Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: 9Kyb3bHsmo+dNy81fw8PT4FmdS28S0BQ0PEyfdy6+IM=
Subject key identifier: 9A:8B:F7:94:4A:B4:19:FC:92:BE:F6:8A:E7:5C:BF:0A:0D:CE:D2:C8
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 019D37C03877DF0F91078AA7DBDEE276A339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:37 +0000
Manifest this update: Sun 29 Mar 2026 04:00:37 +0000
Manifest next update: Mon 30 Mar 2026 04:00:37 +0000
Files and hashes: 1: 6jv9jlHJmC7k64rvSsealEF_Ys4.roa (hash: crUEU6To7tUPJ210jDOrFjZwtJRVZ4icX9N2S6uxoc0=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: R2efTanMclIiM9TrsxKV6rBv265dgXMxIlYK4Mvcu3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:38:77:df:0f:91:07:8a:a7:db:de:e2:76:a3:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Mar 29 04:00:37 2026 GMT
Not After : Mar 30 04:00:37 2026 GMT
Subject: CN=9a8bf7944ab419fc92bef68ae75cbf0a0dced2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:af:3f:92:cc:b0:b6:e0:89:89:82:ad:49:ad:
8e:3f:60:9e:3d:2b:a9:f0:5f:bc:29:c8:7f:b0:c0:
72:be:cb:d1:13:81:76:9c:69:a0:28:da:f4:f9:52:
d1:33:22:06:3b:4e:f3:d5:af:83:5b:88:31:f9:4d:
5a:cd:23:5b:43:4a:14:a8:51:23:8a:b9:e5:63:0c:
e7:c4:51:9b:0f:81:3f:59:73:1a:ec:c5:a4:7b:a2:
c9:a2:5b:6d:29:fd:01:97:8a:3f:fb:b2:48:b5:2c:
ea:af:72:6f:7f:b6:d9:e4:84:db:88:29:43:20:ac:
8f:9f:37:89:f7:18:23:05:69:7b:24:a3:14:40:99:
49:72:e6:bc:4d:d4:c9:bf:f5:ad:97:64:da:94:67:
85:8c:a6:1d:f5:20:24:c2:c6:61:dc:90:8c:24:41:
1b:70:1e:9e:90:e3:cc:3b:e2:93:22:7d:c8:24:d9:
87:5f:be:44:c9:8d:d2:a2:5e:b4:0b:95:79:e2:1d:
27:d5:11:b5:fc:37:1d:c6:fe:d9:53:48:9a:3d:59:
4d:19:42:e6:97:32:3e:fa:6d:6b:36:84:c4:09:d4:
44:59:a9:d3:fb:fa:f6:5d:f9:6e:9f:49:9d:ab:91:
95:1f:e3:fa:94:1c:99:07:3b:8f:a6:b9:19:41:ff:
a1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8B:F7:94:4A:B4:19:FC:92:BE:F6:8A:E7:5C:BF:0A:0D:CE:D2:C8
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:9b:3d:09:b0:d5:17:fd:7b:6f:65:11:c1:a0:53:66:92:35:
93:ad:c0:18:16:be:b1:ba:f7:a3:19:fa:65:fe:b4:b1:a3:ba:
17:15:55:c4:4d:03:6f:cb:55:68:c6:e8:de:9b:90:10:b6:2a:
80:ba:f6:85:5c:24:56:6d:b8:aa:ff:7f:7d:97:67:9c:c6:3f:
77:69:bc:ef:c7:60:6a:0d:ed:8c:4c:c8:8e:0b:c1:49:8d:60:
a3:61:ba:77:c6:b9:ce:f8:ff:d9:d1:25:a0:b6:1c:65:fc:43:
13:24:73:bb:01:76:02:bc:5e:a0:19:5d:f7:d6:da:a9:e0:d8:
4c:4e:85:5c:bb:1b:5f:91:51:77:d3:32:6b:52:b6:55:e9:dc:
68:a9:65:e6:64:05:00:72:07:15:48:07:c6:17:78:a5:cc:5a:
09:70:ec:94:f7:d1:b2:02:bf:86:97:93:4c:90:2c:e4:fe:27:
60:87:49:a2:2f:dc:79:5e:fa:2e:47:70:60:38:96:fa:d5:56:
61:fa:02:01:f8:a9:8b:33:da:e4:f8:38:82:61:d1:ca:a7:d2:
88:12:0e:8a:7a:9d:da:78:e8:21:17:3d:5d:34:5c:ce:12:98:
c7:c0:60:3a:00:07:21:aa:43:97:07:98:03:2f:8c:9c:1f:0c:
dd:bb:01:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:01 2026 by rpki-client