Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: ZKTa8m1HwbUPBRgXQBAA7+B9TOkrpYfccxtUqWOP1uI=
Subject key identifier: D3:46:0A:7E:D3:65:78:F4:3A:D4:2D:85:5B:D9:27:B3:06:80:35:44
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 019D3789633EFABDBD679CD5A4558F00FB7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 0D0D
Signing time: Sun 29 Mar 2026 03:00:43 +0000
Manifest this update: Sun 29 Mar 2026 03:00:43 +0000
Manifest next update: Mon 30 Mar 2026 03:00:43 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: eTz5xPSqB9E7siAz3VK/rt1e5IbVHevzsPFqoMAKPvM=)
2: ToM6N48G8WGMzFpuQ0Gt_pOWEHc.roa (hash: f5NlaoVCrJ+ZbPHrxjLY8hxzqQ0aKUh9p8kFFA8E7Vo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:63:3e:fa:bd:bd:67:9c:d5:a4:55:8f:00:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: Mar 29 03:00:43 2026 GMT
Not After : Mar 30 03:00:43 2026 GMT
Subject: CN=d3460a7ed36578f43ad42d855bd927b306803544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5f:46:c0:18:e1:80:6f:6f:98:88:9f:a2:14:
36:20:48:e1:6f:96:74:c9:9d:9c:8e:42:d1:6e:50:
bf:88:1a:97:ad:d9:1e:c7:77:9b:c3:14:1d:3d:90:
75:31:db:1c:15:47:3f:0d:e3:d6:8b:d2:6d:20:8b:
21:b9:ab:db:f4:d7:da:cd:a0:64:9f:14:90:22:c9:
86:4f:db:ae:d2:fd:4a:49:dc:64:75:2f:6b:e4:57:
09:04:8d:48:5a:68:5e:54:bf:35:13:55:67:45:f2:
b9:b8:89:9a:a0:af:2c:10:16:bb:2a:8a:19:64:d2:
7d:45:13:04:b3:fa:c7:33:4e:19:b0:82:1d:dd:31:
df:00:c3:b0:7c:c5:fd:e3:f1:e0:03:c2:1a:1b:0c:
96:2e:f2:c7:2d:13:a5:0a:a3:6a:fe:c3:aa:ba:c1:
f7:55:2e:6f:99:5a:3d:0d:a4:c7:68:99:a4:97:89:
1b:3b:4f:46:ea:ef:85:5b:ec:1f:28:8b:82:26:79:
e2:47:85:a0:32:c7:c9:27:7b:05:a2:a4:8d:b8:b1:
bc:48:6f:cd:05:e3:d9:41:c2:69:ee:fb:85:24:b5:
b4:be:f3:ce:75:c3:55:16:ed:d6:c5:2d:c8:3b:02:
aa:39:aa:d6:b3:12:ab:e7:6b:e6:73:48:3f:57:3f:
9c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:46:0A:7E:D3:65:78:F4:3A:D4:2D:85:5B:D9:27:B3:06:80:35:44
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:51:f6:23:ad:bc:e5:c6:9f:94:48:cd:a7:e0:12:69:4b:09:
22:07:f4:35:40:57:37:dc:ca:99:31:99:87:8e:40:07:f5:68:
9c:76:64:51:21:b9:78:86:d2:99:1d:da:e4:f5:97:3b:9b:d9:
38:4b:30:46:0c:09:7c:df:0b:8f:91:17:b3:58:f0:e2:3e:4e:
64:d3:d2:53:28:d5:8c:e6:42:eb:8d:bb:13:72:9f:41:b2:12:
70:0c:8d:ae:b7:95:e7:5a:c6:48:2f:35:40:9a:5a:d0:7c:d5:
22:3e:9b:8e:3d:23:39:fe:a0:c0:a7:dd:2f:1f:33:e4:54:42:
20:ad:27:9c:1f:53:a9:dd:c1:60:bb:16:c1:ad:e5:19:bf:fa:
23:2f:80:b7:69:28:3d:cd:d4:93:a1:28:64:a0:51:11:32:f6:
52:43:4d:ef:df:9a:12:b3:98:3f:d4:b0:39:ac:de:bb:17:9a:
f1:75:cc:a4:55:0c:cb:e3:a4:33:66:f8:00:ab:c9:3c:0a:26:
a0:d9:69:0c:2e:7e:82:2d:c6:84:ff:e7:15:ab:72:60:34:62:
16:78:2b:68:89:05:c4:fd:da:9a:ff:ec:f5:fa:50:47:7d:d9:
38:69:5a:d4:53:79:77:37:f2:38:bf:f2:9f:29:29:46:02:c4:
c2:70:a1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:10 2026 by rpki-client