Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: a4nbE7Kdaam7KbFxu47FP+t+bHGcZcLVndpxYu5aCPM=
Subject key identifier: 9F:C9:EF:40:EF:0B:45:BE:1E:BA:47:72:58:12:08:D6:28:F0:63:03
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 019D37C0488129ECE14ECA21B05DFA680B14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0D48
Signing time: Sun 29 Mar 2026 04:00:41 +0000
Manifest this update: Sun 29 Mar 2026 04:00:41 +0000
Manifest next update: Mon 30 Mar 2026 04:00:41 +0000
Files and hashes: 1: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: rcqf3zKmT5azp7p0bHSbSe8po2mz1nVZNgXSqJAfqW4=)
2: wTEh6ej3g3Q7GGlsQ4YIzozQtnc.roa (hash: qEk4UNZu9aTZfRIMREb/ibtS04CGWHXkv598NCFoY14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:48:81:29:ec:e1:4e:ca:21:b0:5d:fa:68:0b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Mar 29 04:00:41 2026 GMT
Not After : Mar 30 04:00:41 2026 GMT
Subject: CN=9fc9ef40ef0b45be1eba4772581208d628f06303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:1a:67:28:24:93:c2:1f:78:0b:46:01:49:
cd:19:15:2f:87:f5:b0:53:54:02:7b:e5:d7:6f:62:
f4:43:ea:45:b8:f5:38:9b:2a:6e:d7:5f:5e:96:8c:
26:05:0e:84:95:3b:8b:41:97:9e:3c:a1:92:b6:5e:
51:80:d5:3a:83:c5:3f:5d:58:99:0a:a4:1a:9a:17:
2d:55:2c:1d:4e:e0:33:c8:2f:4d:fd:f2:a4:76:70:
09:19:81:5b:f0:89:a4:5a:57:d0:3a:6d:5a:50:54:
09:d2:f2:22:dc:d8:1a:8c:20:0d:32:5f:8c:e5:03:
e6:8f:93:e7:c1:57:69:c3:6c:b9:33:14:b8:a6:3a:
53:39:0a:08:e5:0b:ba:94:ec:d8:be:58:24:5b:2e:
36:0f:38:20:a4:67:e4:83:63:41:a1:17:03:e9:7e:
08:4b:fd:4a:8b:d6:76:39:17:a1:a6:2b:df:6f:16:
33:04:69:37:6a:ec:d4:fc:be:0f:8d:c2:a1:1a:1d:
21:fd:56:12:11:88:0d:fd:d8:05:6d:d5:e4:8e:f9:
24:97:ab:61:06:5c:27:96:da:2c:31:72:32:f4:55:
71:35:17:f9:b3:b4:68:45:0d:c3:75:90:b7:cf:db:
e0:8d:db:02:0e:77:78:67:4e:da:03:4a:01:ac:ee:
b7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C9:EF:40:EF:0B:45:BE:1E:BA:47:72:58:12:08:D6:28:F0:63:03
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:8a:f3:34:2e:89:98:fd:db:c2:ab:ce:83:b0:bf:ac:5d:44:
da:f4:2f:ff:4f:b3:41:cf:4a:52:6a:aa:35:13:57:0c:4c:66:
88:5e:bb:5b:89:77:86:4b:7a:3e:42:cd:3e:fd:36:90:fb:68:
2b:ef:da:dd:92:b6:ca:4c:3f:14:d8:31:3c:a8:2d:16:b8:2d:
f7:37:49:ec:c2:ac:02:d2:41:2f:a3:ce:67:48:ab:81:fe:87:
51:2a:08:ae:88:bf:07:ea:dc:d2:05:f4:db:cf:02:f0:e2:7b:
2f:36:83:ca:21:8b:e6:86:3e:82:f8:a6:03:57:26:84:e7:c6:
d6:08:98:a0:90:26:bd:b3:d0:f6:04:e7:06:aa:b6:0d:7f:63:
c8:0d:b4:d3:16:34:dd:56:ed:96:3b:8d:e6:1c:f2:27:5a:b2:
87:7e:7d:19:07:39:43:6a:67:82:c9:e3:e1:4f:d4:9b:f1:86:
83:08:37:cb:32:e5:6e:92:57:88:37:96:7e:34:d8:ad:16:8f:
90:6e:a7:e7:5e:ec:72:12:7f:77:3a:b0:e9:3b:45:5c:e0:8e:
27:89:3b:b0:b4:28:5c:01:24:de:95:8c:7b:8d:09:91:25:1e:
81:fc:c9:0d:5d:6d:08:ba:3e:4a:9a:ab:a3:fd:9c:e6:d5:12:
5a:4e:81:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:41 2026 by rpki-client