Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
File: CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft (raw, json)
Hash identifier: N8V/uvEvOoxK1CFIetcnXpxXZjiMaIcskiK+JviaAO8=
Subject key identifier: DA:37:EB:68:5F:FA:A1:31:82:85:7C:42:31:D4:15:89:CD:34:D1:21
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 019E2F5FD34660952E53C0A6041EC42AD95D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
Manifest number: 1153
Signing time: Sat 16 May 2026 06:01:09 +0000
Manifest this update: Sat 16 May 2026 06:01:09 +0000
Manifest next update: Sun 17 May 2026 06:01:09 +0000
Files and hashes: 1: 5F8EPRCwAO9R0s3emE3nMIVi-i8.roa (hash: nyuBuPwwDb0keiCkpqhAWuHjHqCL5kLPWyJJ50t6Ers=)
2: CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl (hash: zqbXnVMKMhuZllCjUMkfKUjGm4tj5+Uw9Ulfx7uiCNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:d3:46:60:95:2e:53:c0:a6:04:1e:c4:2a:d9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: May 16 06:01:09 2026 GMT
Not After : May 17 06:01:09 2026 GMT
Subject: CN=da37eb685ffaa13182857c4231d41589cd34d121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:b7:79:dc:31:78:a9:72:16:ad:5c:f9:40:
df:5b:af:fa:30:54:8c:bc:9e:ee:95:7c:01:eb:80:
c1:ab:8b:5a:48:c7:3c:db:77:a4:07:eb:b1:be:d5:
b5:4f:ab:2b:62:42:66:59:5f:44:78:45:2e:cf:8f:
a4:f5:43:d3:97:02:30:77:bc:45:7b:06:37:48:51:
d4:ad:77:b9:85:fb:6f:a3:b3:83:01:eb:35:37:30:
37:0e:38:e7:e4:48:f2:2d:1b:a3:06:58:7d:d8:a4:
c0:f5:59:2c:96:a7:24:07:5e:25:b8:73:81:ce:93:
3a:ae:d8:70:c7:01:2f:52:74:07:dc:e2:f5:6b:f3:
12:cc:c7:6f:b4:0b:4b:cf:86:26:db:94:88:e0:4a:
c5:33:e1:75:c8:90:f9:86:a6:00:d1:b9:62:22:3f:
14:58:fb:62:a1:b4:6d:9a:84:0d:d4:26:74:9f:23:
4a:a1:40:91:a3:02:ca:a4:8f:65:dc:f7:21:e6:e1:
09:16:8d:f4:b0:15:e7:8f:11:d9:dd:9e:de:06:ab:
97:88:7b:7d:ec:8d:7b:63:ba:6f:1b:34:ac:6d:c3:
db:59:3d:4a:43:4f:2e:77:d9:18:81:fd:ae:db:d9:
bf:2d:ca:20:25:75:32:56:1b:35:39:7d:34:4b:20:
68:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:37:EB:68:5F:FA:A1:31:82:85:7C:42:31:D4:15:89:CD:34:D1:21
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d6:2c:6e:50:09:a4:a3:33:47:6f:a8:22:b3:55:f2:70:d9:
22:18:23:51:e7:41:f4:24:2e:61:8e:c2:f7:66:5f:7e:6e:d3:
e3:34:53:61:7e:98:f0:53:f3:99:b5:3f:b6:9d:69:13:23:8d:
46:89:45:8f:f7:bb:04:bb:06:1c:c5:bf:01:32:25:91:a0:c5:
6f:0d:e3:a6:ea:73:de:19:08:32:91:5e:65:63:a3:a2:16:b7:
f6:eb:37:af:56:f8:93:19:a1:5c:aa:3f:77:b1:f8:52:f3:4e:
a4:e9:72:8e:e6:c2:fa:c1:74:98:bd:a8:ed:f6:bf:77:98:b2:
3a:44:5f:c3:1b:9e:cd:37:58:f1:e5:7c:fd:a7:16:e1:c7:15:
a3:99:90:bd:35:be:61:67:99:e6:79:f3:e0:28:6b:2d:50:fc:
0d:7c:a1:82:5b:b7:09:e3:d2:3d:5a:5a:ca:7f:35:bc:d9:9d:
9d:e1:95:6c:d5:4e:b6:10:c0:88:3d:08:22:41:9f:6e:1b:18:
70:15:b7:82:3d:c6:c9:2a:96:ef:78:c4:40:5a:d1:33:38:51:
89:ba:d3:4d:ff:33:8c:a1:16:ec:b3:f0:8e:ce:8f:05:bd:fe:
3f:b9:fe:66:18:2a:91:94:03:83:93:32:93:93:66:6a:4e:4b:
1c:75:ac:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:42 2026 by rpki-client