Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
File: cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft (raw, json)
Hash identifier: UQTP4M4VDN8zh/Bs+tSYSwS6LGzoibJRtXWm1Fvy8MU=
Subject key identifier: 6F:FB:B2:87:11:67:CC:45:F8:A3:E9:07:1D:BA:06:32:98:16:E8:54
Authority key identifier: 70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
Certificate issuer: /CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Certificate serial: 019D28164C5CBFDA911B5574C622E5BB40A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
Manifest number: 0BBF
Signing time: Thu 26 Mar 2026 03:00:42 +0000
Manifest this update: Thu 26 Mar 2026 03:00:42 +0000
Manifest next update: Fri 27 Mar 2026 03:00:42 +0000
Files and hashes: 1: cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl (hash: 9UOYHQhjmrImujVuMz+Qjm+MnxIOaCmpJhuU5naMRVQ=)
2: xMaO1kpAAyo6v9RGWtF6_HLkn7Q.roa (hash: N7lnmqCIb1rzPeOt4DsozBGYc4jYHtEfkvBZTc7LyV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:4c:5c:bf:da:91:1b:55:74:c6:22:e5:bb:40:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Validity
Not Before: Mar 26 03:00:42 2026 GMT
Not After : Mar 27 03:00:42 2026 GMT
Subject: CN=6ffbb2871167cc45f8a3e9071dba06329816e854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:f7:83:0c:62:35:ba:f0:46:b3:eb:2b:71:
76:4e:f7:4d:42:3b:24:83:45:b1:15:92:18:f2:c1:
b2:70:91:4f:89:d6:05:3d:fe:d3:2e:e7:69:1b:4b:
27:52:99:4f:02:30:e4:9f:f6:e0:0b:04:e6:2d:0d:
8d:84:1e:ac:bd:6f:d3:3c:d7:43:10:11:3c:a5:e7:
29:70:d9:63:e1:ca:1f:9b:1f:55:c0:b4:48:9d:0e:
ba:31:17:04:c0:16:23:29:cf:ec:73:a2:7c:d5:30:
f2:54:5a:88:10:ae:89:e0:f0:59:b7:d9:a3:30:c2:
ed:77:87:4b:8f:40:73:e3:91:ee:67:1c:64:50:ff:
08:16:f2:9c:48:f8:3a:b9:bb:7c:04:0f:4c:6d:28:
f8:df:1b:a8:6a:8b:56:0d:87:65:b8:20:17:c9:6b:
81:b0:dd:98:cd:4f:f0:d5:01:ca:4b:32:24:64:b8:
de:77:f8:9a:4e:0d:cd:19:7f:45:6e:94:80:24:fa:
26:85:0a:16:32:e0:b8:00:5e:f0:2f:9a:7e:aa:ef:
04:77:f7:ee:03:f9:0d:57:39:3f:ff:a0:39:f6:9f:
95:06:bf:3e:2f:0f:af:5c:ba:8d:89:e0:8f:b6:55:
c1:a9:c7:09:da:16:10:09:39:a9:e7:75:9d:bf:bf:
27:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FB:B2:87:11:67:CC:45:F8:A3:E9:07:1D:BA:06:32:98:16:E8:54
X509v3 Authority Key Identifier:
keyid:70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:49:10:66:06:e5:62:fa:f9:bb:ba:13:cb:a9:09:90:33:26:
a4:b5:c5:16:aa:8f:9f:3a:a7:ed:48:30:f1:8c:c6:dd:96:f4:
3e:18:63:9f:06:a7:fd:84:d7:ae:6d:26:44:c6:29:bb:74:84:
bd:83:0c:f0:de:58:50:9d:c4:d0:81:b8:a6:53:50:5d:43:fa:
43:0e:cc:e5:43:40:6b:7e:93:c5:f4:de:5e:fc:00:ef:07:5c:
41:30:2f:7b:eb:f9:62:da:81:75:9b:e7:e0:ef:fc:ea:a6:52:
d9:b9:28:ee:7f:71:c1:82:a2:25:e5:51:b3:0c:6c:2d:ea:34:
e9:67:25:27:5c:4b:1b:1e:f8:4b:30:a2:cc:c1:68:dd:d1:4e:
01:10:5d:e6:62:4c:63:7f:18:02:db:cf:69:1d:1a:70:63:14:
ce:0f:d1:53:1c:7d:4e:f2:5e:2e:74:95:82:ad:03:fe:85:4e:
e3:a6:bc:88:fe:09:60:bf:e5:28:1d:78:95:a9:37:16:8d:04:
f4:ba:b4:83:f6:1d:ae:2c:3a:10:2a:bf:df:a9:41:73:fb:e6:
12:df:2a:46:8d:0d:a4:4d:e8:59:bd:a6:7d:82:14:6e:76:ec:
f8:41:a5:b9:15:77:a4:b9:c3:3e:09:93:f4:22:34:33:8f:41:
b7:fb:d6:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:54 2026 by rpki-client