Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: nEMrYzaj2saQFYlFFg0u1oN4WP/FcEAKMGL567Fgqf0=
Subject key identifier: E3:F4:3E:9C:70:64:7F:B9:B3:A1:5C:F5:03:12:2C:FE:07:11:BA:04
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 019E1D5999FE7093FA5037E5BAEDF05B6D32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 0876
Signing time: Tue 12 May 2026 18:01:11 +0000
Manifest this update: Tue 12 May 2026 18:01:11 +0000
Manifest next update: Wed 13 May 2026 18:01:11 +0000
Files and hashes: 1: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: j4QXSyMc9ZIVrHBXpa2DCQu/qfqwmpCzbLc3+43R0Os=)
2: u8VLd__LhC89PUm-bBou8g1XjCk.roa (hash: FAOfHdJRje+Re0ts4CPoL2wF4WdKlrbROQeiewEd2a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:99:fe:70:93:fa:50:37:e5:ba:ed:f0:5b:6d:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: May 12 18:01:11 2026 GMT
Not After : May 13 18:01:11 2026 GMT
Subject: CN=e3f43e9c70647fb9b3a15cf503122cfe0711ba04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:19:66:27:eb:3d:7f:d0:21:82:48:31:bf:f2:
a6:58:87:f5:c1:d1:30:15:11:f1:a2:ec:ea:67:24:
55:88:38:b6:13:c6:32:9b:1b:39:77:1b:c8:57:3b:
fd:af:91:ab:12:6a:05:8a:05:17:31:b7:8e:00:7c:
be:7c:cf:64:6b:ff:8b:fd:2c:c3:cb:20:fe:03:43:
ec:c6:57:36:99:a1:3e:91:6f:58:73:6f:41:6c:a0:
41:c8:bd:56:1c:37:a7:cf:3f:6a:68:87:d0:06:d6:
d0:0a:09:a4:0e:ce:8a:fd:5d:b6:35:dd:c7:98:af:
19:05:71:af:ff:fc:90:ec:90:66:3a:90:61:25:18:
b9:df:10:19:4e:b0:09:15:87:42:3e:e2:54:93:e7:
63:4e:91:69:7d:13:b0:b7:13:cb:bf:10:4a:66:89:
9f:fc:39:ea:2d:7b:d0:19:f5:96:53:71:c3:49:2c:
a4:e4:6d:d6:0a:3b:9c:31:12:bb:8e:59:a9:7e:ed:
ce:e7:5d:3d:1d:40:8b:6b:4c:37:e7:39:a2:90:39:
cc:90:96:bc:49:74:7a:a2:4a:86:ba:67:e8:12:27:
ff:fd:68:92:d0:a8:09:f6:bb:18:63:43:81:e3:77:
0d:ca:8f:ec:2a:45:82:11:4a:64:52:8d:aa:73:0d:
4c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F4:3E:9C:70:64:7F:B9:B3:A1:5C:F5:03:12:2C:FE:07:11:BA:04
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:3a:55:93:c7:98:4e:cf:fa:17:bd:77:a6:4b:fd:f9:b5:ed:
e4:f1:35:b6:65:b8:b7:7c:5c:c6:4d:f7:2f:f3:5d:17:c2:90:
97:14:a1:bb:f6:71:31:bb:f1:c7:3e:bc:20:b5:1b:b0:0d:7b:
6b:c0:b3:e8:2a:87:5f:27:95:01:ec:ed:f7:ef:a9:53:5c:7c:
44:25:e6:e0:94:8a:59:fe:ec:1e:b5:55:6b:60:bc:44:d2:6a:
f7:5a:bf:db:80:0c:e9:22:c3:89:28:06:9f:e7:b2:a5:9c:4a:
6f:1c:f7:26:cd:1a:13:1a:e2:c7:0a:69:31:71:b8:3a:59:73:
cf:06:77:60:63:be:6a:de:ca:ce:8d:85:f1:88:9b:43:4c:f6:
e4:5c:37:cb:64:21:1c:dc:2c:5f:11:e9:0f:64:81:1e:e7:fe:
31:3b:36:4a:86:8d:d7:cb:3d:3d:e1:c1:30:30:ef:ae:3e:0f:
4f:12:20:2a:26:87:ca:05:a2:68:44:da:bb:d4:d2:31:1f:dc:
dd:22:7e:a2:b9:8b:9c:4a:9c:5e:cb:e7:86:50:7b:27:75:65:
20:08:86:a2:fb:d8:e3:2c:dc:83:84:f6:7c:eb:e2:95:a0:c8:
2a:0e:2a:97:d2:e0:f9:b6:a3:22:be:fc:a3:81:b3:47:98:1b:
95:5e:11:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:37:28 2026 by rpki-client