Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: qGCO4QyAgSAA+Lct/VAfmqr5yXp8zFrrNO4ySvZZACM=
Subject key identifier: 02:A3:34:8A:AA:F8:EE:1A:8E:55:F3:49:E8:9C:07:8A:35:97:B6:DD
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 019E2091C935EC2624EB61D4BDAAF2D9F134
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 07F0
Signing time: Wed 13 May 2026 09:01:25 +0000
Manifest this update: Wed 13 May 2026 09:01:25 +0000
Manifest next update: Thu 14 May 2026 09:01:25 +0000
Files and hashes: 1: Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa (hash: aBGsg4UHN28OpsS2xFbkAdXhnlHxP423kuvv3ReKy28=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: e2NCy9u3VvuAkHzogDPRVhjw/j2WDfzJr7t/gc39mOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:c9:35:ec:26:24:eb:61:d4:bd:aa:f2:d9:f1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: May 13 09:01:25 2026 GMT
Not After : May 14 09:01:25 2026 GMT
Subject: CN=02a3348aaaf8ee1a8e55f349e89c078a3597b6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:30:31:2b:ac:24:58:62:2f:74:2a:37:1d:6e:
0a:eb:66:23:46:82:97:2c:fa:1d:24:14:ff:06:f2:
33:3c:30:18:cc:ed:22:30:68:3f:a5:23:0c:0b:de:
e2:a4:3c:ee:50:58:03:b9:e3:17:cb:2b:2d:a8:62:
c2:b7:c4:f3:e3:1e:1c:d8:53:12:0e:5a:26:ea:6c:
8e:bd:70:30:c6:45:a5:4a:cf:2b:63:b1:8d:98:79:
68:b8:76:b8:98:af:1b:88:3d:2e:d9:f3:f9:63:ac:
bc:80:d3:2c:65:96:e3:8d:53:70:af:72:5d:10:9f:
20:e5:b9:f5:7a:56:1b:c2:09:a1:1b:02:2a:e5:e2:
c9:97:a3:97:6e:95:2c:99:4f:02:db:9a:97:86:04:
72:c8:ad:cf:f6:db:be:d8:ab:f4:11:f9:a8:ae:e1:
fd:db:11:cb:70:50:1c:9c:25:2e:7b:62:d1:5b:32:
a2:1d:14:b7:27:46:54:e3:64:22:bc:55:a3:58:45:
8f:e8:67:0f:be:97:8c:d1:20:95:05:c8:75:9f:2f:
15:71:9d:84:7c:d0:d8:7a:ee:4b:4f:db:f5:0e:bc:
1b:51:a9:a4:b6:98:0b:27:25:b9:f6:5f:23:9a:0c:
45:39:af:8c:37:95:e2:84:9e:c8:6d:b6:3b:7d:90:
09:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A3:34:8A:AA:F8:EE:1A:8E:55:F3:49:E8:9C:07:8A:35:97:B6:DD
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:da:2a:d9:76:83:82:bd:50:3d:df:96:5e:c0:02:52:64:28:
71:10:00:7d:b6:fc:d6:25:88:cd:e8:bd:63:2d:dd:21:18:fc:
47:5d:53:29:cf:2c:d2:a7:77:93:21:01:aa:54:0e:e4:4a:42:
3b:53:c3:32:31:fa:31:69:86:9a:5e:f5:49:44:1d:26:1c:86:
5f:8e:09:ee:c5:11:ad:30:98:dd:e0:9f:8f:74:32:05:75:ef:
68:04:61:38:ff:94:fb:00:f5:07:66:f3:67:72:f7:31:41:a6:
ca:49:67:bc:ae:14:6f:ea:cf:a5:cd:fe:83:4d:3b:71:b0:72:
ed:32:28:bd:d4:da:da:50:9c:ca:e8:e7:3f:3e:15:07:4d:08:
c5:ef:a0:c6:fb:3e:ef:d1:a8:f0:07:54:f9:ac:9d:fe:a1:e2:
57:43:0c:ae:46:03:1f:5f:91:06:38:1c:e5:cb:dd:e4:c2:7d:
2b:05:b6:7d:30:01:3f:df:75:e7:4c:5d:87:25:93:05:7c:b1:
b5:6b:a9:ca:fc:12:4d:a0:90:55:57:ab:42:64:20:18:a2:da:
54:18:1c:0d:13:bf:da:f3:6f:a0:15:67:fc:b9:a0:f3:d6:2a:
f9:4e:87:d5:38:32:26:ef:83:14:68:ed:4e:cc:f0:6d:c7:06:
fb:19:3a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:38:53 2026 by rpki-client