Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: 7k1xapUUpjJShFaSV3sc0vsZQZGi7TrF78SKQT6DJ5M=
Subject key identifier: A1:67:F3:07:F7:72:CF:BE:F9:3D:5C:67:2F:1E:C1:58:DA:6E:C3:BA
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019D265F3B48F421B2633A93A9A3011F92FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0B00
Signing time: Wed 25 Mar 2026 19:01:08 +0000
Manifest this update: Wed 25 Mar 2026 19:01:08 +0000
Manifest next update: Thu 26 Mar 2026 19:01:08 +0000
Files and hashes: 1: AaBEOZ3ZZUPRMOYr0HR7shqRlxU.roa (hash: oniToucQYdIHu6lqhV89eqCsufsXROkFzPNah6lqOE4=)
2: BLrQemDWjWx48NYMm5EU7FEE2fs.roa (hash: 3uO6NEJSsXjHXxW7DrT2w1ELWOo2S4puGWGymObsq9I=)
3: cCJJNwn_gJuAQtsmGPX_UDP9tnY.roa (hash: rNInpx5nNSrUT999uu8Pr9WEUgG03eUXK2AlHeyvWXE=)
4: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: btdMXVYbdJGSSG7RVwJHIl2Qvn5xTj4bD9EvKWkiVio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:3b:48:f4:21:b2:63:3a:93:a9:a3:01:1f:92:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Mar 25 19:01:08 2026 GMT
Not After : Mar 26 19:01:08 2026 GMT
Subject: CN=a167f307f772cfbef93d5c672f1ec158da6ec3ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:b1:90:50:f3:c7:00:d2:0d:43:34:54:71:
5f:23:a4:0b:fd:a2:5d:a2:79:ef:bd:8e:80:8c:e6:
85:e6:82:07:72:25:89:e8:de:ea:15:c6:5c:e5:a8:
31:30:99:29:fa:3d:ff:ab:0f:8a:94:2f:fb:60:da:
d1:3f:c8:5a:61:10:30:1c:a0:db:dd:fa:33:6a:d9:
d4:3d:97:b2:67:2a:5e:b5:7d:60:7e:80:2b:05:eb:
e5:0b:d1:69:5f:22:42:7d:da:1e:0e:5e:18:b9:14:
bf:8b:04:86:50:6a:22:0d:44:05:a7:70:d5:32:60:
83:2f:26:d5:68:5d:b4:bc:69:eb:62:3e:20:fc:2c:
54:8a:40:ee:5e:a3:b8:89:66:68:d2:4f:3f:78:58:
90:97:dc:28:cf:c9:f3:f6:ef:5f:ae:e5:b5:7c:13:
30:71:9c:9d:ab:19:89:02:e0:97:c7:5c:c0:e4:eb:
3d:37:fe:d4:a0:cd:0a:c4:f4:25:b5:1d:df:ae:94:
2f:cc:43:dc:1d:34:48:94:38:62:6d:ca:a3:d9:7c:
f8:11:6d:48:04:7a:8b:fc:a5:9d:d4:eb:0b:f9:a2:
15:c8:46:55:84:79:6d:34:49:6b:f0:d5:b0:a5:2f:
6b:a9:b8:62:52:31:81:75:d7:4e:40:2f:07:0c:2a:
9e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:67:F3:07:F7:72:CF:BE:F9:3D:5C:67:2F:1E:C1:58:DA:6E:C3:BA
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:88:a0:85:88:51:a4:de:69:73:8c:2c:d7:ea:ea:fa:8d:2f:
83:81:ef:2b:89:be:a5:45:5f:d7:df:bf:cd:95:de:d6:68:4d:
c6:0d:d3:91:cb:bf:d1:9a:ba:90:cc:26:90:d1:73:a9:70:f3:
27:e8:ec:76:68:7e:95:60:60:e6:86:bf:98:9f:65:35:e0:1e:
b6:56:62:cc:66:4f:a0:7f:79:5e:85:33:cc:00:be:0a:bd:6c:
c9:a2:51:af:eb:f8:6c:7d:92:4d:c4:e6:f3:c4:18:a4:84:79:
c4:de:4b:36:d1:54:c0:c4:26:7d:f9:eb:3c:df:24:fa:85:60:
f7:33:a0:06:01:e1:f2:f4:91:a8:b7:1b:b2:fb:4c:18:8a:ae:
a7:a9:35:16:1b:ab:45:3b:46:03:61:8f:e2:66:67:2f:35:0d:
19:f3:15:cf:c7:fe:2e:51:7c:01:97:ae:7c:44:1f:42:2a:18:
5a:e2:a9:9f:bc:e5:5f:31:40:46:9a:41:cc:09:e0:07:15:73:
b0:82:eb:f2:49:e2:98:72:7c:b4:8a:96:57:f9:ae:00:51:41:
3a:1e:e5:a7:71:88:e2:bf:03:46:39:48:75:4f:a5:fb:11:fb:
85:88:b2:fc:01:50:2d:18:3e:d8:04:60:42:a0:1c:b8:a5:0c:
68:0a:d7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:52 2026 by rpki-client