Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: wFrWyQFBksNo56jmvYIGMTZrvu0AFSL3TTWRJP9Smx8=
Subject key identifier: 7C:73:C1:06:47:32:75:A9:87:EA:4F:85:FD:37:4D:8F:B9:4B:D5:34
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 019D262855390D0B0FE1ED03B4A5E4838BC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 07F6
Signing time: Wed 25 Mar 2026 18:01:10 +0000
Manifest this update: Wed 25 Mar 2026 18:01:10 +0000
Manifest next update: Thu 26 Mar 2026 18:01:10 +0000
Files and hashes: 1: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: OtRGFo99I99UK35uiG8akmI5YzRJGJ3VpoJ2bOFMMaA=)
2: u8VLd__LhC89PUm-bBou8g1XjCk.roa (hash: FAOfHdJRje+Re0ts4CPoL2wF4WdKlrbROQeiewEd2a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:55:39:0d:0b:0f:e1:ed:03:b4:a5:e4:83:8b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: Mar 25 18:01:10 2026 GMT
Not After : Mar 26 18:01:10 2026 GMT
Subject: CN=7c73c106473275a987ea4f85fd374d8fb94bd534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c6:af:f8:af:18:56:0f:69:6b:3d:e8:b6:09:
be:5a:0e:d4:10:2b:61:9e:f4:8b:0d:1a:fc:3f:1b:
ce:48:72:01:70:86:cf:72:2f:c1:2e:0b:29:a0:72:
89:2f:b1:1e:32:a2:20:f1:1f:a4:24:7d:0d:20:63:
24:71:c4:36:4e:a0:b3:9c:3b:52:31:1b:04:55:42:
57:34:fd:81:a9:6c:43:2b:a6:4f:c9:52:f6:61:6d:
10:cc:96:1e:4d:90:63:20:00:5c:67:79:26:db:42:
1d:f7:40:f9:7c:00:e5:83:53:79:8f:d8:5f:24:ac:
8c:bb:41:a9:8c:6d:b9:94:d8:ae:b4:46:8d:f4:cb:
02:14:4b:2b:59:90:4d:50:d5:b1:de:47:9f:b2:88:
00:8c:97:bf:eb:78:ea:33:6b:df:75:45:0e:9f:00:
81:e3:e7:40:f0:55:d0:4e:c4:46:9f:3f:68:b6:11:
21:b4:a8:a2:2b:28:e0:f9:00:34:16:c3:60:d4:94:
40:af:68:7c:cc:a8:f8:d5:8c:ee:cb:fa:49:95:7e:
16:80:66:4a:e3:23:fa:9c:7f:4c:8f:8a:43:89:fc:
97:13:6b:b1:b5:c1:65:92:8a:94:1c:1e:fc:96:00:
33:e5:aa:e6:9c:36:2f:10:fc:6d:cc:eb:9a:ec:66:
00:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:73:C1:06:47:32:75:A9:87:EA:4F:85:FD:37:4D:8F:B9:4B:D5:34
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:19:60:d3:21:d4:e7:3b:9f:6f:ed:e4:ef:cc:dd:d1:fd:ee:
d8:7a:4f:f2:42:6b:0a:50:e6:78:69:49:6c:77:6b:5b:7d:5d:
d9:09:39:9a:cb:f6:0c:c2:96:38:7a:c4:8d:6d:91:2f:1f:13:
22:91:4d:5d:40:a4:3b:7d:1d:0e:39:59:11:49:73:f2:b1:b8:
44:95:7c:8e:60:ee:c0:14:f8:66:ec:cc:a2:bf:d2:86:aa:fa:
73:d6:3c:34:d8:e3:48:5c:0a:99:75:41:6a:ba:93:8e:80:39:
b9:0b:60:37:0a:6e:ba:04:ad:ee:11:ba:19:ae:56:3b:12:37:
54:46:a2:89:bf:35:4b:6f:3d:92:04:5f:1b:5f:51:ae:51:0e:
44:db:4b:85:b6:37:e6:27:6e:d1:c0:79:70:29:c5:a9:0a:e8:
d7:1d:34:13:3e:69:c0:1a:99:b2:9c:47:09:a3:cf:9d:7b:6f:
6e:51:f5:72:eb:0c:94:25:cb:c3:0e:7b:a0:3c:e9:03:9a:cc:
05:dd:e9:c7:c3:f0:ef:77:5b:4c:fb:94:28:72:54:5c:6f:1d:
a6:8c:9d:12:d1:04:8d:63:73:29:5f:3a:3d:ca:94:29:75:14:
d0:99:b8:d7:47:b2:92:24:a6:06:67:07:3a:f7:88:b7:e9:08:
94:3d:37:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:16 2026 by rpki-client