Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: JTX6ivZUZ54TSxS4FMx9rMDO9i7CN4o/5M34xjviXPg=
Subject key identifier: ED:8A:0C:0E:72:B8:23:31:91:E2:54:A8:D1:3C:80:85:97:19:83:4D
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 019D2B4EB3B5BB843F87A6FA46F32D16E894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 1041
Signing time: Thu 26 Mar 2026 18:01:11 +0000
Manifest this update: Thu 26 Mar 2026 18:01:11 +0000
Manifest next update: Fri 27 Mar 2026 18:01:11 +0000
Files and hashes: 1: 5MvGTIWvypnynatSCOFj8eEvQKU.roa (hash: zlpMkBrcV9PcuGvhpfeVQrRYScHNx6B9kKbHDGTMD3Y=)
2: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: yoBrwn5X51/xJapLgqq6BCB29dCGBxq1jqzByPOE18s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 18:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:b3:b5:bb:84:3f:87:a6:fa:46:f3:2d:16:e8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: Mar 26 18:01:11 2026 GMT
Not After : Mar 27 18:01:11 2026 GMT
Subject: CN=ed8a0c0e72b8233191e254a8d13c80859719834d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:19:e3:63:bd:ee:84:9e:17:56:18:a7:e1:a2:
13:6a:de:27:e9:23:a6:93:89:25:2b:c6:65:c0:93:
81:44:69:eb:58:dd:20:b8:a9:42:c4:76:2a:e5:a6:
6a:b1:f6:7e:7c:e9:68:18:1c:7f:49:3c:5e:f0:0f:
aa:0a:0b:35:ce:40:ce:83:58:ec:92:94:6b:b1:7c:
fb:d2:8e:25:ad:ea:ae:d1:13:90:10:c9:d6:ce:ed:
fc:e2:4f:5a:15:77:54:ae:fc:04:8b:8a:dd:24:eb:
20:dd:0f:ef:26:97:b4:17:c6:7b:25:d6:3d:98:39:
b2:ca:86:cb:8a:6c:75:b7:c0:7f:d3:17:e6:85:84:
f5:05:a8:b7:e3:4f:ef:7f:69:93:9b:b5:ef:b4:88:
97:6c:cf:25:4a:3a:3f:0b:e5:6d:93:d1:1b:b5:56:
53:2e:23:8b:4e:54:7e:5d:58:9c:90:51:90:51:cd:
0c:94:a7:e9:e1:2d:d9:67:4f:e5:a4:7b:51:d0:a0:
c8:f9:01:9b:28:c9:86:9c:9b:85:bb:3c:02:ec:04:
f2:83:3d:c4:2c:4f:bb:0f:97:bd:0f:2b:5e:33:89:
e8:17:6c:67:94:20:96:1b:eb:f7:8c:b1:71:98:70:
02:c5:33:b9:30:4a:6e:91:0a:50:1d:1f:43:58:ea:
33:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:8A:0C:0E:72:B8:23:31:91:E2:54:A8:D1:3C:80:85:97:19:83:4D
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:d8:72:21:c0:99:24:84:2e:24:42:7c:58:f0:0f:6b:83:89:
77:29:39:90:73:e8:e7:a6:7d:b0:a0:e9:54:c8:b2:e8:58:3c:
64:a4:95:57:dd:7d:16:c2:98:2a:15:b9:4e:a8:5b:de:38:ce:
d5:54:be:cc:9b:3e:b6:9c:b3:fe:74:e6:ee:a0:1a:02:77:c4:
f8:f4:4b:7d:2d:e7:d8:80:e8:e9:c0:df:1a:be:20:6a:9c:81:
63:cd:8a:d2:ba:4f:e8:4b:c0:9d:ca:7b:4d:d0:bd:dd:c5:bf:
84:3b:43:24:54:57:26:cf:01:86:59:a4:3a:8b:4f:30:51:48:
d3:7c:6d:df:09:11:29:64:65:84:57:53:84:63:a5:95:63:60:
35:1b:ba:4e:5f:82:58:c7:43:6b:76:46:ad:45:fe:37:3e:b2:
16:43:11:55:40:e0:4c:fd:b5:69:9e:d7:fe:16:da:56:19:ae:
58:f3:32:a7:95:80:17:5d:5a:3b:95:9d:0e:31:2b:93:68:82:
a5:c9:21:4b:4f:c3:2a:01:27:ab:22:7a:e3:62:a2:a4:f8:bf:
17:dc:df:e4:14:de:b2:e6:f0:a9:bd:ae:bc:97:10:67:7a:a6:
c3:3a:d5:2c:f2:0a:aa:56:a6:94:b3:57:83:d6:78:6c:80:14:
dd:d5:60:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 03:26:19 2026 by rpki-client