Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
File: cnegKqVG3RoKaoLQXZCwkX4VRe0.mft (raw, json)
Hash identifier: zqvJFYyVHdIoW954nenW92YdRaaYp9El0w2v2Ah1sQw=
Subject key identifier: A5:E8:C6:1A:B1:9B:22:FD:70:D7:67:F4:82:D2:24:4A:06:A5:B4:C6
Authority key identifier: 72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
Certificate issuer: /CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Certificate serial: 019D38D372E65B1C35312BA47D505864C630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
Manifest number: 149B
Signing time: Sun 29 Mar 2026 09:01:14 +0000
Manifest this update: Sun 29 Mar 2026 09:01:14 +0000
Manifest next update: Mon 30 Mar 2026 09:01:14 +0000
Files and hashes: 1: OaOnlwyLcpWU-7buhAK-DPuoYYM.roa (hash: 5Ar9cfFUzYqjwJSn+ec2xqE01xE8RezzqQw0pyKzfD4=)
2: cnegKqVG3RoKaoLQXZCwkX4VRe0.crl (hash: gWd/JHjjJ6veXXDUt+yTWUumOnDw+TLLBR45+8Iy0cI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:72:e6:5b:1c:35:31:2b:a4:7d:50:58:64:c6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Validity
Not Before: Mar 29 09:01:14 2026 GMT
Not After : Mar 30 09:01:14 2026 GMT
Subject: CN=a5e8c61ab19b22fd70d767f482d2244a06a5b4c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:51:b8:6b:3f:24:3c:ad:5c:29:ec:20:6d:80:
8d:d5:96:5f:6b:95:28:f5:1a:06:9d:2a:17:85:92:
09:78:fe:5d:57:9e:ab:ec:2c:87:5c:b8:b8:21:89:
30:88:a5:cb:4d:b5:82:27:92:17:42:03:e4:8f:4e:
62:e9:5d:4d:07:56:95:e7:6e:23:b9:95:ba:67:51:
2f:a6:96:02:d8:6d:7a:99:5c:95:f8:08:b9:52:57:
ea:2b:53:67:ee:2c:27:7c:9c:39:7b:13:65:8d:dd:
8a:f6:e7:09:6d:91:9b:07:c1:80:e0:52:da:d7:39:
03:26:07:d4:f5:18:e9:f0:2d:52:6e:dc:b1:5e:91:
32:b8:03:78:43:50:bb:5c:fd:7b:31:50:4e:1a:24:
fb:c7:01:b3:7f:7b:3c:67:b8:3f:fa:23:1f:cf:fc:
69:06:ee:ea:fd:b2:66:ce:6d:35:ef:c1:49:8e:ec:
51:2e:33:9a:1f:fb:00:35:2f:2b:66:8b:86:f7:31:
45:5d:11:ed:8b:e7:f3:38:0c:be:1e:9e:83:57:9a:
ba:6d:29:06:5c:6c:00:ff:e8:8d:df:3d:88:9b:1f:
03:4a:1b:97:03:ab:6f:4a:ee:dd:5b:81:85:86:1a:
04:b6:2e:c2:69:0f:61:79:aa:d7:da:49:ab:68:1f:
27:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E8:C6:1A:B1:9B:22:FD:70:D7:67:F4:82:D2:24:4A:06:A5:B4:C6
X509v3 Authority Key Identifier:
keyid:72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:44:fd:3f:00:59:42:b1:89:f1:fe:d1:63:31:5c:4c:b0:57:
88:09:68:9b:2a:26:d3:45:6b:59:67:39:4e:34:1c:4e:2b:65:
51:19:7d:c2:39:fd:dc:7b:84:c7:4b:7d:62:b6:e3:22:72:e4:
4e:06:64:cc:af:c0:35:e9:8a:81:bd:96:65:59:b4:ed:ef:68:
be:28:e1:dc:00:43:c4:53:20:35:3a:8d:26:82:99:cf:05:e9:
95:50:84:aa:73:83:ea:cb:d6:f0:50:8a:c1:5d:9e:ea:77:4a:
78:57:1a:09:0b:4d:77:5a:55:1b:3c:fa:fc:fb:4f:10:cd:a5:
aa:87:b4:39:3d:d8:42:1b:a7:be:07:0b:3a:d1:02:ab:56:5e:
22:ef:a9:79:30:4b:01:ec:4d:08:6f:37:4a:d1:88:a7:33:15:
79:34:ca:19:26:20:be:4a:73:dc:a8:8f:21:bf:5d:41:c4:06:
d0:94:a1:f6:e1:59:a0:7f:ea:80:3a:97:99:63:b2:78:03:13:
37:8f:57:2f:2d:5c:ef:45:4f:33:34:0d:c6:fa:2b:24:92:c3:
eb:66:d8:cc:b9:e8:1c:26:6d:58:f1:84:8e:c0:9d:a5:cf:ab:
52:d5:c8:f7:cd:61:d8:1d:a2:ea:bc:64:5e:71:11:6f:62:02:
aa:a1:44:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0403LmWxw1MSukfVBYZMYwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNzdhMDJhYTU0NmRkMWEwYTZhODJkMDVkOTBiMDkxN2Ux
NTQ1ZWQwHhcNMjYwMzI5MDkwMTE0WhcNMjYwMzMwMDkwMTE0WjAzMTEwLwYDVQQD
EyhhNWU4YzYxYWIxOWIyMmZkNzBkNzY3ZjQ4MmQyMjQ0YTA2YTViNGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllG4az8kPK1cKewgbYCN1ZZfa5Uo
9RoGnSoXhZIJeP5dV56r7CyHXLi4IYkwiKXLTbWCJ5IXQgPkj05i6V1NB1aV524j
uZW6Z1EvppYC2G16mVyV+Ai5UlfqK1Nn7iwnfJw5exNljd2K9ucJbZGbB8GA4FLa
1zkDJgfU9Rjp8C1SbtyxXpEyuAN4Q1C7XP17MVBOGiT7xwGzf3s8Z7g/+iMfz/xp
Bu7q/bJmzm0178FJjuxRLjOaH/sANS8rZouG9zFFXRHti+fzOAy+Hp6DV5q6bSkG
XGwA/+iN3z2Imx8DShuXA6tvSu7dW4GFhhoEti7CaQ9hearX2kmraB8nJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKXoxhqxmyL9cNdn9ILSJEoGpbTGMB8GA1UdIwQY
MBaAFHJ3oCqlRt0aCmqC0F2QsJF+FUXtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2Yt
ZjQ4OTMwZTQyNjQxLzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2YtZjQ4OTMwZTQyNjQx
LzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAokT9PwBZ
QrGJ8f7RYzFcTLBXiAlomyom00VrWWc5TjQcTitlURl9wjn93HuEx0t9YrbjInLk
TgZkzK/ANemKgb2WZVm07e9ovijh3ABDxFMgNTqNJoKZzwXplVCEqnOD6svW8FCK
wV2e6ndKeFcaCQtNd1pVGzz6/PtPEM2lqoe0OT3YQhunvgcLOtECq1ZeIu+peTBL
AexNCG83StGIpzMVeTTKGSYgvkpz3KiPIb9dQcQG0JSh9uFZoH/qgDqXmWOyeAMT
N49XLy1c70VPMzQNxvorJJLD62bYzLnoHCZtWPGEjsCdpc+rUtXI981h2B2i6rxk
XnERb2ICqqFEBA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:15 2026 by rpki-client