Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
File: CgIUob8dOv0t1msjqZcxBrXTFso.mft (raw, json)
Hash identifier: QjFiStzBzBA/xNlhvKUbXqCTtesArgD2dXlT7M7XjFc=
Subject key identifier: B5:41:5B:26:2F:DB:BF:D9:B1:92:82:0D:C4:F0:18:9D:85:E0:DA:AE
Authority key identifier: 0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
Certificate issuer: /CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Certificate serial: 019CBEF1EDB43854ED2F28B4DC9176905DB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
Manifest number: 1332
Signing time: Thu 05 Mar 2026 17:00:51 +0000
Manifest this update: Thu 05 Mar 2026 17:00:51 +0000
Manifest next update: Fri 06 Mar 2026 17:00:51 +0000
Files and hashes: 1: CgIUob8dOv0t1msjqZcxBrXTFso.crl (hash: 7meSMbUCMYl5up2mu3z8wbn3SPVgc2Xo07HDe2wTO1k=)
2: Kr82PzCvD4Fk7jNwoZ0-iCZtxTE.roa (hash: XM1J6jO/D+cqiYMXDlDXyv/SlFsPZ20nk+XVsCUihVk=)
3: cENwAzhw60-ikgeBP0Wk-X-TPRQ.roa (hash: WKFy5CgMQiAy0y2WtEt+U7yH6EI/ABaKojXrx+8izJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:be:f1:ed:b4:38:54:ed:2f:28:b4:dc:91:76:90:5d:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Validity
Not Before: Mar 5 17:00:51 2026 GMT
Not After : Mar 6 17:00:51 2026 GMT
Subject: CN=b5415b262fdbbfd9b192820dc4f0189d85e0daae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ad:b0:98:99:22:71:60:17:6e:20:a9:b4:db:
fd:b4:23:8f:dc:53:71:7c:4d:ae:a3:b4:fe:5c:45:
38:75:93:17:7f:bd:8e:18:cd:bb:81:4c:f1:9a:e6:
bc:5a:73:9a:e2:f0:af:4a:10:5b:bb:7b:0d:fe:cc:
97:a0:ea:4b:49:eb:9d:6c:eb:e9:be:8e:1c:49:10:
a4:26:aa:d2:9b:7d:a0:8f:fe:66:1a:c7:13:2b:48:
92:0f:6f:28:d4:21:09:5d:0c:fb:15:ab:78:14:5b:
f5:ec:82:26:34:5e:46:a5:25:b1:4d:81:05:c1:7c:
4f:6e:fa:40:c3:92:04:33:dc:2f:c8:24:95:44:a5:
93:6a:30:bc:f8:a2:5e:7e:b9:1c:7d:2e:38:a1:1b:
39:28:19:48:97:b7:70:86:55:c8:30:65:a2:7e:e7:
44:0a:9c:80:03:3e:8f:1f:99:37:5b:4c:9a:70:5f:
7d:44:70:eb:54:f6:15:97:67:5a:0f:e9:f7:75:10:
b5:1f:81:ed:41:60:8b:5f:38:3e:5f:fa:3b:c2:12:
a1:78:3b:4b:22:f2:98:9d:95:4d:fb:b4:8e:db:df:
9d:53:c5:9b:f4:83:56:22:78:43:af:6c:40:71:0d:
a6:97:eb:93:d4:cd:b6:3d:1c:9c:5f:4d:a4:7d:6b:
a6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:41:5B:26:2F:DB:BF:D9:B1:92:82:0D:C4:F0:18:9D:85:E0:DA:AE
X509v3 Authority Key Identifier:
keyid:0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:5f:75:37:4d:ea:92:24:14:60:63:cf:99:e8:00:71:b6:89:
e6:a8:1e:bb:c8:cb:9a:16:85:ca:be:be:d9:4f:1c:9e:04:3d:
ef:11:3b:77:c2:cc:40:1f:ce:a7:37:a2:89:b1:38:0d:78:bb:
a8:d1:16:85:31:e0:09:1d:43:59:0f:cf:2f:b0:10:ed:de:bb:
9a:4a:5f:d2:bb:9b:39:7a:bf:b7:e1:08:8a:55:62:60:14:4d:
cf:ab:1b:ad:b3:48:35:59:8d:b1:ce:4a:1b:c2:c6:8b:6f:56:
8f:79:b3:9c:27:52:a6:3e:bf:a9:bf:18:d3:6a:21:fa:47:86:
65:51:50:ad:3e:fe:da:93:bf:c8:db:e0:dd:dd:03:aa:26:e4:
7b:a1:5c:2c:07:0d:e6:2e:33:ea:7f:d4:b6:7b:2c:71:bf:63:
9e:15:c1:bb:a1:a4:49:d3:5a:c7:4f:fe:a0:fa:36:a2:b1:66:
63:91:57:55:2d:e5:e1:15:09:ce:eb:48:50:e8:1a:39:1b:4b:
eb:74:8d:c5:05:fa:54:c1:83:29:ac:4a:05:37:0b:38:de:f6:
a3:e7:72:3b:e4:6e:7d:6d:8c:2e:ab:1f:d5:81:70:e4:e5:89:
b0:86:8e:7d:e9:86:7d:be:70:50:f9:b0:f0:62:ad:ab:90:64:
68:b5:17:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 01:09:57 2026 by rpki-client