Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: 2sOz3HnjIFTTvXICqPtwHsORrzHQHlShqPDWvREuwIM=
Subject key identifier: 15:76:AE:10:97:12:36:1F:37:34:44:B2:B9:B8:B7:31:FC:20:74:C5
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 019D2C97BF0FBCC591DC7881F3A4748F20C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 0638
Signing time: Fri 27 Mar 2026 00:00:35 +0000
Manifest this update: Fri 27 Mar 2026 00:00:35 +0000
Manifest next update: Sat 28 Mar 2026 00:00:35 +0000
Files and hashes: 1: 4PSqkbn4bMtBeCnSBAdphuD0N68.roa (hash: 7WdKS6f+17GrfB54aQeANA2RWiVlXakknw1q0Gpsn4w=)
2: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: +tAJUTWaQPyKiEWmLLSc/1FagDZr+Di/uuJECyn6UYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:97:bf:0f:bc:c5:91:dc:78:81:f3:a4:74:8f:20:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: Mar 27 00:00:35 2026 GMT
Not After : Mar 28 00:00:35 2026 GMT
Subject: CN=1576ae109712361f373444b2b9b8b731fc2074c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:31:18:90:60:a2:49:8b:92:54:2c:ef:d6:
7f:ff:c6:c3:17:7d:fa:09:2b:97:cf:b7:f2:67:7d:
01:62:6f:0b:78:11:91:21:49:b0:a6:a0:ca:6e:4d:
a1:6a:c5:6c:49:15:dc:52:a4:44:aa:1d:dd:d2:27:
93:f5:df:54:91:4e:05:b7:b0:3c:19:63:40:38:a5:
8f:df:ce:9b:86:bb:22:5c:8b:a5:b8:02:92:68:4c:
2f:bd:60:2b:41:f3:71:f9:ea:18:bc:bf:9e:e2:07:
96:d7:30:77:d6:35:a9:a5:82:c0:94:e9:5e:b2:89:
d8:58:ea:17:38:94:c5:e4:0a:5e:e7:13:86:86:e4:
9e:d9:cb:5a:3a:7a:90:f8:aa:2d:f9:ac:0d:10:7f:
42:6e:d6:aa:a4:6f:b5:2b:f6:7e:50:24:07:b1:57:
15:e3:a1:1c:5d:80:03:db:95:f3:87:2b:fd:5c:e2:
67:fd:b6:b3:95:21:ec:4f:ff:7f:5c:25:43:48:15:
7f:dc:df:27:65:9c:07:7e:f7:f2:18:c3:16:8c:32:
63:8a:b4:75:a1:cc:62:e6:5b:f9:65:e4:ef:14:a8:
11:02:c6:50:35:8d:e0:27:bf:7d:a9:7d:fb:11:33:
72:fe:8b:76:4c:99:28:0e:56:ff:f5:e0:3a:4e:94:
72:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:76:AE:10:97:12:36:1F:37:34:44:B2:B9:B8:B7:31:FC:20:74:C5
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:75:a4:cd:16:22:ac:fb:55:9e:47:43:c6:ed:d6:23:60:a4:
49:c0:3a:1d:22:20:bb:0b:c6:b7:8d:bc:7e:a2:26:7e:7f:07:
5f:ac:db:66:e0:88:37:76:5e:80:f2:da:cf:3f:88:d1:23:cd:
0c:d5:85:f8:3f:47:05:5d:7f:a1:e8:6f:36:86:1e:30:19:6f:
48:b4:11:45:3a:c2:77:56:7c:b3:60:39:5e:47:9b:90:51:60:
56:3d:a7:79:dd:1b:4b:89:50:a9:bc:8d:87:c0:07:d7:fb:11:
5f:4e:ad:26:e9:21:9f:f5:b9:41:0d:08:09:48:1a:84:c7:f4:
c9:f4:48:f1:4f:76:2d:52:36:b6:27:b2:8c:c6:89:f9:84:b9:
65:46:00:23:34:6b:4d:60:00:24:a9:95:d1:fa:49:2a:96:1b:
10:5e:4d:4a:29:44:39:2c:12:30:6a:db:fb:32:a4:86:f7:52:
5b:bb:b2:85:a8:6c:78:c4:a6:a3:2b:7f:2c:f1:f7:35:6b:7a:
9e:28:db:fd:4c:0b:f3:c7:69:8d:ae:6c:9c:c4:4f:9b:d2:89:
74:d2:4a:8d:38:1e:6a:53:6b:f6:c5:8b:28:a8:4c:7d:e6:03:
3a:bf:76:27:50:a6:ec:64:78:29:eb:b0:0e:14:24:60:94:a5:
a8:40:9a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:00:07 2026 by rpki-client