Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
File: CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft (raw, json)
Hash identifier: m96uaBVQ8PibDh+w4tANak/koVqW4hjMn9QZHCcSKJM=
Subject key identifier: 42:5E:C5:B5:37:D2:AE:CF:BD:1D:45:DE:0B:A3:65:86:57:D2:A3:B0
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 019D382E8CBB78216C73BAECD5F63003BF60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
Manifest number: 10D3
Signing time: Sun 29 Mar 2026 06:01:07 +0000
Manifest this update: Sun 29 Mar 2026 06:01:07 +0000
Manifest next update: Mon 30 Mar 2026 06:01:07 +0000
Files and hashes: 1: 5F8EPRCwAO9R0s3emE3nMIVi-i8.roa (hash: nyuBuPwwDb0keiCkpqhAWuHjHqCL5kLPWyJJ50t6Ers=)
2: CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl (hash: bP/6NatGkXMneKowAz34k3tBcssDKFkCXhQQyZ3p3jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:8c:bb:78:21:6c:73:ba:ec:d5:f6:30:03:bf:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: Mar 29 06:01:07 2026 GMT
Not After : Mar 30 06:01:07 2026 GMT
Subject: CN=425ec5b537d2aecfbd1d45de0ba3658657d2a3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ba:01:4d:09:50:17:ae:01:a1:f8:fa:7e:89:
ea:05:b1:57:b2:dd:6c:cc:be:f8:2a:61:94:ce:30:
22:69:42:e5:68:c3:a7:46:f3:bc:69:90:ad:23:e6:
3a:17:6f:63:e4:a1:cd:e3:97:72:c2:75:e3:98:db:
24:32:74:1d:80:ff:89:0e:9d:7b:33:bb:02:1a:87:
31:df:69:20:89:49:d1:03:0d:7f:ff:27:fb:9c:e4:
97:1b:7d:42:97:cf:57:35:ef:5c:2d:e2:f6:5b:60:
70:f4:1a:b5:bb:f5:89:55:3b:57:f7:79:a6:c3:f8:
04:3e:00:ec:4f:39:9e:f5:0a:b3:fa:4d:f7:40:b4:
c9:a7:1a:12:b7:48:ca:25:c1:d8:ee:87:ca:63:48:
b5:d3:5c:be:64:13:af:9d:5a:cb:ea:f9:ea:ae:02:
2d:57:fc:da:ac:7e:58:ae:6c:7a:66:72:1f:c7:96:
b5:14:d2:03:5b:17:19:7f:9f:e9:fd:2b:14:ec:fd:
d7:d0:b5:c0:f2:15:88:dd:2d:6b:2a:b4:9d:66:7f:
55:85:cf:11:2f:a9:eb:7a:b0:c9:2a:bc:3b:c5:d3:
c4:82:96:d4:49:16:75:c7:04:14:09:5a:11:bd:a6:
3e:73:1d:f1:e6:99:2d:c1:f9:dc:a7:b0:63:6d:08:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5E:C5:B5:37:D2:AE:CF:BD:1D:45:DE:0B:A3:65:86:57:D2:A3:B0
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:87:e2:12:f9:c4:28:e1:46:77:f5:cd:06:be:ad:49:1d:c1:
58:b9:e6:1f:10:85:24:b7:11:e3:5b:b5:0f:1b:6c:b1:bb:60:
d3:e6:3c:bc:b3:53:25:61:34:eb:1d:56:5b:a4:da:13:a0:74:
6d:d0:91:df:0c:6f:71:07:24:4b:90:1a:fa:70:e2:d2:d7:51:
d4:50:e4:19:e8:6f:13:f0:4a:0e:d6:48:3c:1c:e2:18:16:2f:
9f:46:f5:34:08:4b:e0:c7:da:58:d0:46:7e:18:dd:41:2f:2f:
68:0d:8a:d3:f1:fa:cf:4c:27:6a:39:bf:c2:2e:8f:25:90:ea:
7d:e7:10:9d:37:c0:39:c8:2c:45:40:1b:47:f1:3b:6d:4f:e0:
89:e3:f1:4f:8a:5b:e3:fb:56:3b:2e:aa:6a:49:df:df:96:5f:
1a:72:97:57:ae:17:72:23:21:ae:d2:c1:a7:a8:58:0f:82:c8:
0d:2d:03:d7:02:31:8c:e2:e2:a9:70:a9:7f:df:4d:8a:1c:2b:
b2:bc:ed:ca:4b:97:bc:7c:75:60:6d:0c:67:73:f6:52:0c:66:
0b:44:80:60:1f:5a:1e:f5:1c:dd:a3:7a:89:37:1a:81:01:e4:
38:52:bb:e1:b4:26:ab:16:e4:42:52:f7:da:20:50:5a:cd:aa:
42:d4:cc:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:53 2026 by rpki-client