Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: O0+BbyDA2QQpiK4YSOgLK3RXpS23xLTWJ7tERom4Zp0=
Subject key identifier: DE:8C:2E:92:64:C9:48:76:BE:28:DC:D0:76:6F:23:1B:89:DC:7C:BF
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 019CE447E4A92E17865D0D398776CDA1D19D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 0559
Signing time: Thu 12 Mar 2026 23:00:42 +0000
Manifest this update: Thu 12 Mar 2026 23:00:42 +0000
Manifest next update: Fri 13 Mar 2026 23:00:42 +0000
Files and hashes: 1: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: H/lstFgH3bV/c1nwnq2VHCSJtWTYH5fOBwrkIOkAEGw=)
2: tbvYOvb5SVTVJR3EbU70Kzk3qVo.roa (hash: 4N/4Cs97VSolZG2uH4kNH6VCwjqzoA3qCO8vzH4tvd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:e4:a9:2e:17:86:5d:0d:39:87:76:cd:a1:d1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Mar 12 23:00:42 2026 GMT
Not After : Mar 13 23:00:42 2026 GMT
Subject: CN=de8c2e9264c94876be28dcd0766f231b89dc7cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:05:a6:9c:25:6d:47:c7:64:74:6a:2b:41:d5:
8b:8c:7b:16:18:45:8a:f6:ff:fe:f8:4c:ae:07:73:
da:1b:48:11:71:4b:ea:d5:f8:c9:f1:fc:5f:9f:86:
b7:07:07:52:ec:1b:dc:6a:41:35:5c:10:77:a7:79:
6a:80:02:b5:d2:97:12:34:a6:8c:18:dc:f7:38:5b:
d4:57:66:77:8b:17:36:f1:2e:03:1b:a4:ae:b4:09:
af:98:00:a1:bb:52:e4:da:6b:66:94:28:bb:d2:bc:
4c:66:17:b7:ae:b0:b4:1e:8a:0b:da:59:ea:96:af:
8e:77:79:e1:c4:58:3c:f1:70:7d:85:7a:09:16:09:
d7:b9:7c:8d:8f:67:96:e2:f3:5a:62:41:c5:7c:2c:
d2:f8:9b:53:f8:bf:db:4f:ee:e6:8e:aa:dc:10:68:
17:ed:7a:b1:3d:f7:42:87:a9:71:23:b9:19:70:32:
4c:13:2e:36:97:78:e3:c0:fd:62:95:2e:89:53:3f:
80:52:fb:fb:68:2b:0a:83:09:6b:a9:e0:7c:5f:dd:
0e:c7:57:b3:f8:74:23:f8:78:8f:e2:4a:b0:30:26:
f7:68:b0:dc:40:57:b2:b8:be:ea:33:16:88:49:aa:
e6:27:28:26:03:f2:51:a6:21:d8:03:4a:67:86:8d:
85:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8C:2E:92:64:C9:48:76:BE:28:DC:D0:76:6F:23:1B:89:DC:7C:BF
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:4d:eb:9f:0e:fd:1e:d7:a2:f9:e0:44:7f:ce:82:ab:6c:b3:
60:a3:87:21:1a:fb:f6:39:ad:a2:be:f1:16:f2:84:e3:29:2e:
a5:1d:ec:60:de:17:92:da:a5:eb:77:b3:3d:73:27:58:5e:1e:
52:ee:cb:10:13:46:c1:79:4c:81:29:ab:e2:c6:60:7b:27:7a:
af:76:51:dd:76:15:ee:5b:b6:c3:77:00:70:96:4d:dd:58:14:
57:3f:73:2f:f3:80:d5:35:cb:51:20:9c:fb:b1:10:6b:c8:76:
1e:a7:fc:fc:fb:ee:ba:6b:a7:fe:da:60:35:61:5c:d9:58:25:
b3:cc:e6:7a:a9:86:7e:ed:da:22:d3:70:a1:e4:ee:fc:85:47:
57:5f:4f:f9:a2:15:0c:73:67:ab:57:04:04:75:ce:7e:18:10:
00:bb:56:94:b9:b7:c9:93:56:5e:b2:5a:3f:03:fd:94:90:98:
fa:24:cd:f4:8d:45:5a:a5:15:4a:55:42:b7:5b:26:91:a1:7c:
a2:45:c9:aa:53:92:28:37:9a:9e:b4:ae:fb:50:d1:03:ff:5c:
28:a1:5b:38:ee:65:bb:11:35:00:a6:be:7b:10:cc:7e:17:20:
e8:4c:a7:f2:fd:19:7d:08:d6:ec:49:4b:06:0c:fd:c3:0a:62:
66:7c:6c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:50:00 2026 by rpki-client