Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File: cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier: 47kwJAegJ/VnxQz9pBLuhjmHhATA3sF8qMc1a62ERDA=
Subject key identifier: A3:CE:F2:43:50:EF:46:EC:DE:09:D4:16:7B:1F:AD:EF:32:DA:41:36
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer: /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial: 019D37C03A717C51FCCC8C75CA81A7CD3DDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number: 0638
Signing time: Sun 29 Mar 2026 04:00:37 +0000
Manifest this update: Sun 29 Mar 2026 04:00:37 +0000
Manifest next update: Mon 30 Mar 2026 04:00:37 +0000
Files and hashes: 1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: QFN6rpG+kp12KnlEYDowb0g/+CP8PeasKqeMKGlklG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:3a:71:7c:51:fc:cc:8c:75:ca:81:a7:cd:3d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Validity
Not Before: Mar 29 04:00:37 2026 GMT
Not After : Mar 30 04:00:37 2026 GMT
Subject: CN=a3cef24350ef46ecde09d4167b1fadef32da4136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:24:ac:83:46:51:79:77:62:6b:1e:0d:bf:
13:45:7b:dc:45:d7:26:53:0f:f8:f7:8a:30:75:a8:
e7:97:c1:e5:f4:6f:15:50:6a:65:16:75:22:78:ef:
09:7d:e4:52:52:f7:99:8c:97:3d:2b:8f:db:01:6e:
8b:94:32:ae:3b:df:fa:cd:50:ea:09:88:0c:6d:8f:
f1:d6:99:a5:a6:6d:1d:22:78:4e:58:a9:f6:80:80:
0d:b5:25:c1:cf:26:a2:56:da:d7:97:1a:77:54:bc:
b3:cd:a6:fb:5b:0d:81:8d:21:70:b0:12:39:6e:e7:
19:07:39:36:a4:f2:38:63:50:8f:44:da:45:17:bf:
20:e4:c3:b3:ea:e4:2d:8b:a4:9e:6c:30:ad:cf:21:
4e:63:b8:c9:22:3c:17:d8:da:a9:96:f3:39:07:46:
c9:b1:52:7b:3c:fa:5f:fe:b0:bd:1e:f5:91:a5:4b:
1f:cb:ae:b0:0c:0f:28:3c:1d:1f:31:34:37:c6:ea:
2d:80:78:1c:a4:ae:c3:8b:dd:04:9d:81:dc:c7:2f:
c2:9f:37:15:dd:95:94:57:55:69:35:8d:35:4f:ca:
f8:24:4f:57:4b:bc:18:66:ff:02:eb:bf:a6:e1:4b:
87:62:ac:c9:f7:f7:0a:55:d7:b0:cb:a2:ce:73:5c:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:CE:F2:43:50:EF:46:EC:DE:09:D4:16:7B:1F:AD:EF:32:DA:41:36
X509v3 Authority Key Identifier:
keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fb:9e:8b:1b:e5:c6:e3:cd:80:7a:bd:9a:f3:87:1a:d0:d5:
ff:33:82:9b:d3:13:52:7e:19:84:19:76:5e:1a:fa:f9:e0:1f:
12:be:22:93:c4:48:d4:81:3d:48:fa:0e:6e:9a:53:29:78:3c:
33:71:76:97:57:36:49:4e:4f:c6:6f:5a:c0:85:fd:44:c0:cd:
f9:fc:64:31:bc:79:99:62:a2:b0:49:9d:0f:36:a7:1a:58:2a:
11:44:f4:7b:3c:da:18:43:8e:2e:7a:5a:08:46:90:95:bc:04:
f8:f4:c2:16:7d:ad:63:c3:8f:9d:4b:0c:fb:d2:14:64:2d:53:
df:18:f7:5f:ad:b9:c7:99:39:a2:c4:57:8f:85:31:e8:ce:fc:
89:7c:e5:9c:23:7c:e0:49:2b:74:ee:e8:57:cb:43:27:b3:4a:
6c:9e:93:08:58:a0:1e:d4:7c:05:10:15:2c:55:40:07:04:0d:
73:7e:e5:34:c6:4f:75:30:f3:c9:a2:5c:22:8a:67:b9:83:65:
1d:2c:5c:d0:c3:e9:bb:5c:6e:7d:29:c0:a0:4b:01:66:bf:fb:
b2:cf:3a:58:43:b1:30:c9:a2:c2:8b:dc:0f:77:5f:1a:6a:14:
a5:19:0d:1e:60:01:93:bf:94:8d:05:99:44:90:2a:4b:f0:09:
fb:fc:a2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:20 2026 by rpki-client