Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
File: Cga2XLuXZnq9_5uGGiL50B0dRss.mft (raw, json)
Hash identifier: d6+saORTdwcsR+skhk86vQvUpjCXUWkiirYeJl6/uWI=
Subject key identifier: 7A:C4:7B:DF:A2:74:3F:CB:6F:D5:C4:B3:C1:0C:6D:EE:69:AA:02:A5
Authority key identifier: 0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
Certificate issuer: /CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Certificate serial: 019E1EA3AD64EE7B05373AAC3872614862BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 00:01:43 +0000
Manifest this update: Wed 13 May 2026 00:01:43 +0000
Manifest next update: Thu 14 May 2026 00:01:43 +0000
Files and hashes: 1: Cga2XLuXZnq9_5uGGiL50B0dRss.crl (hash: JvGDcKxlATyK5QE2829bbXRtxgcmaDPqBYqdIgfaPDc=)
2: RpFgP93ClwNM-ocN6qvLfic7DMs.roa (hash: 5S/X3det1+F3wpDnXO5aEBYjQHz6Mc8fd6NBqHj9aKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:ad:64:ee:7b:05:37:3a:ac:38:72:61:48:62:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Validity
Not Before: May 13 00:01:43 2026 GMT
Not After : May 14 00:01:43 2026 GMT
Subject: CN=7ac47bdfa2743fcb6fd5c4b3c10c6dee69aa02a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c8:63:08:ca:b7:9f:a8:40:0e:22:55:bc:d3:
a6:fd:78:22:bc:ba:ce:d7:20:0b:95:2a:5c:7a:bc:
70:5a:23:3b:ef:45:0f:61:3e:5e:63:98:87:61:ee:
0c:e6:1b:47:b5:bc:ca:f9:52:4d:39:d9:48:51:28:
7e:e8:36:45:2e:74:e2:4f:c8:42:95:dd:c3:82:8c:
a3:97:84:ac:07:87:b1:dc:28:fa:3d:0f:19:2a:c8:
5e:32:c1:a1:22:22:0b:54:b2:08:20:77:42:b5:54:
bb:b6:47:d5:da:56:01:c9:4b:d8:b8:34:fd:36:15:
23:34:b0:20:c2:df:31:49:fd:3b:59:6d:f5:0d:56:
ef:1c:d4:7d:b5:15:4e:3c:c0:0c:fa:16:62:66:de:
df:96:c0:1f:da:01:a8:ca:5f:37:cf:4e:5c:7a:27:
93:7d:87:4d:05:97:8b:aa:dd:75:75:a3:73:37:ed:
ad:5d:14:49:4a:b7:d5:ba:58:e0:7c:26:c3:ae:65:
37:a3:6c:99:91:50:d2:f1:75:96:0e:2f:8c:a8:11:
9f:4a:a5:16:78:fc:cf:04:bc:57:0c:cc:78:f0:23:
b3:8c:54:6a:63:4c:bd:a8:5d:a1:bb:3b:26:7f:7c:
25:29:67:21:32:77:c5:9f:17:04:6d:70:e3:8c:fe:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C4:7B:DF:A2:74:3F:CB:6F:D5:C4:B3:C1:0C:6D:EE:69:AA:02:A5
X509v3 Authority Key Identifier:
keyid:0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b6:61:b8:b8:2a:c3:6c:e4:7e:b6:69:90:9a:f1:5f:85:e5:
a2:a8:cd:63:40:d3:12:d5:44:f7:87:e2:fe:89:11:f0:d2:24:
63:83:e8:80:8e:47:e6:d5:ac:95:e3:1e:09:e6:ac:64:64:62:
af:73:16:08:1f:5c:c3:d0:01:88:16:d9:a4:6c:68:44:bf:2d:
8f:c0:c4:be:18:cc:45:bd:70:b8:ed:80:5a:2b:4e:99:0c:36:
87:60:6e:47:96:ac:07:da:e5:6c:6d:d4:a4:dc:0b:7e:a6:41:
6f:f4:65:c4:1a:9d:41:81:d9:44:ea:e3:de:db:47:e1:97:ce:
62:1d:f7:24:c1:ac:a8:73:bb:8f:a5:06:52:c5:a7:a4:ec:47:
2a:a0:b8:6b:0d:b1:9b:92:0e:e2:3c:3b:fd:08:34:19:3f:28:
bd:3d:f4:56:eb:5f:de:0d:d5:54:9e:a6:4c:8e:fa:b0:76:d6:
5d:e4:4d:2b:5e:9b:78:80:10:a7:e0:9b:00:5b:5d:54:4e:c1:
c2:33:ab:c2:f9:f9:ca:71:15:9a:78:5f:4a:01:59:42:be:9a:
44:68:91:fb:02:a0:e7:40:97:ef:36:c3:8a:ee:9a:3d:0a:91:
c3:dd:61:f5:ec:d6:c0:8f:98:b8:53:55:af:24:bd:93:95:7e:
06:50:0a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:39:07 2026 by rpki-client