Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: E8VsPwFs92AFvOrbifEcLEP580LRrMI4wVmZn7SQR1M=
Subject key identifier: C4:30:79:B0:34:1F:00:24:87:56:BE:01:23:68:9B:BC:C9:F4:2F:CC
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 019D38D3D70E7FBC089E092FCA5DCDD3058E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 09:01:40 +0000
Manifest this update: Sun 29 Mar 2026 09:01:40 +0000
Manifest next update: Mon 30 Mar 2026 09:01:40 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: OEIA3qs3GM5EyuQOiaCjVtjlZOoQRLdwlbI55BSe2Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:d7:0e:7f:bc:08:9e:09:2f:ca:5d:cd:d3:05:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Mar 29 09:01:40 2026 GMT
Not After : Mar 30 09:01:40 2026 GMT
Subject: CN=c43079b0341f00248756be0123689bbcc9f42fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:26:49:de:53:47:64:ee:81:1f:53:57:00:
a6:4b:29:2c:8b:bd:44:65:33:89:42:2c:da:62:06:
4e:02:f5:a1:30:d7:83:a0:5a:5b:64:9c:6e:d4:d0:
ee:11:03:80:87:a5:2b:4e:14:85:58:8b:ce:1e:a5:
79:bf:63:72:10:d4:4d:a3:02:f3:55:da:5d:d6:66:
0b:17:81:68:d0:7d:c2:0f:ca:e0:04:30:26:0c:f6:
36:57:94:2a:fa:62:ee:c5:68:63:65:a0:0c:f0:42:
44:42:2e:33:04:5a:0e:6b:36:cc:58:b1:c4:66:81:
18:d7:e9:4b:9a:b9:43:64:8e:c6:56:52:9a:95:63:
02:cf:98:78:a2:96:a1:23:78:21:66:f8:d6:f7:04:
34:e3:55:e9:f3:cb:ea:ec:40:68:42:41:d0:e1:49:
25:0c:e6:20:f4:76:2c:19:7b:f3:5c:e3:11:75:f0:
dd:e2:46:09:0d:30:2c:a8:c1:2a:52:0f:86:39:47:
5e:4f:85:e1:3d:51:ec:20:24:6a:7b:1c:8a:86:f6:
c2:b1:26:0a:b3:f3:e4:ef:75:ef:de:ef:bc:f2:df:
9f:a5:44:7e:42:bc:c7:ff:dc:4c:b0:ec:f5:6f:83:
33:c0:b3:87:b5:d2:5e:21:7c:cc:bb:0e:75:73:3c:
f6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:30:79:B0:34:1F:00:24:87:56:BE:01:23:68:9B:BC:C9:F4:2F:CC
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:01:1c:b7:47:1e:e7:8a:3c:b7:73:94:0f:16:b4:2a:cc:d9:
aa:d0:9c:a4:3f:e1:fb:9b:d4:fb:9e:a6:e0:27:f1:4d:7e:48:
1c:ec:cc:11:6b:d4:1b:2e:cc:a8:bd:67:a4:df:af:6b:8d:fb:
07:a8:3f:e5:41:69:4e:e5:cf:05:c9:c2:17:26:c6:d4:f8:77:
40:e3:3c:09:bb:92:17:ea:32:08:40:c8:9b:08:bd:a3:a0:b5:
4a:58:eb:66:70:a0:56:76:1f:78:f0:e9:ff:b7:45:9f:c9:2f:
61:a9:cf:54:ef:f7:55:3b:fd:6a:5c:6d:ee:27:48:3d:6d:ff:
33:8c:2b:69:c8:52:a7:6b:61:9d:8c:73:f0:85:39:9c:4d:ca:
91:48:f5:47:ff:ac:4b:3c:f8:32:c0:d8:31:fc:f5:fd:97:ec:
a3:f5:14:98:4d:04:e7:38:92:85:d2:d6:f8:ba:d1:58:4e:ac:
d2:6b:d3:01:79:b5:29:5a:77:80:56:e6:a1:8d:38:18:f5:13:
e2:8a:36:e6:10:8c:b9:9b:c8:09:a1:5c:aa:8a:35:06:e3:e4:
85:45:ac:ea:d9:21:b6:ca:e5:08:2e:01:ca:20:42:70:6f:21:
55:d8:e4:c1:0f:89:6d:63:52:e5:2f:04:9b:18:49:0f:20:b1:
87:c4:6a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:11 2026 by rpki-client