Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
File: cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft (raw, json)
Hash identifier: VZhfw27G32BfZ4fZzEmv2MhwaxDO2KQdv264UyW23rk=
Subject key identifier: 3B:63:42:4F:4C:4A:39:5D:49:8A:D3:E2:6E:01:02:ED:31:01:DF:8D
Authority key identifier: 70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
Certificate issuer: /CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Certificate serial: 019D28BB7E8A625351F072D3F7561E27BC47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
Manifest number: 168F
Signing time: Thu 26 Mar 2026 06:01:09 +0000
Manifest this update: Thu 26 Mar 2026 06:01:09 +0000
Manifest next update: Fri 27 Mar 2026 06:01:09 +0000
Files and hashes: 1: CprHXAsrH8JdmMZSQZXivSSe6E4.roa (hash: FeFr2Lyz21YuPKbhFzqjbNPKoCmaSebQnIlOtdAGIx4=)
2: cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl (hash: FD980VYmNJuqL1yDU0wXEtk/88igfTJVJw91jI2un7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:7e:8a:62:53:51:f0:72:d3:f7:56:1e:27:bc:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Validity
Not Before: Mar 26 06:01:09 2026 GMT
Not After : Mar 27 06:01:09 2026 GMT
Subject: CN=3b63424f4c4a395d498ad3e26e0102ed3101df8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2b:80:aa:8d:91:d4:d2:5a:9e:d3:a2:19:74:
87:a2:e9:c3:d7:00:db:b9:63:dc:eb:fe:03:58:90:
2c:9a:9d:d3:10:fa:69:19:50:b8:d3:c5:be:bf:69:
73:4b:70:7b:2f:9e:f2:53:a3:e8:7d:c7:06:0d:4f:
7f:28:d0:dd:cb:29:d4:ca:b7:a6:9c:e0:2c:4a:ec:
a3:cd:2d:2f:48:a2:f6:cc:54:8a:8f:1d:2f:ab:a6:
62:97:4c:af:b0:9b:ec:35:d4:a1:7e:11:09:13:2b:
e1:45:38:e1:3d:85:ef:ca:fe:0b:bc:59:29:f2:99:
e2:6d:fe:e7:ce:89:6f:5b:29:9f:43:58:51:02:f4:
b6:68:08:59:38:bd:93:9d:f1:16:8f:5f:01:f7:90:
28:26:a2:ae:2f:98:e3:41:b0:5c:8d:c4:de:d3:49:
63:ac:e2:40:00:c4:b0:71:46:48:01:af:67:96:a5:
76:76:04:0a:f0:f2:2a:ad:4f:a2:95:a9:37:2c:a0:
39:4e:fa:ee:f4:91:bf:2f:c1:2d:d2:b7:44:4d:df:
94:60:60:1e:10:ee:11:ee:5a:97:67:fc:b3:3d:57:
42:4a:a5:3a:9c:aa:1f:d5:72:f9:9e:8a:50:57:ec:
58:b9:46:d9:0e:68:18:e0:4e:f7:cf:f2:a8:15:cd:
9e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:63:42:4F:4C:4A:39:5D:49:8A:D3:E2:6E:01:02:ED:31:01:DF:8D
X509v3 Authority Key Identifier:
keyid:70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bf:f7:31:9f:d3:56:5a:fb:bb:66:ae:eb:3b:a0:fd:ce:01:
49:4c:ea:a9:a7:84:ae:64:9d:43:a2:69:7c:99:a6:b6:13:4c:
27:be:73:6f:dc:93:cf:81:c8:e6:23:ca:e6:b4:a7:da:ed:e0:
5b:06:d0:4a:8d:02:66:ba:35:3e:2d:14:3f:86:21:cc:e9:a5:
29:ab:ce:c1:bf:04:c2:23:5b:7e:84:8c:57:db:e1:1a:0c:d4:
ec:fe:33:2d:af:a2:a2:b5:dd:38:53:7e:e8:ff:6c:63:94:30:
91:fc:63:33:9c:69:14:56:ce:82:a3:19:55:95:d2:6c:e0:1e:
c9:99:e7:05:94:93:c7:1f:1c:82:5f:e4:0f:c0:78:f1:66:49:
8d:d3:8c:b8:92:95:df:d4:f6:62:af:33:5d:be:e8:9e:f8:01:
34:44:58:89:b0:73:a0:b8:be:23:96:48:db:c4:98:53:9a:b3:
73:41:34:bd:06:ad:a5:6d:c5:ba:80:b8:7f:1e:aa:d0:64:52:
e8:fe:1b:40:71:c5:d0:e5:ae:7a:26:bd:2b:34:e7:73:58:72:
51:e7:16:d6:cf:dd:24:29:17:d2:53:c9:4f:58:6d:0c:ae:54:
fb:24:cc:37:d5:0b:5a:ca:4d:9a:04:37:08:49:9a:33:01:a2:
b3:a9:d7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:44:48 2026 by rpki-client