Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: q0G39iDuh8ZlGuDP2YcEN7PuRHOOODPmbgCfQzrT9/o=
Subject key identifier: 2C:AC:7A:EF:02:2B:A4:FE:D7:D0:67:81:BC:53:62:6D:B8:D2:CA:C6
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019D265F1AD75A6B301DCF82D84B338E5C74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0EEE
Signing time: Wed 25 Mar 2026 19:01:00 +0000
Manifest this update: Wed 25 Mar 2026 19:01:00 +0000
Manifest next update: Thu 26 Mar 2026 19:01:00 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: uWbYoyDGlc4N+C3JogF4duVp6S/52FcCg654ZZTJ3fg=)
2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:1a:d7:5a:6b:30:1d:cf:82:d8:4b:33:8e:5c:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Mar 25 19:01:00 2026 GMT
Not After : Mar 26 19:01:00 2026 GMT
Subject: CN=2cac7aef022ba4fed7d06781bc53626db8d2cac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ef:6b:bd:ed:a9:d9:41:7b:fe:dd:39:18:8b:
a8:48:37:e3:dc:11:69:54:90:50:46:2b:bf:b9:29:
20:e3:b5:fb:20:67:4b:16:7d:ff:29:9d:09:2f:e6:
14:7d:3f:47:78:c1:74:93:9f:28:fa:42:49:13:b7:
66:f8:fa:b9:8a:f7:2c:d3:58:f8:f8:36:9f:73:98:
ef:53:ab:c7:df:09:28:14:74:f2:dd:c8:19:39:b7:
85:62:cc:c6:0c:23:fd:5d:62:4a:ac:04:54:48:46:
89:b0:11:31:6a:31:0e:25:91:6d:90:7b:a2:33:f7:
13:1b:5a:9f:e9:ae:26:aa:72:01:99:e4:39:bc:9a:
90:fc:bf:3d:14:86:ad:50:75:54:30:27:3c:d2:00:
bf:08:db:7b:fa:75:52:de:4b:39:cd:84:9f:85:3e:
d1:6a:47:ed:7b:05:6c:50:2f:c8:16:03:1d:54:47:
77:3d:e8:0f:53:af:d0:d9:da:00:03:be:0f:e7:32:
16:18:2a:53:c7:a0:38:f2:ae:90:0f:42:d3:47:d2:
2d:46:64:28:db:8c:da:51:28:0e:49:1c:e7:17:31:
e0:65:69:75:66:3e:04:9e:a8:6b:f4:3b:cf:a0:5d:
08:77:32:02:02:e7:0b:aa:28:8b:31:0b:6a:d8:f2:
95:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AC:7A:EF:02:2B:A4:FE:D7:D0:67:81:BC:53:62:6D:B8:D2:CA:C6
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:1e:23:b5:e3:50:28:00:b6:7b:1f:71:63:05:31:c6:eb:7c:
c0:ed:ea:88:28:30:1f:88:63:83:3a:4c:4d:ba:61:6a:97:95:
1e:93:c7:c4:a5:71:24:a9:44:e0:16:62:20:a3:06:ef:08:22:
0e:0e:73:c2:ae:4a:60:e8:94:da:5a:b3:73:3d:74:c1:56:79:
9b:33:29:54:67:73:df:7d:8e:7d:46:42:70:f2:60:dc:99:89:
1a:7b:d7:e8:c7:e0:05:13:6c:72:f3:22:81:95:14:7f:2f:48:
0a:6c:cc:40:aa:d3:89:5b:41:36:3e:c2:04:ac:da:eb:30:97:
8f:b8:63:81:12:a6:40:9a:de:21:b8:cb:22:2f:d9:4e:e7:2d:
87:cd:3b:22:59:7c:c2:04:0c:cf:3c:10:b2:3f:c6:54:29:9f:
96:29:9e:55:fd:a3:48:f8:5f:95:fd:ab:11:52:da:32:82:e2:
51:d4:f1:7f:d6:f3:dc:42:48:41:24:e8:1e:85:84:72:64:d4:
97:b3:6e:39:63:e1:51:61:88:0a:b1:4e:19:f3:97:26:12:5f:
8f:f6:b2:d8:4d:69:62:50:58:f6:7b:d1:27:d8:56:40:b7:f0:
08:e8:1c:52:ab:1d:07:4f:18:50:eb:26:e7:f9:5f:64:dc:82:
86:8c:f4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:50 2026 by rpki-client