Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
File: CXa-2b-5b_oZgiBViqPVuMj5zT0.mft (raw, json)
Hash identifier: XPo43ENhziRiY9Qxbxe0yZnCXZMh+PV53iP3srOZwZY=
Subject key identifier: 33:6A:62:33:7C:EB:63:78:8D:F4:2B:BB:41:09:7A:8D:31:19:28:67
Authority key identifier: 09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D
Certificate issuer: /CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d
Certificate serial: 019D37529A1A88A155D5A83759C674470141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
Manifest number: 02F6
Signing time: Sun 29 Mar 2026 02:00:53 +0000
Manifest this update: Sun 29 Mar 2026 02:00:53 +0000
Manifest next update: Mon 30 Mar 2026 02:00:53 +0000
Files and hashes: 1: 81erH1PyFfVJ8_cg3A4J-xcuYbw.roa (hash: NaAy63sjfoCM4Pl3nqIIgQyKV92LR17H8Jx3JG7KMKc=)
2: CXa-2b-5b_oZgiBViqPVuMj5zT0.crl (hash: Udmv+8sLTgoY5BJLH2V5cerZpR3gRjgHyszWbNS7NQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:9a:1a:88:a1:55:d5:a8:37:59:c6:74:47:01:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d
Validity
Not Before: Mar 29 02:00:53 2026 GMT
Not After : Mar 30 02:00:53 2026 GMT
Subject: CN=336a62337ceb63788df42bbb41097a8d31192867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:33:22:28:4b:c4:31:76:e7:de:61:b2:3b:
ef:51:c8:c4:e9:84:c5:91:aa:4e:8c:a4:9d:49:41:
c5:58:51:ae:7f:98:34:85:09:0b:da:1f:82:fa:97:
56:2e:a2:ec:14:be:2a:9c:96:2d:7f:82:85:7f:de:
ed:03:f9:51:8e:55:76:2a:93:95:bd:61:41:fd:d9:
fc:4b:33:ae:68:a8:1f:57:27:88:61:fb:13:58:51:
e5:67:8e:d5:02:f0:c6:1e:39:2f:cd:19:33:4e:96:
7f:0a:07:1b:2d:82:ae:ad:35:76:c7:03:cd:b8:06:
60:5c:cc:85:8f:6f:f7:1a:50:38:1b:90:b7:06:a3:
dc:14:c1:64:03:e3:d1:82:9f:48:ec:af:be:7b:ca:
bc:dd:86:d7:f7:68:87:b6:a1:dd:b0:11:9e:32:49:
bb:b7:34:e6:d2:9b:5d:78:8b:6e:96:22:46:9a:e8:
d2:0e:35:1b:a4:d3:c0:9a:ad:a7:55:bf:05:38:c6:
ec:96:11:94:59:74:93:f5:94:8b:e4:2d:e3:92:26:
34:36:dc:29:4d:03:55:8a:37:b0:09:13:79:20:53:
7d:a9:72:81:e8:dd:e1:29:5f:d2:ff:22:1f:06:ac:
87:fe:2e:6d:44:94:d0:09:b0:cf:be:4a:ec:db:f0:
50:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6A:62:33:7C:EB:63:78:8D:F4:2B:BB:41:09:7A:8D:31:19:28:67
X509v3 Authority Key Identifier:
keyid:09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:8c:39:40:d4:c4:41:e6:14:85:43:0b:3b:9d:bf:c3:92:3f:
75:f3:28:ea:e6:6f:9b:32:0a:3b:71:8d:5b:cf:f1:56:98:5c:
22:72:81:b5:59:e9:95:85:34:3f:65:71:11:59:7a:ad:41:1b:
4d:63:94:e1:c5:db:2f:da:89:39:e6:63:c4:2a:84:d5:30:a5:
0b:6d:eb:87:fe:98:7e:91:3f:15:d9:cf:89:0c:ed:06:4f:d7:
d5:ba:aa:5e:12:06:59:db:e9:f9:ea:4d:16:12:e5:aa:7a:b0:
d2:bf:77:77:63:35:71:15:2f:d1:0d:7e:9d:5a:71:3f:a3:60:
31:06:54:f7:70:9f:1e:1e:78:24:e2:40:81:b7:61:96:cb:45:
e9:a7:b3:7d:f1:76:63:17:3b:59:4a:1d:f5:f0:30:af:da:9f:
39:62:70:c5:44:33:0a:3d:ae:a5:d0:fc:1f:fa:6c:e8:56:14:
f6:2c:84:23:6e:31:41:47:06:8e:ca:2e:59:2f:80:33:7d:df:
8e:1c:f3:7a:20:00:d1:9b:84:54:71:93:8a:3d:9d:b1:d5:59:
03:2e:dd:3e:fc:20:21:d4:65:ea:88:e4:79:1e:76:19:0a:b6:
84:b4:dd:2f:12:38:35:aa:66:d0:8c:6d:59:6f:0d:93:99:6e:
a9:f9:0a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:19:13 2026 by rpki-client