Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: LSxfUUe1GGlR7Jd3AEXnQ09vQP5YLvjyPy2d3RWs9R8=
Subject key identifier: DF:C8:FE:DC:92:7C:40:2A:A0:3F:57:05:CE:E3:AF:6E:6E:05:63:B2
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 019EB98F2B0AF2C3528DB423C476F9B1E44B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 064C
Signing time: Fri 12 Jun 2026 02:00:27 +0000
Manifest this update: Fri 12 Jun 2026 02:00:27 +0000
Manifest next update: Sat 13 Jun 2026 02:00:27 +0000
Files and hashes: 1: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: 32YiXWJzb5mLvlD6qWQDn4U/xUNwDdqguP+p0rt2BLg=)
2: tbvYOvb5SVTVJR3EbU70Kzk3qVo.roa (hash: 4N/4Cs97VSolZG2uH4kNH6VCwjqzoA3qCO8vzH4tvd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:2b:0a:f2:c3:52:8d:b4:23:c4:76:f9:b1:e4:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Jun 12 02:00:27 2026 GMT
Not After : Jun 13 02:00:27 2026 GMT
Subject: CN=dfc8fedc927c402aa03f5705cee3af6e6e0563b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:87:37:47:ba:16:1a:ae:b1:be:f8:7e:81:37:
6e:9a:cc:9e:a0:c2:a8:36:cf:de:d9:8a:d7:ee:eb:
a1:94:c2:f4:75:61:a5:2b:07:3d:e1:91:43:3f:37:
28:47:db:6b:33:81:58:c5:46:73:ee:d9:3b:26:d4:
fd:5c:4b:d7:8a:7a:cf:46:5a:03:ec:e5:bd:30:6a:
7e:b4:e4:1e:ce:06:e8:45:53:73:40:d1:78:0c:f8:
49:a0:b0:1e:54:3f:dd:89:58:43:a9:5e:b9:05:24:
3b:13:52:05:18:05:ba:08:bb:80:32:95:cf:8c:28:
ac:82:c0:87:6c:d9:24:13:3a:5a:25:4d:e1:10:48:
70:b1:69:de:b0:df:20:63:0e:2c:04:d1:6f:ad:af:
2c:90:5c:ca:ee:1a:99:c6:85:a2:85:02:6e:33:75:
25:bc:cc:02:dd:91:01:97:99:77:21:c1:6e:0d:56:
0c:5b:4b:e7:43:26:1f:9c:ca:6c:c5:93:7f:6e:25:
dc:0d:33:9b:04:1c:be:e7:fb:d1:7f:b0:46:3f:96:
37:66:be:bb:ff:f1:7e:d8:b8:d3:40:5d:e6:2a:e3:
cc:2a:b5:ca:cf:a7:cb:ac:fa:e1:23:08:ef:18:44:
3a:96:9e:cc:ae:ff:22:1f:3c:24:b0:54:9f:3c:fb:
c7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C8:FE:DC:92:7C:40:2A:A0:3F:57:05:CE:E3:AF:6E:6E:05:63:B2
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7b:8f:d2:fb:c6:74:71:8c:1d:93:16:9a:69:9f:6a:55:c5:
61:49:47:f5:dc:2e:84:8b:0d:c1:24:d0:d0:1f:9b:81:ac:f2:
61:a8:d7:fc:47:fd:96:0b:04:f0:2f:dc:7a:b1:a4:d5:b5:9e:
81:58:24:f8:74:30:bd:6f:6e:55:02:22:e5:01:d8:e8:01:a7:
a5:0e:9a:10:33:50:1c:35:ed:03:d3:39:31:e5:a9:91:36:f3:
15:2f:f3:01:85:b9:37:f4:5f:b1:67:b4:15:97:0b:7d:68:e8:
94:0f:db:ff:ca:bf:4e:d3:29:35:0d:4e:41:b2:7f:0f:50:57:
dd:cc:ea:38:61:3a:ac:0a:c3:b9:e0:08:b9:5c:70:e9:1a:a5:
ab:6e:99:0b:d7:99:11:02:8d:ea:ba:f6:b3:04:a0:00:07:e0:
b6:83:10:5c:5e:b5:f2:8a:fc:b4:8c:ac:99:90:a1:2b:59:e0:
1c:07:11:e5:85:55:ff:b8:ab:94:de:b1:bf:62:d7:4e:ff:e4:
d8:fb:c5:dc:df:bc:91:2d:f9:96:9d:f0:a8:76:2d:a5:7d:89:
55:76:fb:5b:93:1b:b4:35:46:f1:c2:8f:39:95:e5:8d:8f:c8:
47:63:ca:a8:cd:e8:bb:68:de:c1:6d:52:5b:87:67:ac:0d:59:
44:a9:e3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:22:54 2026 by rpki-client