Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: VHJsyJYBTmTUzEbuW9mugR6wp9dieX9k6DrvvT0V6Tc=
Subject key identifier: 00:CC:C0:BA:76:6D:96:92:7D:38:64:4E:72:74:00:36:CF:D1:4B:15
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 019D38D380D547B4BEC8D3F9B80F7F141BC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:01:18 +0000
Manifest this update: Sun 29 Mar 2026 09:01:18 +0000
Manifest next update: Mon 30 Mar 2026 09:01:18 +0000
Files and hashes: 1: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: RB7PXzb5BsDNspVSABbkppXLdfijXwvs1hlIyIzYsTQ=)
2: y7AqiXLlolDvCA4ci8GI1FGSGEk.roa (hash: SHdF4S1wOxIU7MQoEG79yqjjmd2Uh7jceITC2kby4Xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:80:d5:47:b4:be:c8:d3:f9:b8:0f:7f:14:1b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Mar 29 09:01:18 2026 GMT
Not After : Mar 30 09:01:18 2026 GMT
Subject: CN=00ccc0ba766d96927d38644e72740036cfd14b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ce:bc:60:6a:a4:bd:5a:c0:2a:40:96:f4:bf:
54:20:27:5a:f2:97:b1:f6:24:59:dc:e9:21:4e:92:
05:28:47:aa:c4:d7:84:0e:78:9f:f6:6b:76:4e:6f:
cd:12:f4:2b:40:6c:98:8b:32:2a:9d:85:58:90:fc:
8d:08:14:be:55:98:04:22:63:81:25:ea:84:50:e2:
35:41:10:a3:53:0f:17:bc:b7:3f:74:b1:98:da:82:
66:f9:30:72:57:d9:f9:bd:b7:fd:d2:29:a0:72:7e:
7c:ed:7f:26:f4:13:b5:2c:d1:83:d2:09:69:97:aa:
6f:20:8a:44:13:bb:4a:2e:00:3f:d9:68:08:f3:2a:
ef:5a:89:2c:f7:d6:77:fa:40:0a:35:e9:7e:de:9b:
9f:77:90:d7:2e:cd:d1:cd:48:4b:20:e3:72:7a:62:
d9:ce:50:c2:af:5e:ce:0f:2c:7c:21:3e:14:91:b2:
a1:f3:34:60:ce:3d:40:17:ae:2f:02:20:a7:c6:30:
fe:90:f7:a4:e4:a4:fb:c1:d0:fe:e8:f5:25:e7:4b:
8b:c6:3e:f5:a9:99:fa:74:9b:47:37:45:43:db:72:
a0:de:6f:e3:1a:0f:a5:65:30:ad:d4:06:37:f1:be:
47:98:98:3e:a3:e0:66:bd:0a:b4:27:ba:42:41:26:
53:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CC:C0:BA:76:6D:96:92:7D:38:64:4E:72:74:00:36:CF:D1:4B:15
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:f2:65:93:48:ad:bf:37:08:c2:cd:75:2d:2c:38:ef:eb:3a:
79:04:ce:ef:7f:78:4d:13:6c:93:eb:7e:cc:8e:dc:ad:44:a3:
b3:a1:de:ee:4b:f2:dd:4e:f2:35:02:5b:8e:e3:52:16:f0:3c:
ce:ec:cd:5b:c5:6f:e9:98:8c:7a:93:91:b6:04:fe:0d:0f:eb:
ed:36:0b:78:7c:5c:5c:26:d6:b3:0b:9c:bb:e3:51:ce:d9:fc:
c4:76:3a:49:40:9c:c8:66:9a:d6:4a:40:d1:92:e4:23:14:0d:
ef:3f:fe:a2:e9:2b:31:27:10:bf:b7:1c:77:89:c4:92:7b:4c:
b4:8b:11:ff:99:af:49:ce:05:a9:ae:77:70:50:e9:63:ec:37:
f8:7b:c0:59:22:39:3d:52:97:53:83:cd:57:d1:50:9b:72:b3:
47:2a:7b:f7:97:83:db:93:41:31:01:23:b8:7f:56:07:64:46:
d8:3d:2e:fb:0d:5c:d9:19:58:9e:1b:28:b3:18:6e:1c:79:d0:
58:9c:ad:af:96:d9:58:46:8d:2a:51:e5:7b:7e:1a:55:ba:ee:
9e:d7:9b:3f:3d:03:1b:36:cf:45:47:bf:e3:f5:ac:84:9c:32:
3b:a1:90:c7:e4:79:da:93:9a:03:05:c0:d6:68:78:28:c6:aa:
8d:2f:9e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:46:01 2026 by rpki-client