Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
File: CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft (raw, json)
Hash identifier: r6DvLb8bVzRfhVHPui09sRB/YL2QMEOtqq79GtXBtvc=
Subject key identifier: A5:CD:5D:18:6A:16:DD:D1:33:B9:6C:F3:D1:A5:C7:C7:F9:EF:3C:F3
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 019F190D2441FC3C352B90DC8CCFEE0E38EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
Manifest number: 11CC
Signing time: Tue 30 Jun 2026 15:01:59 +0000
Manifest this update: Tue 30 Jun 2026 15:01:59 +0000
Manifest next update: Wed 01 Jul 2026 15:01:59 +0000
Files and hashes: 1: 5F8EPRCwAO9R0s3emE3nMIVi-i8.roa (hash: nyuBuPwwDb0keiCkpqhAWuHjHqCL5kLPWyJJ50t6Ers=)
2: CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl (hash: Bf9I24+QvGXgY4y+vGUtpu2iUnTTdIffst14w4Z1G4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:24:41:fc:3c:35:2b:90:dc:8c:cf:ee:0e:38:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: Jun 30 15:01:59 2026 GMT
Not After : Jul 1 15:01:59 2026 GMT
Subject: CN=a5cd5d186a16ddd133b96cf3d1a5c7c7f9ef3cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e8:30:72:12:49:fd:a5:80:04:61:fa:14:d8:
1d:c4:54:11:da:af:f2:9a:5e:d0:70:6f:2b:dd:2b:
cf:73:71:14:86:6d:42:de:a0:14:eb:74:18:4b:39:
8e:ba:17:be:0a:2b:4c:ff:0f:13:82:23:be:83:27:
69:1a:84:78:bf:d3:d7:ff:2f:72:b1:98:dd:85:48:
df:f7:58:ba:9c:97:d0:79:2c:b6:68:85:b3:eb:ba:
fe:ea:c8:3a:19:e4:66:96:2d:29:a8:ba:ca:ec:98:
56:4e:f2:41:a9:9a:5a:7c:48:7d:8d:bd:ec:e9:b6:
5b:ed:c7:46:92:d2:aa:1f:6d:1d:1f:5c:94:10:7c:
58:2b:21:78:a6:40:52:bd:a4:ae:7e:dc:61:57:98:
03:42:1a:c4:f7:d8:5f:7b:d8:f1:93:f7:9d:55:24:
f4:5a:2b:a7:0f:28:ac:64:80:fa:c9:90:33:21:ca:
14:0e:1f:e1:24:42:99:f4:17:8d:a0:24:d7:88:4b:
9e:b3:a1:dd:e5:0b:e8:ed:2f:a3:24:3b:53:d4:d9:
00:b4:c1:aa:f1:54:ed:92:5c:be:29:a1:bd:78:26:
3f:e7:2c:a5:79:22:6c:19:fa:ba:70:2c:6a:a4:78:
51:1c:16:ac:8d:a7:43:47:7c:ec:ca:85:b0:b4:2d:
ca:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CD:5D:18:6A:16:DD:D1:33:B9:6C:F3:D1:A5:C7:C7:F9:EF:3C:F3
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:73:c6:ec:2e:79:91:64:d4:d7:62:2b:76:f6:b2:07:e1:8a:
8a:f7:94:33:70:06:99:24:af:31:3a:c5:b2:39:3b:af:95:4a:
61:43:0c:5c:bf:d4:fc:d3:5f:87:5e:51:40:64:b7:1d:4b:04:
b8:1f:98:c1:91:d5:a1:85:0e:ca:d3:be:bb:9d:27:80:ad:6f:
aa:5f:a0:cd:79:ab:a8:5c:12:21:8c:72:87:41:fd:29:80:98:
0f:c3:08:0e:d2:3e:be:74:dd:0d:0a:4e:de:cc:93:1f:c3:05:
08:e3:6b:f8:ab:41:f0:39:f8:fe:9e:32:3d:34:82:d9:60:a5:
2b:57:a5:8e:d1:5b:96:f4:62:6e:f3:11:e3:df:4f:7a:85:24:
09:c9:a5:17:fe:db:04:3a:b8:99:9f:09:73:9b:25:b7:db:7f:
6d:66:59:0f:24:5b:10:8f:0a:4a:cd:40:22:b0:f7:f5:e2:42:
19:83:df:ee:e4:0a:ef:bf:bd:48:8b:cc:b2:8e:c2:21:f4:38:
cf:10:94:5d:cd:db:52:fe:c1:bc:3c:ca:cf:68:dc:de:5f:25:
fa:a5:d0:a6:c4:06:a3:fa:d6:e7:7e:01:51:be:87:1d:c6:31:
91:6d:d7:1d:9d:01:e2:b2:09:8c:75:ea:fd:88:36:46:c8:71:
9d:9e:d6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:25 2026 by rpki-client