNc5Tek76eZwNGPGkUH9oPiGIbY26k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:79:8b:63:e8:49:00:56:29:b4:3e:d5:c9:c1:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: May 16 14:01:22 2026 GMT
Not After : May 17 14:01:22 2026 GMT
Subject: CN=15daff4e91fa3023342380f7076869414e36b879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:a9:66:be:50:dc:e3:ce:46:dc:ed:83:0e:
25:90:c6:dd:ce:06:8a:80:95:a5:af:a4:e4:4d:e9:
6b:09:f4:2e:e8:83:4d:8b:e1:02:68:fd:0d:84:33:
3e:b6:17:a2:f3:ba:30:f4:bd:d0:3f:3b:1e:05:5f:
1a:6a:b7:1d:0f:4f:78:f5:19:a4:14:d3:af:00:b1:
37:18:e9:ef:9c:78:14:1f:b2:96:29:e6:10:54:cf:
81:79:1d:06:bd:48:ca:55:95:6c:61:63:92:cc:1d:
3f:ad:ad:4f:07:e9:74:80:f0:d0:81:49:21:d7:18:
35:5e:6c:c7:b1:2c:a9:ac:5f:80:38:50:28:91:2a:
fa:4f:6a:de:42:9d:d7:6b:2c:e3:d8:59:29:57:a0:
9e:aa:56:c1:33:85:89:bd:19:90:0b:91:c8:e2:4c:
eb:21:4b:88:00:61:4f:5e:fa:b9:75:3e:fd:08:7f:
37:35:a5:47:e4:bd:de:33:fa:98:b6:5e:bb:a4:ab:
0e:db:92:d7:7d:8f:c3:d6:d4:66:b2:0d:92:72:f5:
b1:f6:69:f5:50:5b:55:95:b7:31:50:ac:26:2b:81:
3c:00:e0:1c:a9:67:ae:16:ad:bb:93:55:37:e8:f1:
73:99:f3:89:b3:3e:09:93:8f:63:f7:ae:76:52:6e:
a9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DA:FF:4E:91:FA:30:23:34:23:80:F7:07:68:69:41:4E:36:B8:79
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:fd:a0:c5:f9:2b:32:07:6c:e4:f9:1b:df:98:d5:82:84:eb:
aa:fa:9b:e4:a2:33:5a:f3:d8:71:4f:a6:da:b9:c0:79:09:35:
37:3e:55:57:29:ab:53:3d:68:92:93:a0:75:fa:02:5e:6d:83:
c2:89:e5:2d:b6:4e:14:0d:10:f8:1c:89:db:13:6f:ef:79:1c:
bf:03:a3:88:78:4d:8d:54:94:4a:1d:ea:8f:94:74:84:7c:40:
48:53:65:22:3a:bb:f6:7f:5b:98:b5:dc:1b:c4:12:b7:95:77:
99:7c:89:c5:fc:99:29:14:9c:87:1b:6f:e1:4e:67:d9:9c:25:
16:77:a6:17:c1:f9:7d:48:a1:ac:d2:74:56:ab:3d:62:3b:f7:
d6:69:8d:dc:2d:25:a5:33:93:c6:aa:c6:a3:43:80:dc:62:6f:
2a:c9:f4:38:7c:8e:de:12:4d:02:54:c5:06:4d:0c:43:ec:61:
d2:91:91:fc:67:28:63:c3:59:4e:03:5e:28:7b:84:87:4a:67:
34:a3:e7:a1:cb:4e:23:32:74:31:67:21:b0:70:9f:b0:77:5b:
b2:fc:bd:16:c5:8a:cb:76:7c:0d:c1:e2:90:1f:ad:a7:53:14:
47:9b:30:ea:ff:ba:de:cd:85:df:3c:15:e5:cb:1d:c2:d0:84:
45:97:2b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:35 2026 by rpki-client