Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File: cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier: TlgAu1cc48MlV46aL8OTexBMgH+ZyKIgRk+hCZBA25A=
Subject key identifier: E6:6A:7F:F0:A8:EE:32:0C:1B:35:D4:F2:82:3D:16:E4:8E:E1:4A:20
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer: /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial: 019D284E02F56B650ECCD574E4BC9BCF1117
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number: 0630
Signing time: Thu 26 Mar 2026 04:01:34 +0000
Manifest this update: Thu 26 Mar 2026 04:01:34 +0000
Manifest next update: Fri 27 Mar 2026 04:01:34 +0000
Files and hashes: 1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: VU+m4cX8M1M6CCwpWcGwlLf9Mg0qCCf4AfBYhaBY1mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:02:f5:6b:65:0e:cc:d5:74:e4:bc:9b:cf:11:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Validity
Not Before: Mar 26 04:01:34 2026 GMT
Not After : Mar 27 04:01:34 2026 GMT
Subject: CN=e66a7ff0a8ee320c1b35d4f2823d16e48ee14a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:b1:02:6a:b6:59:4c:55:fb:f8:5e:49:a0:b5:
14:1c:90:21:dc:36:ca:11:d1:5d:bc:bc:4c:b1:ce:
b3:ef:9d:89:60:e0:16:43:62:e8:fc:2c:f1:62:b1:
7d:01:2d:20:da:13:a5:13:00:c0:55:59:23:0e:38:
e8:fa:f4:d7:88:bd:32:fb:e3:78:b3:69:46:41:47:
48:a0:c1:c1:a9:09:fc:e8:be:86:d8:6f:2a:f9:66:
e7:7c:16:0d:1e:89:83:2c:1d:a8:15:14:e4:7f:10:
37:81:84:6f:67:18:c4:76:65:b7:dd:a2:3c:09:09:
ce:bc:65:44:e6:d9:ce:ac:c9:03:09:44:ee:b6:15:
a3:7c:a1:f6:e1:92:17:b1:1a:9b:a5:0d:d0:38:7e:
d7:07:fa:76:e6:5f:8c:6f:0c:ae:d2:3e:f3:43:b0:
85:97:07:27:3c:67:da:4d:e9:0d:d6:ca:82:89:40:
98:13:e9:05:ab:65:99:41:c9:f5:39:a2:16:6c:61:
4f:11:27:69:dc:ae:37:d9:0b:fd:71:9e:00:63:5d:
75:15:23:93:0c:a0:ef:a9:3d:f4:db:f8:a6:34:80:
2b:96:68:01:ff:46:7a:7e:bd:e3:06:14:0a:aa:5f:
82:33:02:ee:09:68:e0:2c:ad:0c:55:98:c8:6c:9c:
bc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6A:7F:F0:A8:EE:32:0C:1B:35:D4:F2:82:3D:16:E4:8E:E1:4A:20
X509v3 Authority Key Identifier:
keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f1:28:c2:3b:ef:4d:54:3c:dd:93:fc:b2:81:32:f3:21:3c:
55:a0:a7:a8:94:7a:f0:17:83:6c:7f:58:07:20:47:30:49:68:
7e:e1:16:d3:25:dc:9e:30:7c:94:2c:54:0d:35:e1:47:d2:c4:
f1:cf:04:93:e7:93:ec:9a:63:73:c9:32:7a:c4:c8:35:c2:86:
79:b6:83:89:50:31:74:6f:be:45:52:bd:c7:bd:0d:b6:32:c5:
19:e2:54:80:fb:04:6d:1b:8d:e7:2a:e7:25:93:ff:fc:b7:40:
4a:2d:8c:ac:3b:1d:7d:4f:97:ee:c9:71:18:95:b8:45:23:47:
af:fd:ad:7d:f4:21:e2:71:60:80:d1:03:8c:31:2c:29:83:04:
39:12:ca:00:9e:c8:00:7d:b7:2e:25:0a:37:1f:eb:92:ee:fe:
06:3d:58:a4:fa:17:0a:32:2a:d4:7c:f3:d1:0a:cf:fc:9a:d4:
b7:1d:91:a2:f2:74:54:60:2b:f5:01:cb:c7:5f:29:3e:da:0f:
77:61:0f:2d:41:90:ed:30:e4:1f:71:37:e4:c2:07:63:31:33:
e1:ef:a6:0c:48:43:f2:76:ab:50:cc:eb:a2:52:70:da:29:ba:
59:fa:d4:c3:41:56:a4:4e:61:ae:26:e4:45:2d:0e:98:be:0a:
58:e3:d6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:09:35 2026 by rpki-client