Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: Lz2aTXJNyfPody6ny1Oz4gw1i+aXQVGFkdomQ4VR8J4=
Subject key identifier: 49:0E:62:E5:C4:0C:36:BF:1D:77:7C:96:5E:B0:B1:47:C8:AA:8D:BD
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 019F17C25ED1A4E0A05D6EB7D38D6D44840C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0CB5
Signing time: Tue 30 Jun 2026 09:00:41 +0000
Manifest this update: Tue 30 Jun 2026 09:00:41 +0000
Manifest next update: Wed 01 Jul 2026 09:00:41 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: evMBAIvTbDQWYwMJylcazHoTnrfouv5eKnOeQfRBQ80=)
2: fzKhZS7tgEqUrdZvJWQiBhGYXjs.roa (hash: oNIwrLOUrwNgDI/YRh0BOg1IxHhuOn9PuGYKfadJj30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:5e:d1:a4:e0:a0:5d:6e:b7:d3:8d:6d:44:84:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Jun 30 09:00:41 2026 GMT
Not After : Jul 1 09:00:41 2026 GMT
Subject: CN=490e62e5c40c36bf1d777c965eb0b147c8aa8dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:14:6a:79:1b:86:b4:cb:a6:a6:10:c0:88:
bd:de:f8:88:f9:f9:0d:72:17:8e:6f:46:74:c6:a6:
be:1a:a7:54:d8:30:0d:c0:7f:15:88:0e:fa:6b:aa:
76:44:06:e1:cd:46:14:88:c5:4e:7e:c4:3b:fa:27:
42:d8:e1:56:d3:54:a9:34:65:73:75:56:d2:95:4b:
c9:bb:da:fa:56:af:ec:21:7f:c1:32:84:aa:3d:6d:
52:c8:07:7e:0a:53:07:b8:60:a7:c5:91:27:fa:9f:
8c:02:29:21:bf:99:32:87:c7:ca:6e:1f:74:d7:25:
55:c0:4f:b1:90:39:be:9d:64:df:44:69:97:ad:9b:
53:c7:32:a8:f7:81:56:5c:00:3b:04:54:f9:b8:d9:
a7:68:84:98:f4:dd:31:36:03:45:81:f9:06:2d:de:
1e:ed:84:eb:bf:f6:ee:7a:e3:bb:82:17:1d:7a:f2:
5b:2f:13:ed:47:3a:c4:f0:0e:d6:7c:84:e1:05:f9:
9b:82:0b:1f:47:c3:c9:2a:c0:87:9b:e2:6c:5b:d7:
62:70:f9:ae:88:2d:41:5a:82:2a:ac:f7:42:b5:03:
f7:d9:72:c8:e3:55:31:9e:15:11:00:81:a7:a7:ac:
5a:39:2f:28:d6:ce:c8:0e:0f:91:ae:f3:fe:ea:24:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0E:62:E5:C4:0C:36:BF:1D:77:7C:96:5E:B0:B1:47:C8:AA:8D:BD
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f8:7b:20:e0:99:0c:c8:f0:02:bb:25:bc:7b:d3:12:cc:8c:
95:e2:2f:c3:87:35:f5:60:31:0e:5c:b1:27:37:b8:c2:82:62:
64:4c:c6:8d:2b:a1:dc:b5:8a:cb:6a:76:28:13:a5:39:c2:27:
57:81:fc:f7:0b:29:50:9b:81:0a:e5:1a:ca:0e:c0:93:1d:a8:
c0:c9:7b:81:32:f8:c3:64:d2:2a:07:e8:7b:b2:37:37:87:cd:
4a:3a:26:01:e4:39:40:0e:ac:79:01:e1:f9:91:26:6e:52:c3:
07:d9:38:8d:ed:06:51:00:79:05:03:75:0c:cf:75:01:c1:ad:
d9:c0:3b:ea:87:a6:02:a3:1b:3a:c8:6e:53:e4:7a:cd:f8:c7:
ed:a8:7f:58:7d:55:5a:cc:e4:cd:dd:1d:ea:62:ae:14:94:91:
36:ac:7e:25:b9:9c:c1:d5:e7:8a:cb:42:41:93:7c:e9:00:23:
af:df:30:cb:cd:9b:8d:0e:a0:0e:f3:57:90:be:40:16:94:09:
04:56:a3:31:d3:8c:a3:16:e9:1a:c7:fb:b5:60:7d:f1:2b:74:
c6:e3:35:22:eb:25:e2:24:1b:d8:80:28:0e:22:6c:ce:c3:9a:
2c:82:a1:3a:60:2e:da:0c:23:f7:56:ac:3c:7d:a4:53:5b:e0:
57:49:61:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:45 2026 by rpki-client