Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: 6wkfQXW8NAgUUMT7EvgDw8jjHLYgoAIKDMRjq4nmIzo=
Subject key identifier: 26:C1:AB:F7:15:69:27:78:57:D7:4E:0D:A2:43:37:AF:08:2F:15:5A
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 019E300507560834DBC1D1A7D75D61A441D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0C3D
Signing time: Sat 16 May 2026 09:01:36 +0000
Manifest this update: Sat 16 May 2026 09:01:36 +0000
Manifest next update: Sun 17 May 2026 09:01:36 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: QN/mdFDwXou3FoDGt1KJ3uxAxhVD9urswETw/qh3pU4=)
2: fzKhZS7tgEqUrdZvJWQiBhGYXjs.roa (hash: oNIwrLOUrwNgDI/YRh0BOg1IxHhuOn9PuGYKfadJj30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:07:56:08:34:db:c1:d1:a7:d7:5d:61:a4:41:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: May 16 09:01:36 2026 GMT
Not After : May 17 09:01:36 2026 GMT
Subject: CN=26c1abf71569277857d74e0da24337af082f155a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:40:46:d8:58:09:00:aa:82:ad:63:11:c2:a9:
4a:9f:98:4b:ce:7d:fa:4b:b1:8e:ad:3e:c9:4a:b0:
84:79:6b:75:71:01:06:fd:3a:cd:c4:2c:f2:bd:fc:
bb:f4:57:38:b5:fd:4e:fe:06:a2:60:72:1c:a0:8d:
37:06:f3:89:26:21:4c:67:58:52:0f:a4:af:22:00:
b0:7c:04:93:dd:7e:03:2f:f5:fd:d9:c5:85:f9:d8:
c6:ec:4d:f1:ba:bb:55:03:9f:74:54:1f:01:08:04:
54:58:f3:70:87:d3:de:d1:f1:0d:58:19:c1:2a:7c:
07:b0:0e:74:2c:82:8a:13:17:83:93:7d:41:1f:5d:
39:70:c6:a1:1f:98:b4:16:f3:4d:51:0d:64:49:55:
e4:21:f8:6a:96:86:a5:1c:bf:af:92:9e:1d:0d:26:
af:92:2d:9f:ef:6a:af:1d:1f:35:bf:40:5b:c0:eb:
ac:02:17:bb:a3:3c:a1:5d:1a:2b:fe:9f:d7:04:d8:
6f:f2:57:14:4b:75:b9:41:6a:80:d7:d1:5e:6d:7e:
66:95:4c:54:7e:a1:6a:f5:4d:91:5e:68:bf:9b:44:
29:5c:bc:80:37:db:e1:9b:8f:a0:14:18:b1:61:22:
34:f0:4c:cb:9f:3b:53:7d:de:2f:87:f5:41:c9:f2:
c3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C1:AB:F7:15:69:27:78:57:D7:4E:0D:A2:43:37:AF:08:2F:15:5A
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:5e:eb:a9:7e:44:47:09:6e:cd:66:cb:39:6a:d8:ba:1e:73:
6d:f5:cf:af:2b:4b:a8:98:d9:3f:bd:13:c4:1e:22:bf:5f:44:
51:67:00:d4:05:50:52:6b:72:15:9e:0a:22:19:fb:2c:5b:35:
e4:ba:7c:b3:55:c3:ed:b3:73:20:0b:8c:af:0b:76:c6:f8:c6:
5f:3f:aa:25:d6:0d:1b:19:de:0f:62:2c:c1:03:df:97:73:c7:
1b:0c:12:d6:00:d3:c7:a6:43:34:04:37:10:9e:51:5a:a3:93:
8d:dc:e1:2f:06:1e:80:5f:53:83:c6:66:2e:47:0f:99:66:a9:
43:91:75:1d:57:4c:6c:b7:e5:3c:52:ce:54:c7:fa:16:3d:b6:
3f:b7:18:ca:a0:27:4f:cf:fb:80:87:60:15:73:c4:b0:9b:c4:
a2:62:b0:d4:72:e3:3c:e8:9c:a2:3c:e2:0f:73:67:dc:d2:0f:
c0:c6:8b:79:fa:6a:11:05:5e:a8:4e:f0:4f:a4:ca:30:68:4a:
10:bf:84:9e:1f:89:76:6c:a7:02:39:c2:03:3e:87:96:1b:f9:
8f:f4:c5:cc:93:df:64:e4:9b:f6:1e:7f:d7:89:e9:af:65:50:
6c:17:11:c7:01:97:d5:23:ca:02:42:6f:bd:19:a5:ac:d4:c6:
3f:a7:b2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:24:34 2026 by rpki-client