Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: C2ZTwl88tdO2bHIsh8yAnf23YQzL4hJyL0tmtTCegNs=
Subject key identifier: 21:A5:C0:72:5B:3A:24:45:8E:73:22:23:BF:8A:E3:8E:36:0D:51:6A
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 019E30A98ACA2AE67DABA5DA138849F467A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 0D8E
Signing time: Sat 16 May 2026 12:01:17 +0000
Manifest this update: Sat 16 May 2026 12:01:17 +0000
Manifest next update: Sun 17 May 2026 12:01:17 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: rVM+hv4suZrj82SCYzsiMS2Y2fQkf/DRhBXofCqhjs8=)
2: ToM6N48G8WGMzFpuQ0Gt_pOWEHc.roa (hash: f5NlaoVCrJ+ZbPHrxjLY8hxzqQ0aKUh9p8kFFA8E7Vo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:8a:ca:2a:e6:7d:ab:a5:da:13:88:49:f4:67:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: May 16 12:01:17 2026 GMT
Not After : May 17 12:01:17 2026 GMT
Subject: CN=21a5c0725b3a24458e732223bf8ae38e360d516a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e5:0b:85:a6:35:62:8e:d7:b4:bd:0c:ad:12:
03:14:b2:81:aa:73:18:70:0b:a8:bc:b3:3a:18:23:
95:20:f1:14:e1:b9:5d:35:52:99:57:9e:38:d7:65:
04:e4:ff:f2:b1:07:f5:26:15:a8:93:aa:2e:d2:48:
90:ff:81:30:a3:7f:6b:5e:f6:4e:2b:3d:05:ed:b6:
90:e5:af:d4:09:2f:97:46:ff:d8:32:0d:87:0c:a7:
df:a8:4b:9e:ad:e4:c2:ee:dd:28:96:4d:31:f7:31:
c6:aa:c9:26:b6:99:9f:22:08:6a:91:b3:17:c5:e3:
f7:cc:4e:1a:a8:8d:3c:55:2b:7a:4a:aa:2d:93:29:
1e:e8:1a:3d:d2:fb:e1:79:ef:2f:a5:14:f6:b0:f3:
a3:d2:02:70:a3:23:d0:16:78:12:6b:3e:c6:ae:0c:
01:18:6b:3d:5a:8f:4b:a9:40:8f:d9:2f:2f:8c:9b:
33:ed:ce:14:14:de:b6:f7:7a:e9:b5:be:9f:86:ae:
06:0b:fd:ff:d1:bb:98:5a:2a:13:3c:17:7b:57:fd:
6f:f6:f8:ec:9b:33:0a:3b:34:46:01:43:60:96:31:
13:02:7b:51:1c:93:75:48:c0:f4:21:93:e3:5a:b2:
20:14:0c:9f:7b:7b:28:ec:e7:dd:33:33:8d:50:d5:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A5:C0:72:5B:3A:24:45:8E:73:22:23:BF:8A:E3:8E:36:0D:51:6A
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:43:8c:95:0c:92:83:9c:96:76:a3:2f:b7:58:58:be:38:cd:
73:3e:50:83:ce:0e:6d:7b:d5:08:e6:ad:df:df:0b:a4:a6:40:
c7:71:04:44:af:06:12:8a:20:9d:0f:24:f3:99:fb:d4:ff:d7:
ea:6b:2d:30:8d:a4:09:14:aa:65:4e:31:50:f0:8d:ff:5a:52:
01:8a:5c:b2:bc:06:72:02:8b:54:ea:f8:f6:b5:9e:82:4d:a5:
a2:15:03:66:b9:fa:5b:f9:48:b1:88:5f:57:1c:47:f4:7a:a4:
21:5c:f1:db:92:7a:02:9c:3e:ea:72:a3:0a:26:a0:5b:43:8f:
c3:be:37:9f:bb:18:2e:ca:88:b1:07:7d:e6:e5:c4:a6:3f:9f:
65:33:87:63:29:69:62:13:7b:6c:fe:d0:2c:2f:c9:fc:d4:98:
af:88:48:66:e6:88:ec:39:f1:52:5c:e8:89:e2:52:92:f3:f9:
51:6d:22:0f:ef:2f:e7:d8:b4:49:4b:f0:96:42:ee:d3:34:80:
dd:8d:d5:02:2e:64:f2:dc:8b:ec:eb:02:f7:d1:2b:19:01:da:
d2:d2:cf:ea:31:ac:2b:d7:f0:f4:67:77:b0:3c:13:3c:68:9a:
85:4a:ba:a3:9a:59:34:af:78:64:1a:96:bf:73:51:81:51:7d:
08:ab:6d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:11:45 2026 by rpki-client