Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
File: cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft (raw, json)
Hash identifier: lsvITOwlWzk0CB9RQRLruy/pZhjUwu/8uZXlB8vC04s=
Subject key identifier: BB:20:04:B3:32:FC:85:03:49:F0:3E:49:CE:61:FB:CA:23:38:A2:40
Authority key identifier: 70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A
Certificate issuer: /CN=70ea97d1626b126f591c6fb31e8ecb8939db422a
Certificate serial: 019D29608ED584762B5FF19A94201AB02832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
Manifest number: 01B1
Signing time: Thu 26 Mar 2026 09:01:26 +0000
Manifest this update: Thu 26 Mar 2026 09:01:26 +0000
Manifest next update: Fri 27 Mar 2026 09:01:26 +0000
Files and hashes: 1: cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl (hash: qn+77ad/BxbmTA17GTY6qSdIs6OK+d8dH/8iPJsZC7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:8e:d5:84:76:2b:5f:f1:9a:94:20:1a:b0:28:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70ea97d1626b126f591c6fb31e8ecb8939db422a
Validity
Not Before: Mar 26 09:01:26 2026 GMT
Not After : Mar 27 09:01:26 2026 GMT
Subject: CN=bb2004b332fc850349f03e49ce61fbca2338a240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3b:b6:a5:9a:be:82:e9:a5:1f:ee:ff:1b:79:
3c:a3:1b:e4:06:b3:48:dc:1c:c2:0f:21:62:c2:f6:
3b:7c:3c:de:30:e1:fa:a8:96:9f:f3:4c:bb:be:07:
28:d5:76:c9:53:b4:e2:94:df:b9:f1:d9:f9:ce:f5:
de:f6:ed:64:cf:5e:11:36:51:83:a8:f2:02:13:52:
77:47:c7:88:f6:fa:c9:3d:bf:96:58:82:17:40:76:
05:8c:b1:d3:4a:32:47:5b:36:05:c0:da:6a:d8:54:
f5:e2:24:dd:30:61:73:a3:0d:ff:13:48:aa:dc:02:
b8:56:d9:d8:af:3d:52:20:b6:8b:50:c5:e2:e2:c7:
84:8f:91:b8:68:c3:82:0b:4c:e1:dc:11:9d:a4:f4:
86:e4:e7:50:54:7f:38:e2:e0:e5:64:4d:e2:8f:94:
dc:1a:e4:40:0b:3a:76:09:a2:d9:e3:30:72:7e:09:
0d:c6:a4:2a:e5:0f:a1:a6:c1:c0:28:10:3e:9c:2a:
d8:e2:ad:53:7b:4a:3a:f2:78:22:d1:1b:52:4f:34:
97:03:e1:db:62:78:2f:59:1c:ac:2a:12:74:06:ea:
af:d6:8b:5e:43:f4:30:a9:05:9d:1c:d6:43:23:f3:
7f:9d:d6:d2:0f:7a:cd:0c:ae:18:7d:25:e0:cc:c2:
67:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:20:04:B3:32:FC:85:03:49:F0:3E:49:CE:61:FB:CA:23:38:A2:40
X509v3 Authority Key Identifier:
keyid:70:EA:97:D1:62:6B:12:6F:59:1C:6F:B3:1E:8E:CB:89:39:DB:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOqX0WJrEm9ZHG-zHo7LiTnbQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b63569-a267-4144-ad30-ec9a7d1bdf5b/1/cOqX0WJrEm9ZHG-zHo7LiTnbQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:4a:b7:04:ff:7b:bf:87:3d:e3:35:91:4e:31:82:c4:c0:7e:
2a:ad:d1:af:66:05:63:f6:f6:f6:8f:0d:eb:a9:5d:4a:e0:da:
be:0b:6b:e9:1d:61:6a:dc:60:a9:9c:b7:95:c8:84:b3:b1:5b:
4b:c6:48:20:71:0f:a7:6b:3a:8b:69:cd:1f:4d:44:8c:8a:52:
c1:ed:2c:4b:5e:d4:06:e7:d9:c9:a5:87:33:1f:fd:b4:13:f3:
c9:7c:6d:a0:89:50:b6:d4:f5:c0:d3:2d:34:15:d9:21:ba:59:
08:54:de:72:83:b4:5a:14:c4:6b:ac:0a:29:31:f8:f5:92:fd:
bb:c8:45:70:5a:7f:21:e9:57:f8:1b:67:90:69:48:ef:87:c2:
61:e5:15:e8:ce:2f:3a:07:33:f5:9d:74:5f:f5:f2:ef:56:6b:
54:ea:7a:af:bd:02:9a:0c:3d:07:69:50:c8:e9:dd:fb:2f:bf:
9c:7c:11:ca:d6:b3:4a:21:93:e7:6d:80:4a:a5:67:0d:7d:89:
8c:76:3f:3e:a7:27:b7:8e:0b:a7:4b:8d:bc:bc:67:b9:e9:99:
f5:c9:0e:d7:f3:b6:59:6c:e9:ec:42:be:f5:49:8f:66:be:a4:
fd:b0:ec:6f:6f:3a:b5:e9:46:89:97:5d:74:a1:fc:c4:83:5a:
ca:e5:64:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:37:14 2026 by rpki-client