Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: 8a1spkYFrLBzdhrtl7Fm3+viIB1/cCoXoBEZT1bxEv4=
Subject key identifier: 71:8E:D2:43:74:06:E8:04:32:BD:46:AE:60:C4:21:9A:14:CD:C5:33
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 019DD1D2790734D2F3B5180376DA5671E681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 0AC5
Signing time: Tue 28 Apr 2026 02:02:04 +0000
Manifest this update: Tue 28 Apr 2026 02:02:04 +0000
Manifest next update: Wed 29 Apr 2026 02:02:04 +0000
Files and hashes: 1: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: UNDoEidJxry5NLYiKQp0QXA25Le/bZa2mzzQrAZJvf0=)
2: uQBI9CCKkaQ15QLDKCoXQ9CMr50.roa (hash: 2DCBMNVSZ9VX6UXs8yIhflCej68SIec+3/kzpBsnYa4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:d2:79:07:34:d2:f3:b5:18:03:76:da:56:71:e6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Apr 28 02:02:04 2026 GMT
Not After : Apr 29 02:02:04 2026 GMT
Subject: CN=718ed2437406e80432bd46ae60c4219a14cdc533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:2f:a1:1f:a8:b7:02:3b:a9:61:a0:c1:08:19:
eb:16:4e:79:4e:f3:3c:65:ee:12:4b:84:cf:dc:33:
d9:66:8e:c5:94:41:cb:04:dc:14:23:7e:37:64:91:
64:81:f5:28:e1:ee:66:d4:f4:7e:50:0a:33:04:17:
c8:b5:18:4e:b6:e7:e1:8a:ee:e9:38:f8:f8:85:f8:
f3:1a:09:bd:59:20:de:e8:15:d2:bc:c8:d4:b3:e9:
d0:10:95:67:d0:f7:d6:5b:21:d8:f1:c5:6d:ff:0d:
82:39:6a:17:8d:cf:c0:f2:08:c8:ac:fb:ba:f8:46:
5e:f4:1b:aa:9b:31:27:47:bb:8c:ec:ce:6f:88:57:
cf:b9:e9:14:59:6d:59:cd:0b:44:ea:b9:5e:5b:94:
82:b1:80:e2:e6:fd:5b:1b:34:ab:c4:04:ab:c7:7c:
f5:f0:9c:c8:08:30:18:bf:eb:1b:af:60:64:bd:1a:
fa:a4:9e:7d:72:0a:c1:f5:3e:18:d4:d7:e2:63:2e:
c8:cb:c2:4a:e1:e0:6e:7e:ea:c4:38:ee:da:69:03:
1c:51:6a:bf:f2:f0:58:03:5b:10:2d:f2:d3:31:95:
3b:ab:f1:01:40:cf:2c:88:8e:50:1a:8a:86:6f:44:
9c:12:c9:ed:e8:3c:b3:d5:a0:d2:89:6e:a0:ef:42:
6b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8E:D2:43:74:06:E8:04:32:BD:46:AE:60:C4:21:9A:14:CD:C5:33
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1c:f5:ab:dd:b3:f3:8b:9f:9a:79:4f:e2:6b:da:ea:df:d0:
3e:fc:89:36:c8:a3:b0:d8:7a:42:dd:45:4d:bc:6a:1b:3d:3c:
13:dc:ea:5b:3d:f7:d4:fb:18:0f:f2:8e:01:df:e4:e8:6f:af:
e0:79:9c:ac:f5:e5:eb:ff:29:0f:38:fd:7e:a7:2d:02:05:c5:
63:77:4d:41:fc:14:9e:d2:34:88:ad:38:10:1d:13:46:18:4f:
ab:97:cd:95:40:8b:f0:69:57:ce:e2:55:d8:3b:4e:fa:c6:56:
58:70:a2:4d:a7:00:3c:d0:79:3d:f4:ae:ef:0f:e0:73:e8:e2:
18:97:78:05:91:c1:16:98:ef:28:bf:c6:2e:4c:48:12:0d:d6:
ee:ed:b5:36:61:c6:cd:d4:5a:27:20:e8:d6:ee:e1:28:cf:85:
d5:aa:76:d7:b7:5b:63:39:23:36:12:a6:48:35:13:80:2d:30:
07:57:1c:dc:fe:d9:a4:50:62:fc:ad:e4:81:88:26:ee:40:38:
a4:9a:23:21:3a:16:7d:9c:42:ce:14:46:df:0e:56:95:ee:42:
04:36:34:2a:4c:66:38:b0:5b:cb:e3:15:4c:fb:31:c7:87:65:
84:29:cc:ff:f6:d1:ea:2c:5d:9e:b1:c3:9d:8d:74:50:1c:0d:
cf:f2:5a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 04:30:09 2026 by rpki-client