Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: nFPlxaf44TdEpuVd9Xmr/RmgeyHY7+GobfDCpKCO3Ns=
Subject key identifier: 25:E3:31:D5:5B:22:11:46:B4:0B:58:CC:A0:C6:7D:95:11:81:45:86
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019D38D35F1E9973438E8B48A417F3DC7302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 1823
Signing time: Sun 29 Mar 2026 09:01:09 +0000
Manifest this update: Sun 29 Mar 2026 09:01:09 +0000
Manifest next update: Mon 30 Mar 2026 09:01:09 +0000
Files and hashes: 1: YeLaacDEqyOHodEKhBUtu92hvRw.roa (hash: Ji1cHzcmwBaizYoDGG5KY1yTxLM1jIXJ3gtR7NQt17s=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: KwxejkFsOH8+S2+0v9vcyNbMBLFp4MsXnBvIR9SJooo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:5f:1e:99:73:43:8e:8b:48:a4:17:f3:dc:73:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Mar 29 09:01:09 2026 GMT
Not After : Mar 30 09:01:09 2026 GMT
Subject: CN=25e331d55b221146b40b58cca0c67d9511814586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:72:76:f7:77:6a:3b:d7:e2:7d:f9:dd:ce:
1f:32:0c:aa:b1:bc:80:8f:01:64:7d:5e:e1:a7:a9:
ee:b9:37:5d:5f:a9:c9:00:7b:da:9d:e9:54:ae:3f:
cc:64:52:08:5b:6b:46:39:df:63:f8:28:e8:6d:21:
8d:d8:33:00:bc:ff:3b:d7:7a:b6:c6:07:42:35:9e:
77:ac:90:fb:3f:e4:90:25:bb:46:2f:ef:2c:09:4d:
15:4d:f9:e9:6f:b7:57:2f:f2:7d:87:e2:39:70:b4:
23:67:b6:46:37:51:c5:9d:fc:c4:1e:c8:15:10:03:
b0:49:cc:c7:38:77:48:7f:7b:a1:b5:13:1f:75:c7:
6f:4b:39:56:ac:2c:b4:95:90:b1:e6:e5:03:bd:c3:
b4:73:db:0b:c2:64:ba:fd:58:83:d4:8c:de:2f:76:
03:05:34:20:14:23:a1:91:80:45:f5:13:04:19:45:
44:5e:ec:92:1c:1e:3a:ca:1d:00:2a:0f:9d:94:e7:
1b:30:10:69:96:1a:08:20:b3:de:24:29:41:9e:8d:
5b:44:a2:84:cc:fe:37:e4:e5:cc:a6:96:fb:87:4b:
81:1b:57:91:e9:03:b5:9e:1b:e3:9f:fc:fd:1e:aa:
ea:5f:15:32:ec:52:8f:22:de:66:99:70:5c:c1:a5:
53:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E3:31:D5:5B:22:11:46:B4:0B:58:CC:A0:C6:7D:95:11:81:45:86
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:3b:85:64:83:35:cf:d9:cb:a0:fe:a0:34:d3:b3:2d:1b:73:
39:18:af:0d:51:82:f3:e9:0f:11:b3:02:2e:3b:80:01:07:07:
36:c6:70:d2:89:ae:9e:82:d5:d9:75:a5:e5:5c:bf:4e:4c:59:
bf:47:74:e3:cb:7d:be:6c:bf:5d:95:e3:f1:9e:3a:a7:3b:47:
f7:51:67:7e:77:6e:5e:13:33:50:5a:53:5a:97:1e:c1:59:4e:
11:b5:33:2e:0c:94:7c:7b:c5:8d:90:5d:e2:13:f9:f0:ba:1d:
22:91:12:07:42:f9:32:21:3d:b0:f8:0c:5f:cd:60:a9:5a:97:
79:ec:95:f0:21:31:a3:78:2c:f2:e7:b8:99:95:59:82:36:f2:
d8:2f:b3:d0:16:9a:ba:bb:91:85:d8:8b:8a:71:16:52:6a:3f:
fc:29:f9:ef:df:e1:3b:cd:dc:68:49:ea:22:3e:ed:a0:6d:b5:
41:22:b2:29:5c:1a:62:5f:c9:c0:5f:24:1f:d7:92:41:b4:b0:
71:6e:f2:41:6a:93:55:8c:84:9c:fd:f5:fb:f0:34:1a:4b:33:
b6:20:c1:ee:25:dc:c3:e8:23:0d:de:55:5b:7a:7f:25:34:e4:
25:1b:d2:19:cc:ac:79:a1:4c:db:fc:53:89:c1:a8:dc:b4:3f:
14:ac:75:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04018emXNDjotIpBfz3HMCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZGJlYTA3NTNkZjA4M2U1NzgyYmI5ZjM4MGI1ZDc5OWNi
NzhhMDYwHhcNMjYwMzI5MDkwMTA5WhcNMjYwMzMwMDkwMTA5WjAzMTEwLwYDVQQD
EygyNWUzMzFkNTViMjIxMTQ2YjQwYjU4Y2NhMGM2N2Q5NTExODE0NTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzRydvd3ajvX4n353c4fMgyqsbyA
jwFkfV7hp6nuuTddX6nJAHvanelUrj/MZFIIW2tGOd9j+CjobSGN2DMAvP8713q2
xgdCNZ53rJD7P+SQJbtGL+8sCU0VTfnpb7dXL/J9h+I5cLQjZ7ZGN1HFnfzEHsgV
EAOwSczHOHdIf3uhtRMfdcdvSzlWrCy0lZCx5uUDvcO0c9sLwmS6/ViD1IzeL3YD
BTQgFCOhkYBF9RMEGUVEXuySHB46yh0AKg+dlOcbMBBplhoIILPeJClBno1bRKKE
zP435OXMppb7h0uBG1eR6QO1nhvjn/z9HqrqXxUy7FKPIt5mmXBcwaVTxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCXjMdVbIhFGtAtYzKDGfZURgUWGMB8GA1UdIwQY
MBaAFHDb6gdT3wg+V4K7nzgLXXmct4oGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjkt
MmEwY2YxMzE3M2Q4LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjktMmEwY2YxMzE3M2Q4
LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAezuFZIM1
z9nLoP6gNNOzLRtzORivDVGC8+kPEbMCLjuAAQcHNsZw0omunoLV2XWl5Vy/TkxZ
v0d048t9vmy/XZXj8Z46pztH91FnfnduXhMzUFpTWpcewVlOEbUzLgyUfHvFjZBd
4hP58LodIpESB0L5MiE9sPgMX81gqVqXeeyV8CExo3gs8ue4mZVZgjby2C+z0Baa
uruRhdiLinEWUmo//Cn579/hO83caEnqIj7toG21QSKyKVwaYl/JwF8kH9eSQbSw
cW7yQWqTVYyEnP31+/A0GksztiDB7iXcw+gjDd5VW3p/JTTkJRvSGcyseaFM2/xT
icGo3LQ/FKx1CQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:40 2026 by rpki-client