Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
File: CpfAyBiGg3PEAUcVBTra9hrx2h0.mft (raw, json)
Hash identifier: C/5wzkpN7aXZa/GlF26jP4fLtzJ0a4t7TVkHTqwC39c=
Subject key identifier: 3A:03:70:28:98:D7:CF:09:26:73:67:B1:BA:F5:C0:13:6A:C3:F9:29
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 019E1DFE1D4417D98914F86119F44A5B5A5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 21:00:53 +0000
Manifest this update: Tue 12 May 2026 21:00:53 +0000
Manifest next update: Wed 13 May 2026 21:00:53 +0000
Files and hashes: 1: 24AsigLbaKArrRhQpNvzkLuNdsw.roa (hash: Y6cso1vmOQRNAQC+IgTQnFt9A6yD7HrC8YdvTQc2P8Y=)
2: CpfAyBiGg3PEAUcVBTra9hrx2h0.crl (hash: ycLduI8dlKjxVcOcX1Se1cbjCI+OakDlPL4ai8RBi/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:1d:44:17:d9:89:14:f8:61:19:f4:4a:5b:5a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: May 12 21:00:53 2026 GMT
Not After : May 13 21:00:53 2026 GMT
Subject: CN=3a03702898d7cf09267367b1baf5c0136ac3f929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c9:e7:70:4a:ee:da:c3:c9:1b:87:a8:91:dc:
db:79:10:54:4e:52:81:b0:dd:a6:c2:06:26:de:32:
70:e7:a9:0c:cb:fa:c3:0f:85:9e:42:e7:c9:3c:c0:
61:9a:74:e7:ae:62:e7:9e:e3:89:a7:9b:f8:92:44:
56:a3:5c:fb:6c:2d:df:63:cd:0a:aa:40:21:d9:11:
f1:04:c4:7f:6b:f3:e1:b0:fc:1d:c1:bb:f8:36:15:
9e:dd:3e:15:11:5c:6d:cd:5d:2f:65:7e:64:3c:d1:
d3:88:5b:49:df:f9:85:f9:7c:3b:f2:89:2e:a4:67:
41:2e:f4:a8:29:92:88:d3:8d:04:30:f2:00:6f:f7:
ca:fb:c3:1b:34:c0:f2:ff:bd:cc:1b:19:cc:db:1d:
b5:87:62:31:96:9f:1d:d1:c9:3b:3b:14:86:ed:5a:
4b:fd:6d:63:1f:5f:39:b8:09:d7:16:8e:e9:8a:89:
7e:d2:65:dc:80:1a:20:ce:b3:43:14:fe:9a:a6:82:
83:49:87:45:aa:5a:26:ea:97:82:fa:fc:d4:b0:85:
ef:4a:93:62:00:67:79:7c:95:02:cf:c3:c5:e7:d3:
a6:97:99:57:d6:39:f1:9f:db:72:4f:c1:f9:24:a7:
27:b4:93:ff:83:a7:c0:ac:22:82:4e:1c:10:19:37:
d9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:03:70:28:98:D7:CF:09:26:73:67:B1:BA:F5:C0:13:6A:C3:F9:29
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:4f:08:0e:55:a8:ce:d7:fb:cc:4c:72:62:c8:fd:ba:c1:39:
25:80:f0:07:c7:e9:4d:8b:46:e3:18:b8:a5:b8:fa:ae:96:4a:
23:a5:c0:60:9c:bf:f7:86:ff:39:6f:13:83:36:95:c0:2f:b4:
9d:6d:51:fc:18:53:37:64:ac:c6:09:7b:08:ba:b7:76:a5:1a:
22:4f:0b:7e:98:3f:34:01:89:8b:73:c0:56:38:e4:6e:70:78:
c6:36:4b:fa:21:17:82:2e:93:ea:88:24:4c:a1:8b:0e:b0:e6:
09:68:2b:55:f0:af:82:eb:f6:4a:c8:83:f5:c4:59:13:23:7a:
1e:fe:eb:0e:6b:e1:37:34:29:ce:fa:0d:34:62:e1:0c:35:14:
55:a9:d8:ae:44:97:18:43:3e:3e:df:76:7e:e6:f3:5c:a9:16:
22:2c:04:84:f4:80:ca:a8:1a:11:14:51:78:b0:a8:1b:67:7f:
ef:d3:ce:2f:66:1d:6f:e3:37:f7:ae:72:35:3c:31:1e:41:80:
8c:cf:a9:f4:1f:af:df:75:0b:90:d8:fb:06:3a:08:3d:2a:e5:
24:48:1b:2e:2b:92:62:78:b6:95:2c:e3:5d:bd:36:fb:07:cc:
cd:fc:34:5a:73:a4:c3:c7:f1:fc:b3:19:62:81:c2:c2:5c:1a:
09:29:93:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:29:52 2026 by rpki-client