Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
File: cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft (raw, json)
Hash identifier: ddkC3NheCmQmOVRjJg/Oa/qLGjB2srqJNFU9SpaK0zI=
Subject key identifier: 9C:DE:62:00:89:EA:B7:9E:DA:EF:13:0A:58:4D:A9:93:E9:0D:77:F7
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 019D27E00B936F57B6DEF7073B7D42F36120
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
Manifest number: 14D0
Signing time: Thu 26 Mar 2026 02:01:27 +0000
Manifest this update: Thu 26 Mar 2026 02:01:27 +0000
Manifest next update: Fri 27 Mar 2026 02:01:27 +0000
Files and hashes: 1: cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl (hash: xrfq0rEvPlaQ7caP14gXIs+9BEF/SF7cV99XwHjukUE=)
2: fb3NlfyiI12-2naS91KzEXDuLcM.roa (hash: xFi8qis3wYM7XGFa9w0jwhmsTCg5KkrRoqZqwdJaBxs=)
3: lbi2EEOv7Zrhga3le8zAYXKzasA.roa (hash: cxSzMHs1P7K5DFoalN/ZGFsw0iciyI3MRqOB+G9rhGs=)
4: rroLiEQZHgTeW99j0qiBIrwu5EA.roa (hash: VmsVwoTJ6PHL/2Ntb43rkgeOI/CytWooyIbWbTn6sKE=)
5: ugJS22ubb1YAQxxSrPhzSyT4d4g.roa (hash: SMm0KdkJcDZcOqPotbm0PXIQqsivUC/ILvOz2gqm9+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:0b:93:6f:57:b6:de:f7:07:3b:7d:42:f3:61:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Mar 26 02:01:27 2026 GMT
Not After : Mar 27 02:01:27 2026 GMT
Subject: CN=9cde620089eab79edaef130a584da993e90d77f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:03:ff:97:48:c4:62:f5:81:ad:04:fc:d4:
1f:85:b7:bb:25:3d:16:93:c3:9e:c2:ea:54:ad:fc:
63:c7:ca:f2:f7:5f:22:92:9b:25:2b:89:61:69:3b:
dd:84:e7:a7:54:4a:c2:f4:43:ff:fc:9a:5f:44:60:
08:e0:d7:da:f3:ee:82:e2:72:1e:ba:c5:8b:2d:60:
02:55:a8:66:ff:c3:6c:8e:48:dd:cf:3d:ee:0f:a8:
95:49:34:8e:da:ee:aa:a7:68:cd:f3:37:3e:41:eb:
d6:48:cc:0a:eb:0e:f7:e9:b3:43:7f:5f:19:8f:07:
3f:c2:7c:ac:cb:2f:63:eb:9a:a9:e0:83:3b:54:58:
c1:27:0b:8f:4d:49:5d:8b:7d:be:13:0d:b4:97:50:
3a:29:c4:cf:9c:d6:9a:59:bb:d1:ee:e8:23:22:20:
e8:14:e1:f1:29:55:23:9d:ba:49:f2:6a:b7:44:a1:
82:7c:dd:76:87:98:a3:42:12:6c:69:00:68:de:bf:
cd:9d:eb:a2:f7:56:3e:4d:87:35:f1:a3:cc:42:26:
9c:88:b7:58:4c:4c:9f:71:2b:9c:32:9a:e8:d2:b4:
40:d2:3a:42:06:cc:44:ed:32:80:f1:62:be:bd:11:
96:28:6d:17:e6:d0:8a:72:d0:6b:e7:5c:e8:6c:6f:
9d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DE:62:00:89:EA:B7:9E:DA:EF:13:0A:58:4D:A9:93:E9:0D:77:F7
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b6:98:2c:d7:c0:29:3d:7f:34:88:dc:43:cf:8e:3c:7e:03:
da:30:f4:98:23:ca:cd:d0:f7:61:38:b4:ab:d0:35:63:1d:6f:
06:d3:4d:72:23:a4:03:37:32:14:0a:2d:a6:13:41:d5:4e:f2:
97:a0:5d:69:cc:f0:be:a0:fb:6f:61:3f:22:e8:23:86:b8:05:
ef:11:8f:b5:93:ed:6b:84:06:55:a0:2a:f3:28:ff:81:91:9f:
d2:d0:b2:ba:e2:ba:33:5a:4d:20:38:04:15:03:88:bb:69:da:
e7:bf:af:4f:be:58:8c:30:98:e4:51:6d:e7:b3:60:02:a4:04:
86:8b:d6:b0:ce:a4:0e:26:2f:ed:48:da:f9:3f:9a:55:4c:39:
e2:e5:35:34:f9:3b:f7:b3:d7:0a:71:9f:99:aa:d8:e7:60:d2:
4b:f1:e6:7b:e4:b0:31:46:db:31:ab:ec:8a:87:9b:3b:57:7a:
8d:e5:45:29:95:b9:d3:6b:90:3e:dc:06:74:3a:22:10:6a:a7:
3e:33:e3:f5:d1:8e:ab:51:f4:35:1b:d2:28:cc:af:02:6b:a4:
9d:ad:61:6e:eb:a8:44:51:fe:07:98:03:03:5b:4b:17:bf:e7:
9b:da:5e:0d:6f:d4:8b:c5:9f:1c:27:21:71:91:b2:2a:e8:59:
b8:a8:06:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:07:59 2026 by rpki-client