Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json)
Hash identifier: CqlgwxdfD/COQ1X3zzBwtouQ+5B8dem4sW1Pt/Bm65I=
Subject key identifier: 12:61:EC:8F:12:E1:4A:20:BE:7F:C4:89:49:BF:14:47:2B:EB:23:38
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 019D3789CD25BB8955FE53838D00B0543E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 03:01:10 +0000
Manifest this update: Sun 29 Mar 2026 03:01:10 +0000
Manifest next update: Mon 30 Mar 2026 03:01:10 +0000
Files and hashes: 1: NBCpqIpZAF1KaD7VX5EAO0lgw58.roa (hash: FNwe4WLfDmM1bNzJd35FzEdIcc1xxE0RPwhccQQkLXQ=)
2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: EFlPPoH3W9MN4uiHBvWRFC80a882UE8UvfTG/o1vsNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:cd:25:bb:89:55:fe:53:83:8d:00:b0:54:3e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Mar 29 03:01:10 2026 GMT
Not After : Mar 30 03:01:10 2026 GMT
Subject: CN=1261ec8f12e14a20be7fc48949bf14472beb2338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:67:8b:fd:86:c3:b6:71:c2:2a:fd:c1:4c:52:
96:e7:08:2f:20:ab:24:c9:82:0b:e3:89:ae:27:db:
dc:44:5e:e2:fc:15:7c:ca:73:0e:65:56:8a:76:fc:
7b:a6:b2:4d:a0:43:cd:10:38:0e:28:14:b3:10:71:
45:b6:94:45:a4:39:b9:55:0a:11:f8:bc:f7:c6:77:
65:9d:bf:40:40:ce:df:9b:78:58:0f:12:ba:4f:a5:
02:bb:49:50:8c:46:e9:37:12:c2:69:94:44:c3:cd:
22:af:bd:f2:f3:a8:64:8e:9e:45:5b:25:7c:d5:6e:
fe:0d:77:f0:b7:bf:af:58:38:27:0c:a8:95:9e:74:
d1:b2:9d:ac:66:2a:0c:ea:00:8e:78:37:aa:dd:b8:
0d:1e:57:73:76:a5:af:67:5e:c8:e5:0b:74:f5:05:
27:ab:de:a9:6e:c2:a6:37:ff:e2:5d:4a:67:d1:13:
95:f2:ae:3b:ea:a9:2c:97:ae:21:f0:bf:b1:98:08:
c5:8c:28:7a:45:8f:c2:d4:ba:79:d5:ae:de:97:29:
ae:3b:2e:c3:6b:ca:86:eb:f0:3e:0b:00:4b:22:e5:
7b:7a:15:24:fd:00:09:36:7a:25:8f:ec:67:0f:ec:
ce:22:2e:57:98:6a:8d:98:74:9c:75:97:a2:3b:cc:
ff:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:61:EC:8F:12:E1:4A:20:BE:7F:C4:89:49:BF:14:47:2B:EB:23:38
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:ec:98:11:db:02:f7:3c:d3:4a:b9:70:0b:19:a9:66:c6:13:
4b:ff:8c:66:19:06:96:30:f5:2b:d1:ee:07:a5:ab:d2:71:fc:
bb:53:7a:4f:9e:6b:b1:77:1a:1a:a0:23:ee:d6:84:fd:48:c3:
5b:2a:22:9a:4e:8d:42:5d:c1:75:e4:9c:89:ea:97:5b:88:79:
13:93:07:30:ba:5d:9c:57:b3:ba:ef:9c:d9:59:38:c2:3f:08:
e0:f3:0f:38:5f:04:c7:12:2d:42:fd:a2:6e:c9:28:01:8b:6f:
c8:13:e6:85:76:20:62:0a:e0:af:9e:5b:ef:a6:51:d6:97:f7:
fc:69:68:f1:c7:49:6e:af:a7:a8:4d:8c:44:dd:08:b4:b9:63:
cf:4a:43:d0:78:b1:f9:0d:91:2b:56:b2:65:91:1c:00:c6:20:
3c:23:11:b4:8d:df:8e:b8:3a:e1:4d:6d:db:e1:81:1d:83:21:
06:68:c1:08:aa:8b:c4:fb:f5:88:a8:16:de:73:e7:88:52:03:
12:78:53:0f:d5:24:0c:5a:81:84:de:02:57:67:22:65:b0:84:
fb:45:e5:67:dd:1e:cc:04:e6:f0:e7:9b:67:c0:b5:84:ce:99:
e9:b6:1f:37:a2:7e:05:aa:cd:dd:3d:ad:fd:5e:fe:46:99:56:
2d:1d:88:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:13 2026 by rpki-client