Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json)
Hash identifier: qWcVZFsulLwE6WoWE+4Eljgv2e8JETQIP9WgRE23xIc=
Subject key identifier: AA:55:57:01:6C:65:FD:D3:07:75:4D:2D:70:57:FE:37:17:A2:51:4A
Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Certificate serial: 019D37BFF7E4AB1CBD39DC365BF7AB597DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
Manifest number: 0DD3
Signing time: Sun 29 Mar 2026 04:00:20 +0000
Manifest this update: Sun 29 Mar 2026 04:00:20 +0000
Manifest next update: Mon 30 Mar 2026 04:00:20 +0000
Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: D0/VkaTNsu8mijzgBh7D+t/P8FnMA6aiiHk5TlSHB2M=)
2: eYoEpqe4Uv6U3Q-JThdm1cZns_c.roa (hash: 10KRq+2t5E30gi8VhOOLk5+bD9qKlbZmUWl2P2qS7Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f7:e4:ab:1c:bd:39:dc:36:5b:f7:ab:59:7d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Validity
Not Before: Mar 29 04:00:20 2026 GMT
Not After : Mar 30 04:00:20 2026 GMT
Subject: CN=aa5557016c65fdd307754d2d7057fe3717a2514a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8e:0a:77:57:c3:96:99:1a:b8:95:ae:7e:f9:
71:8c:14:56:64:9a:7e:49:2a:b1:22:98:bd:d3:ab:
f0:29:03:8b:bd:38:09:dd:24:e3:d7:d2:0e:64:48:
21:fa:e4:17:00:ed:14:5f:40:d4:a6:a5:0c:80:1d:
ad:b3:88:da:63:ed:69:b7:6a:b9:eb:9d:fe:06:ce:
bd:a0:55:74:3c:54:e9:0a:0c:7a:8a:f4:78:e7:8e:
a5:4e:6e:20:7e:ed:fd:7c:84:14:30:6f:54:7a:ae:
5b:27:98:a2:fc:59:9f:4e:a6:62:d9:ea:ec:6e:f6:
f1:ce:09:e4:b5:40:fa:21:32:31:0c:73:f2:50:27:
50:db:9d:ea:7c:1b:e3:d8:ce:ba:48:8e:5e:08:f2:
d4:d8:67:cd:47:f0:50:6f:38:33:bd:15:29:ce:4e:
02:e2:49:fd:fe:68:ae:27:67:0d:c3:1e:2c:4f:0f:
31:f2:30:5f:e6:6f:be:fc:cf:2f:a1:0c:b7:a2:7a:
43:fa:9a:06:7a:32:82:07:34:54:e3:d8:0f:0c:c4:
65:29:91:94:15:d9:29:ec:78:62:8e:06:ed:ce:25:
6e:9d:fd:d7:1d:f6:e2:b2:6d:7a:8d:08:e0:b9:90:
70:7a:62:a6:8e:f6:3a:24:71:5c:3f:e3:ed:fc:37:
67:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:55:57:01:6C:65:FD:D3:07:75:4D:2D:70:57:FE:37:17:A2:51:4A
X509v3 Authority Key Identifier:
keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:4b:15:7a:9a:9f:ff:ca:0c:3d:33:c9:92:47:53:e6:40:80:
84:44:66:09:3c:0d:4f:cd:f5:4b:fc:a3:cc:87:ad:34:4e:99:
2f:c8:9a:be:d3:c5:98:1e:e5:f2:88:e8:62:9e:01:64:52:8f:
c1:c8:c2:8c:b6:99:cc:ae:bc:b8:f5:88:9e:b7:95:10:ce:61:
7d:b9:e9:db:d0:cc:90:08:09:b6:56:08:4e:ce:d0:a2:a4:25:
74:7a:ff:b2:c7:85:93:97:b5:d6:64:4f:32:ce:bd:10:b4:33:
67:8f:3b:53:df:84:cb:6d:9d:ac:79:fb:21:2c:64:4e:73:6f:
64:0a:9a:f4:cd:61:f5:f0:9f:36:85:08:75:77:de:02:c3:11:
63:13:8f:4e:82:cd:a3:bd:22:5a:20:34:17:69:91:61:d2:5d:
e4:82:91:28:c2:c0:be:f9:a4:c0:91:08:0b:d7:90:ea:92:01:
77:87:09:f1:bb:34:25:3a:3b:d7:91:65:a7:f3:4f:64:10:19:
d0:4c:5a:a5:25:5e:27:7a:6a:17:13:9d:88:f3:dd:2e:b0:ac:
f5:92:38:40:ea:60:41:8c:b0:a3:a4:c9:06:47:df:7a:91:c5:
c0:d6:c5:ce:eb:d8:77:4b:e4:51:9e:fb:7d:72:a4:48:37:40:
45:87:ed:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:52 2026 by rpki-client