Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json)
Hash identifier: 1h0VMdAk/ROR03ELeiEGRQsMUTgKc12T1lPxXGOCCAI=
Subject key identifier: 94:34:DA:EF:40:95:5B:EC:4A:3B:05:D9:CB:EF:79:F6:4A:8B:99:51
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 019D37530ED9C45DB4DA1F7673139B34AA87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
Manifest number: 18D8
Signing time: Sun 29 Mar 2026 02:01:23 +0000
Manifest this update: Sun 29 Mar 2026 02:01:23 +0000
Manifest next update: Mon 30 Mar 2026 02:01:23 +0000
Files and hashes: 1: QZ_9dSDQYledA3mZvzzU2XsR2W0.roa (hash: nZN1cE74YklriGKMRngm1fgmd4ilU9K/u2p2JG2cQ20=)
2: _g7NYGu7EgLM-JyG677gAc99ISI.roa (hash: uHPD2j/d4/7LW+Vl6Kpwce5f7NuD1gag8TG/5Nj0SWs=)
3: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: 6oPfk3/CqWI4EiAClKlmq/UP1JdMUeU4PpYMp0FYuzQ=)
4: u3tBTHFA6uA1xiho6mlx2A99Pkg.roa (hash: FgLJ+SuCyCEVccEPsDGFLFFI0Fpbheu8wLy47VogJN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:0e:d9:c4:5d:b4:da:1f:76:73:13:9b:34:aa:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Mar 29 02:01:23 2026 GMT
Not After : Mar 30 02:01:23 2026 GMT
Subject: CN=9434daef40955bec4a3b05d9cbef79f64a8b9951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8a:81:41:67:a2:85:3b:67:9d:5d:59:f7:3a:
47:b3:1c:90:c8:50:7d:c2:6b:69:01:43:74:19:a3:
7d:ca:a1:64:09:dc:a7:88:e7:fe:49:6e:92:85:fc:
30:0d:7a:57:71:f4:41:27:b3:f9:06:7c:d2:f1:0a:
af:b5:86:39:bc:0b:10:3d:9a:d8:bb:e3:e8:97:f4:
7d:20:d3:01:22:9a:76:d2:19:15:4e:b2:b5:40:8f:
02:c9:8c:fd:ef:ce:4c:20:cb:7f:e5:d8:f6:ac:42:
ed:84:e5:8e:d4:eb:0b:cd:b2:22:91:38:b1:a5:0c:
46:f0:ac:5f:83:96:18:d4:eb:42:06:43:dd:5c:4d:
64:2a:2b:66:dc:55:ee:35:0d:d5:78:d5:36:d6:14:
27:f2:18:c7:cd:e0:0f:a4:5a:d1:1c:51:3d:f3:cb:
ed:3b:8a:b1:dc:51:ff:85:7d:83:76:c8:9a:92:f5:
7b:4f:43:2e:ae:01:82:c8:9d:24:7d:33:4a:8c:c8:
0a:d1:ac:cb:1e:d3:a2:0c:1c:4f:00:6c:df:73:5a:
e0:07:5f:69:fb:98:fd:02:cf:2a:f8:43:7a:55:8d:
09:0a:f9:85:99:1e:c8:93:ae:9c:73:4a:8b:ec:9c:
79:0a:cc:4e:a0:5f:fe:6c:54:c2:b5:1b:52:48:05:
a8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:34:DA:EF:40:95:5B:EC:4A:3B:05:D9:CB:EF:79:F6:4A:8B:99:51
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:d3:18:0e:8e:f2:db:4b:b8:ae:8a:d0:da:23:66:eb:5b:8e:
11:0c:7e:cd:0c:26:20:64:22:dd:20:8b:a6:5c:d2:2d:09:96:
b5:92:6c:52:98:12:2e:50:6e:8f:20:5d:89:0f:3c:a8:2e:99:
41:1e:d3:42:44:80:af:50:10:33:e0:fd:47:1e:a5:c2:2c:b9:
93:19:56:52:ec:06:75:f3:23:12:8a:72:f5:5d:f3:50:3f:b6:
69:af:2d:cb:65:25:84:03:1a:48:6b:1e:35:77:bb:a5:36:65:
3f:0b:ec:87:8b:74:1e:95:50:dd:d0:e4:d1:f7:a7:aa:32:4b:
22:3b:7b:d3:db:16:2e:e9:d4:f4:0c:68:c3:ff:45:f3:f9:2b:
1e:ce:ed:90:42:16:3f:62:20:93:00:be:e0:b4:d4:fd:bf:db:
f8:28:d3:7f:49:67:1e:f3:52:a1:7c:82:9a:cb:3a:47:ee:55:
d7:b7:75:a2:7a:e3:9e:d6:f3:37:7b:29:64:e1:d8:89:16:07:
d6:d7:a3:93:81:85:62:6a:37:f6:fa:73:cb:57:ec:f7:83:97:
da:db:6d:10:6e:5a:43:ea:db:ad:69:c6:30:d7:0f:15:62:45:
af:6b:dd:5f:a0:15:02:8f:f5:5e:42:db:87:d1:32:0c:8b:a0:
52:ea:6d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:12 2026 by rpki-client