Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
File: CPyf1Et5SoQuKacYi0qMbkcuHVA.mft (raw, json)
Hash identifier: p/i18NQFzts+YPzzChrMoDU2XcpZma3bWO9JtqhvorM=
Subject key identifier: 88:20:28:C6:18:75:29:08:A3:96:86:01:D8:9A:5E:4A:8D:51:CE:AC
Authority key identifier: 08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50
Certificate issuer: /CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50
Certificate serial: 019D37F7134083E70E4049D1FDE77B59D41E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
Manifest number: B1
Signing time: Sun 29 Mar 2026 05:00:32 +0000
Manifest this update: Sun 29 Mar 2026 05:00:32 +0000
Manifest next update: Mon 30 Mar 2026 05:00:32 +0000
Files and hashes: 1: 2Cp0m0oboXHVnEkkibc7MZ0iVno.roa (hash: 0rfuIAzK1SMPi5hQRwB+Vwr/Z1zW0RzBLtrMrDa24eI=)
2: CPyf1Et5SoQuKacYi0qMbkcuHVA.crl (hash: zprkvwtFl3nBedZ+TrBi6rxCk0O5I6y5rxluTemGiFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:13:40:83:e7:0e:40:49:d1:fd:e7:7b:59:d4:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50
Validity
Not Before: Mar 29 05:00:32 2026 GMT
Not After : Mar 30 05:00:32 2026 GMT
Subject: CN=882028c618752908a3968601d89a5e4a8d51ceac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:82:b9:8e:62:8f:ba:1a:15:e8:a4:ef:f5:e4:
23:a0:82:d4:eb:74:69:92:2d:99:08:f1:ca:c7:be:
17:50:31:15:3e:84:ae:19:04:9b:cd:81:ed:64:64:
aa:96:66:5a:cb:9c:f9:7a:01:2f:0d:8f:2d:fc:ff:
5a:b7:6a:57:df:78:d7:ae:b1:8c:23:ca:85:24:07:
b5:78:57:ac:ea:fe:a1:d9:5a:fd:ff:73:99:56:88:
c2:01:32:28:9f:cc:8d:57:c6:b6:a1:cd:5c:4d:ba:
d9:f7:7c:b1:95:82:f9:68:d8:1b:b3:84:64:3a:63:
00:c9:ab:fb:87:b4:b7:63:5e:f6:a3:d3:bc:a5:6b:
06:f8:06:a1:e7:6c:26:ee:3b:fe:a9:b1:ed:85:46:
51:9b:be:cf:2e:2b:8c:47:0a:ac:d3:60:9a:d7:57:
92:08:a5:b3:da:ab:64:17:42:26:02:ae:1a:53:b0:
b2:f2:54:73:f5:eb:69:49:5d:f8:3f:83:31:a4:01:
b4:92:24:ee:e9:e7:b9:d9:df:00:38:22:fd:b2:92:
7f:55:71:1b:c4:af:f4:1f:67:fc:13:f6:57:54:d9:
1a:34:ea:96:4a:93:cf:18:06:56:29:33:a4:95:1a:
6d:c2:95:4e:ea:b6:b8:b5:73:70:33:a4:89:15:9a:
10:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:20:28:C6:18:75:29:08:A3:96:86:01:D8:9A:5E:4A:8D:51:CE:AC
X509v3 Authority Key Identifier:
keyid:08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:8b:e1:b8:d0:13:3f:c4:9a:a1:56:58:ff:fa:a4:db:4f:1e:
8b:33:a0:dc:5d:31:2e:6b:e4:dc:21:6b:84:4a:d5:97:cb:3d:
9f:03:bb:e7:42:e0:08:d5:1b:db:a8:1a:4b:f5:d7:ab:38:6a:
f3:4a:c0:e0:a1:14:4f:b3:c1:80:e2:14:fc:62:3c:71:ea:7b:
e4:ff:bf:9d:01:95:bd:7c:57:eb:00:66:f2:11:87:9a:d8:bd:
a6:29:8e:e3:d0:8a:1b:d8:06:69:57:c3:1c:b9:75:80:a0:c5:
6c:e1:37:3b:93:69:8b:ed:78:c6:25:d6:dd:ee:35:20:56:7b:
14:66:b3:f1:e1:f4:29:63:02:c4:44:79:00:4e:dd:cd:e0:9b:
58:22:a8:0f:9f:c6:ec:95:68:b0:6d:9e:08:74:8c:84:fa:ab:
4a:ea:97:3b:96:e5:71:35:5c:27:64:7a:55:0c:94:ea:10:6f:
3b:77:fd:77:da:a0:7b:0f:1c:ea:5e:bc:20:ff:a4:3f:d0:9b:
66:0f:ad:7c:c4:f9:b7:bc:9a:a9:d4:d5:ae:80:6a:8f:76:4b:
3b:33:7a:0c:0d:26:c1:8d:34:00:ce:b4:25:14:6d:d0:02:53:
30:3f:72:d5:5a:a0:20:d8:f9:74:ca:7e:ed:4b:8f:ae:d2:ef:
92:e4:eb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:09 2026 by rpki-client