Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: qAgrCSscPEH3ieD6o1GR+EdBpdqEvp1TIqTXdNwVEm4=
Subject key identifier: 7D:1F:B0:C2:06:4D:2B:D8:E6:85:24:4D:F6:72:E4:5A:B3:0F:C0:2C
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 019D38666A6793180720A197778CA5E60F42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 0906
Signing time: Sun 29 Mar 2026 07:02:08 +0000
Manifest this update: Sun 29 Mar 2026 07:02:08 +0000
Manifest next update: Mon 30 Mar 2026 07:02:08 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: AnnUomLlYqm9+IuH5b9eu6BV2NEQsieyo1KeWc1cIXo=)
2: ZVMWIA2gRCKHPJyp2BWSpGeeJhw.roa (hash: rWWFhgQdz68f3CP7zyhwG/M5s65BBuAVvNtPkXYPboQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:6a:67:93:18:07:20:a1:97:77:8c:a5:e6:0f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Mar 29 07:02:08 2026 GMT
Not After : Mar 30 07:02:08 2026 GMT
Subject: CN=7d1fb0c2064d2bd8e685244df672e45ab30fc02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:3b:fb:18:a5:3e:ac:f6:61:52:0f:cf:6e:
d4:a7:00:dd:b0:16:c3:b9:ce:cb:8c:7e:ba:ac:23:
0a:fd:9d:9c:11:1c:ac:e7:8d:7e:ea:d1:ca:c8:c9:
14:5d:12:27:ed:3b:97:91:f2:26:97:bd:32:59:58:
f4:3f:01:e2:21:ae:51:dd:63:87:c5:3f:4a:6c:cf:
f3:b0:87:20:be:63:48:db:1e:4d:f1:2d:c7:51:2a:
80:7c:ff:96:d5:61:13:8a:ae:39:9c:72:8d:67:fe:
ef:0e:94:44:c2:b6:79:79:29:84:5e:c0:af:41:4f:
fc:5c:56:54:2b:ea:46:bc:c6:9e:a4:5f:5e:d9:d0:
b9:b7:2d:f8:6d:90:62:6b:e9:83:24:e5:49:93:db:
7a:73:a2:00:76:aa:4d:3a:7a:60:fe:d4:02:09:eb:
1d:07:76:1b:5f:79:06:21:68:b7:02:9b:90:d3:8f:
67:02:7c:a4:98:90:00:4b:34:59:27:f4:d2:90:7b:
a7:73:8d:8e:34:0e:e3:18:54:b1:23:17:ca:2b:5f:
78:ed:65:1a:23:09:4c:f0:1b:fc:d1:35:a3:39:33:
6b:fe:33:a0:f1:9d:80:3b:7f:41:6c:09:7d:6e:f2:
d4:44:18:69:f8:24:52:fb:48:15:ad:a0:c5:9a:61:
e5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1F:B0:C2:06:4D:2B:D8:E6:85:24:4D:F6:72:E4:5A:B3:0F:C0:2C
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ef:06:e5:4e:92:bf:bb:fb:5f:f0:3d:45:04:f6:6f:aa:32:
af:69:89:f8:c9:ed:fd:ba:9c:96:e2:30:6c:7f:6b:94:a6:77:
81:be:14:99:8f:be:12:5b:0a:d7:9c:4c:00:6a:66:c1:f6:c5:
3e:35:d3:7b:ec:96:a6:8d:ab:6c:95:8a:a9:89:b7:03:d4:65:
26:6b:2a:f7:e7:e9:09:91:06:df:8f:47:1d:36:73:50:8b:fb:
0a:79:aa:cf:86:80:98:44:68:22:5a:a4:0f:f8:84:e5:1d:93:
fe:df:82:43:07:a3:7f:16:b3:19:b4:dd:5a:a1:bf:ef:ec:fd:
56:ee:82:1c:bd:cb:b7:81:a0:14:b9:e0:ca:62:d3:bc:c2:a1:
a8:bb:98:e0:91:68:85:1a:1a:be:4c:c9:d6:d1:05:55:ae:de:
84:af:fb:ec:c7:94:8b:d0:2e:11:b7:a1:db:2f:44:7c:0e:cd:
cc:33:19:87:04:fa:60:3b:a6:b5:1d:30:5f:37:83:2a:5d:e5:
c6:a5:96:08:1f:d5:8e:47:10:2b:e3:dd:1e:98:d3:84:40:9a:
c7:3c:8b:c4:82:87:47:21:83:9e:ed:7f:b1:0a:ee:53:59:6d:
03:86:2b:88:e6:0c:e6:da:f2:b3:fd:2a:9c:64:39:f3:70:b8:
a3:05:79:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:43 2026 by rpki-client