Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
File: CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft (raw, json)
Hash identifier: QUx8Pw8KWQe5aCQ24SV9ZPbnanoNqcHUQP8UF+Rrmp0=
Subject key identifier: 64:86:2F:AA:58:6C:8E:E8:EA:A7:A2:2A:18:99:0B:92:3B:18:C1:AB
Authority key identifier: 0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
Certificate issuer: /CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Certificate serial: 019E1C7D5CA91BC424D6A4B076055FEAC649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
Manifest number: 0701
Signing time: Tue 12 May 2026 14:00:38 +0000
Manifest this update: Tue 12 May 2026 14:00:38 +0000
Manifest next update: Wed 13 May 2026 14:00:38 +0000
Files and hashes: 1: CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl (hash: 26OA06kY853Nf+xAvYiMH1JixdeMswbPQETFyes1Qp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:5c:a9:1b:c4:24:d6:a4:b0:76:05:5f:ea:c6:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Validity
Not Before: May 12 14:00:38 2026 GMT
Not After : May 13 14:00:38 2026 GMT
Subject: CN=64862faa586c8ee8eaa7a22a18990b923b18c1ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b8:4d:8c:b8:f6:29:ce:5c:df:a6:21:61:f4:
b9:aa:bc:5d:dd:58:d0:39:2b:3b:7a:e4:12:74:be:
ed:8c:b7:b6:95:7d:94:bd:d3:60:dc:6d:e0:cf:b0:
08:00:da:e7:81:5e:0c:62:31:b4:7d:df:6a:83:6c:
39:94:c2:dd:0e:34:7e:1d:d2:b1:d8:63:b6:be:aa:
74:18:4b:a3:f8:66:8e:e3:4b:47:29:7f:d6:4b:72:
78:cd:c2:7a:d9:88:67:9d:6f:75:10:50:39:a7:ef:
b0:f6:db:2e:17:fa:87:bd:be:fa:7c:ed:56:a3:c8:
88:a5:07:c4:73:15:2b:0b:d0:6a:0d:ea:86:de:8f:
f8:16:ed:7c:78:f6:a5:e5:be:a8:75:84:18:e0:2b:
45:03:f8:a7:5e:4b:5e:78:60:5f:4e:03:7b:10:7b:
af:b6:81:de:37:71:dc:93:4e:f4:c9:de:13:47:ee:
2e:bb:47:ec:af:5f:6d:ec:f3:14:09:8c:f1:9d:ea:
be:d4:44:b4:6e:3a:e4:ba:96:1c:d7:bc:86:ba:17:
81:af:8b:f8:a1:b1:c5:df:e1:59:59:b5:67:58:3f:
42:3c:99:dc:ea:f2:78:63:8a:bf:0c:50:8a:e9:b2:
39:e6:8d:59:fd:c0:15:21:84:e7:78:fa:7d:1e:59:
a0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:86:2F:AA:58:6C:8E:E8:EA:A7:A2:2A:18:99:0B:92:3B:18:C1:AB
X509v3 Authority Key Identifier:
keyid:0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:64:5b:c4:7d:5f:06:c4:ea:9b:f5:e6:02:4b:8a:24:fd:6c:
bd:dc:a4:30:ec:ab:30:05:e0:f1:34:15:f9:97:60:08:7a:da:
34:25:ed:71:4f:c5:81:6d:b2:80:96:00:6d:61:7d:90:4b:a7:
2e:d2:b8:4c:e3:3f:e2:ee:9e:49:ae:3f:88:bc:e2:0b:79:fa:
7e:c9:2c:75:02:2c:78:8b:93:87:e1:77:04:7e:94:d2:f7:64:
f3:fd:fb:c8:0d:1d:06:c5:85:27:76:c0:7c:f7:ab:b7:1a:13:
48:0b:a1:62:c0:2f:ad:64:b7:cc:c4:74:2f:b0:1c:5b:9c:ec:
f3:a8:dd:1a:4d:83:31:c1:88:6b:f6:31:9e:fb:73:6a:a5:6d:
3b:86:b7:b6:a9:ea:5d:19:d0:ac:64:26:d7:59:36:6e:c5:94:
ed:3f:27:94:53:6f:e8:b9:c2:90:17:77:8c:33:30:a5:9f:1b:
da:97:61:07:5a:f8:ba:1a:08:6b:c9:c9:fc:99:64:80:c4:bd:
b8:7f:21:6d:46:bd:64:29:47:ca:7a:03:d2:d7:a9:72:71:45:
56:f8:0b:0c:6b:9f:58:b5:94:93:16:86:95:69:36:40:04:e0:
8f:1a:30:7b:cc:28:6e:48:6b:54:7f:59:95:ad:41:b4:97:d9:
c5:02:a0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:18:02 2026 by rpki-client