Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: 9yVH8/ogFHGauMyy4v0DG4zfRJLswaEIqT0y8RYFsIo=
Subject key identifier: A6:8E:71:0F:FB:85:3F:8F:AF:26:55:A1:60:14:A1:1D:69:F3:03:37
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019D39AF5781AB6BE8D44A7DBA7F98B9FF02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0EF8
Signing time: Sun 29 Mar 2026 13:01:25 +0000
Manifest this update: Sun 29 Mar 2026 13:01:25 +0000
Manifest next update: Mon 30 Mar 2026 13:01:25 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: zZfed/YY48IxXadX/eMMlTvAQ8wlgyWcAZG5EsIt5/Y=)
2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:57:81:ab:6b:e8:d4:4a:7d:ba:7f:98:b9:ff:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Mar 29 13:01:25 2026 GMT
Not After : Mar 30 13:01:25 2026 GMT
Subject: CN=a68e710ffb853f8faf2655a16014a11d69f30337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:7e:6f:8f:e3:b4:84:96:a8:17:07:00:5e:
34:73:46:27:8f:91:43:9d:8d:e9:04:ea:03:04:c7:
bc:13:e9:78:cd:4c:c4:20:56:19:fd:a7:61:0c:64:
1e:29:bf:68:1f:0f:6c:07:0b:ec:3e:1d:a5:56:8c:
cf:31:fb:ea:f0:9f:22:4c:2d:1b:3d:74:65:22:41:
01:0e:05:47:47:a9:93:86:59:66:d0:c4:71:7f:49:
19:3c:2b:71:a1:71:18:8f:9e:97:dc:89:0b:b6:a5:
ab:05:7d:d5:a6:d8:c3:f9:12:09:fd:4d:4d:fe:c9:
b5:0a:3a:c9:fa:30:34:6f:94:4f:12:0a:ec:e9:8d:
3e:be:5a:34:aa:ae:bf:ab:1b:3c:e5:21:03:44:8f:
52:94:24:d4:18:af:77:34:07:8d:56:df:23:a2:67:
3a:35:7b:69:17:0c:47:fc:22:aa:0d:ca:cd:c5:b8:
67:b0:f4:c1:db:56:f6:08:9c:4b:6e:c4:a6:62:bd:
60:72:88:34:68:ca:d7:07:de:64:57:a5:92:39:66:
da:e1:7b:a3:7e:40:4b:79:dc:13:8e:a4:c6:c6:ed:
3c:af:f0:01:c4:38:36:1b:b0:d2:e4:6f:1c:1a:cd:
69:e3:bf:87:a5:fc:3b:e1:0a:22:73:e6:bc:15:80:
7b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8E:71:0F:FB:85:3F:8F:AF:26:55:A1:60:14:A1:1D:69:F3:03:37
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9d:d0:f6:60:65:81:b5:6b:98:a3:40:18:55:cf:f0:52:69:
20:2c:a2:a4:f0:50:8e:a0:92:1b:7d:11:33:13:0f:b0:29:9e:
56:bd:4f:8c:db:b8:c2:b1:a9:89:1d:db:33:b7:ec:91:cd:43:
bd:65:9a:bf:0a:91:cf:0d:7c:34:b4:d2:4a:96:9e:66:91:40:
e4:24:4f:82:8c:e1:16:be:3c:ce:26:83:26:e4:99:b5:78:35:
77:d2:51:d0:1d:8e:5f:f9:2d:7c:a4:55:db:1e:81:8c:23:4f:
27:5b:8b:f6:a0:90:a9:90:93:b1:a5:b3:25:d2:43:ee:64:93:
4c:37:a7:4b:5d:5a:6b:01:c6:bd:b0:7a:b9:4c:ab:5e:36:1f:
16:52:09:d4:66:ce:11:aa:06:d3:36:04:5d:68:f4:d8:bd:da:
e7:f7:47:db:7e:18:c3:69:9b:49:3d:b2:52:f0:d6:88:79:31:
b5:96:c2:4e:ae:22:56:b3:ab:33:8a:c4:a8:22:ec:53:5f:4f:
22:1e:14:f1:6d:39:03:12:b2:6a:79:89:93:fa:af:ed:fa:13:
fe:77:65:65:6f:7b:9c:75:de:74:4c:83:25:f9:62:96:a3:83:
1f:ca:ae:4c:2c:b8:ff:cf:94:4c:30:b5:dd:47:97:47:fd:5b:
c8:51:ae:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05r1eBq2vo1Ep9un+Yuf8CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl
ODBlNzkwHhcNMjYwMzI5MTMwMTI1WhcNMjYwMzMwMTMwMTI1WjAzMTEwLwYDVQQD
EyhhNjhlNzEwZmZiODUzZjhmYWYyNjU1YTE2MDE0YTExZDY5ZjMwMzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutN+b4/jtISWqBcHAF40c0Ynj5FD
nY3pBOoDBMe8E+l4zUzEIFYZ/adhDGQeKb9oHw9sBwvsPh2lVozPMfvq8J8iTC0b
PXRlIkEBDgVHR6mThllm0MRxf0kZPCtxoXEYj56X3IkLtqWrBX3VptjD+RIJ/U1N
/sm1CjrJ+jA0b5RPEgrs6Y0+vlo0qq6/qxs85SEDRI9SlCTUGK93NAeNVt8jomc6
NXtpFwxH/CKqDcrNxbhnsPTB21b2CJxLbsSmYr1gcog0aMrXB95kV6WSOWba4Xuj
fkBLedwTjqTGxu08r/ABxDg2G7DS5G8cGs1p47+Hpfw74Qoic+a8FYB7WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKaOcQ/7hT+PryZVoWAUoR1p8wM3MB8GA1UdIwQY
MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt
ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3
LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI53Q9mBl
gbVrmKNAGFXP8FJpICyipPBQjqCSG30RMxMPsCmeVr1PjNu4wrGpiR3bM7fskc1D
vWWavwqRzw18NLTSSpaeZpFA5CRPgozhFr48ziaDJuSZtXg1d9JR0B2OX/ktfKRV
2x6BjCNPJ1uL9qCQqZCTsaWzJdJD7mSTTDenS11aawHGvbB6uUyrXjYfFlIJ1GbO
EaoG0zYEXWj02L3a5/dH234Yw2mbST2yUvDWiHkxtZbCTq4iVrOrM4rEqCLsU19P
Ih4U8W05AxKyanmJk/qv7foT/ndlZW97nHXedEyDJflilqODH8quTCy4/8+UTDC1
3UeXR/1byFGu3g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:54:01 2026 by rpki-client