Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: A/KY4pK1gb5GyD3z6sBKpxd4/Jxf1lASIeEtz5kKU/s=
Subject key identifier: 45:38:0C:BD:30:68:AB:0F:42:20:66:F1:67:BB:C9:B7:18:53:04:9C
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 019CE8252F3CC101676164798A2480A59E2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 0A4C
Signing time: Fri 13 Mar 2026 17:01:16 +0000
Manifest this update: Fri 13 Mar 2026 17:01:16 +0000
Manifest next update: Sat 14 Mar 2026 17:01:16 +0000
Files and hashes: 1: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: dLa5t4fnpUk2iR5j6fAgVa5J6GRfsepDnnulV+P92dg=)
2: uQBI9CCKkaQ15QLDKCoXQ9CMr50.roa (hash: 2DCBMNVSZ9VX6UXs8yIhflCej68SIec+3/kzpBsnYa4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:25:2f:3c:c1:01:67:61:64:79:8a:24:80:a5:9e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Mar 13 17:01:16 2026 GMT
Not After : Mar 14 17:01:16 2026 GMT
Subject: CN=45380cbd3068ab0f422066f167bbc9b71853049c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:ec:88:c7:91:d2:5b:03:13:b3:64:32:cd:
bd:ca:89:db:14:8b:21:2c:5f:e8:55:f1:66:4e:ec:
ea:b9:a2:f1:85:1b:ff:98:9b:4a:98:54:9c:e8:ab:
8c:d5:b2:3f:52:35:e7:82:00:a7:84:67:05:33:89:
ea:9e:5b:53:2c:9a:84:51:39:6b:b2:a6:2f:1c:87:
16:25:0e:53:f8:3e:59:3b:2d:c7:00:63:a6:1e:95:
09:78:6d:3b:82:05:95:35:fb:2e:fe:40:c2:76:b5:
ae:77:4b:8f:a4:88:8a:dd:42:c5:85:a7:53:6d:4f:
fd:3c:b9:96:0d:17:c6:42:f8:47:cc:2d:84:74:07:
18:ed:3b:03:76:81:09:e3:a4:20:8f:a0:f7:2d:09:
35:c9:f1:79:f7:ae:3e:ab:c6:79:21:48:7c:c9:8d:
1f:f2:0a:07:1f:4c:63:87:00:ea:46:71:3b:6c:f0:
34:8d:eb:b6:10:07:48:17:e3:63:aa:09:8f:a4:46:
a2:d8:3b:11:6d:15:d8:9f:db:74:52:ee:7a:02:42:
15:af:f5:17:02:06:db:78:ad:65:9d:3f:34:fb:0b:
8a:0c:7b:82:38:af:35:21:00:5e:9e:d3:84:50:04:
c1:2f:07:a9:2e:0f:ed:f4:12:44:1d:36:c9:8b:5e:
30:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:38:0C:BD:30:68:AB:0F:42:20:66:F1:67:BB:C9:B7:18:53:04:9C
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d5:76:6f:81:7a:08:49:c8:3d:ba:a1:10:49:da:ea:e5:04:
70:b7:90:58:67:03:90:b1:2c:fa:f1:d5:c7:ab:ed:79:54:09:
07:ff:0c:30:2c:61:f1:cb:6e:d5:8d:76:54:47:0a:f6:e6:f7:
1b:1d:dd:14:39:75:39:a2:47:a0:f9:fe:bb:86:0d:2e:e1:c4:
2d:d7:77:75:ae:a2:3c:c8:c9:6a:25:1d:e2:ed:a4:2d:c7:48:
0c:73:27:e3:0f:77:d7:4e:0e:df:41:3a:a2:d5:dc:f5:27:d0:
6a:17:d4:08:b7:31:d2:7b:92:0e:f6:25:67:8e:11:b8:d8:af:
f6:83:32:88:8c:7f:f6:b9:33:b4:60:ee:da:d1:4a:20:5a:9b:
38:4f:d3:e3:0c:66:93:8d:ee:74:5a:72:8a:cf:65:8c:46:96:
40:ed:38:92:04:b3:d5:02:b7:5d:21:4d:c4:51:18:d5:fd:24:
f5:9a:8e:c5:f9:67:e9:bd:2a:17:ba:7e:4f:0f:3e:03:a6:da:
ff:7b:4a:b7:da:21:c9:9b:d8:57:01:83:c9:3b:a4:75:a3:92:
f6:18:df:bc:f4:79:13:54:50:04:8e:56:9f:90:04:3c:3d:fe:
a4:70:0a:42:84:fd:06:b2:36:bd:9a:c1:22:91:24:ba:55:d9:
5a:55:fb:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 19:28:07 2026 by rpki-client