Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: +TrpTor5IQ7GvvdFGJQ70EQId0/mdg71bnpN5xIHGHA=
Subject key identifier: 8E:C0:F3:E7:AE:40:98:A4:ED:11:EF:A1:31:D1:E4:A2:25:AB:40:5E
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 019E1CB4D53BA039A5C8E5C037008B26E0E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0C33
Signing time: Tue 12 May 2026 15:01:13 +0000
Manifest this update: Tue 12 May 2026 15:01:13 +0000
Manifest next update: Wed 13 May 2026 15:01:13 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: NfXyRu/L5u9daHmchGiyYFW8xgHZ5HmS3oyJUy6rAMw=)
2: fzKhZS7tgEqUrdZvJWQiBhGYXjs.roa (hash: oNIwrLOUrwNgDI/YRh0BOg1IxHhuOn9PuGYKfadJj30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:d5:3b:a0:39:a5:c8:e5:c0:37:00:8b:26:e0:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: May 12 15:01:13 2026 GMT
Not After : May 13 15:01:13 2026 GMT
Subject: CN=8ec0f3e7ae4098a4ed11efa131d1e4a225ab405e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:9b:a8:7d:d8:e3:61:8f:ad:a6:19:b1:4c:
ab:14:cb:1e:b2:bd:2c:f7:38:77:17:4e:a3:3a:83:
2a:21:5f:e0:47:80:2e:6d:24:48:d6:2b:ba:aa:19:
20:7e:09:15:27:0f:46:ef:38:af:8d:f8:5d:62:bd:
47:7b:66:0c:92:4f:bf:5c:3c:7a:6e:81:69:cd:2e:
62:9b:b0:12:12:c6:a9:9a:c2:92:65:01:32:cd:e9:
c7:00:e6:a6:5e:cf:65:2b:22:e0:47:5e:aa:03:9e:
10:ee:e9:dc:7d:f0:16:bb:61:62:fe:23:35:68:d9:
d8:40:52:66:68:ff:b1:fc:80:90:c8:e1:18:93:d7:
ea:97:e8:24:80:14:c8:d5:c6:ee:5b:b8:46:32:4a:
e9:be:71:53:05:b1:f9:e3:3d:d8:6c:ba:6a:00:f5:
eb:64:6b:4d:02:76:1f:ec:b4:78:da:0b:fe:7b:b7:
91:7c:43:67:31:3a:63:97:d5:c1:52:a7:ae:ba:74:
16:f0:6b:22:f2:15:47:e6:48:b7:d2:32:aa:e1:89:
25:6e:73:ce:6f:e4:80:3a:9b:a9:dc:26:71:e0:63:
65:93:89:cb:7e:b1:58:06:ba:a6:00:86:61:2e:3c:
4f:b1:84:c1:15:76:2b:0a:d8:83:58:63:08:07:5f:
8f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C0:F3:E7:AE:40:98:A4:ED:11:EF:A1:31:D1:E4:A2:25:AB:40:5E
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:f9:7b:7a:c4:22:69:51:66:83:d5:7e:54:a7:b6:62:76:fc:
fc:d8:aa:87:96:eb:45:c7:79:73:35:aa:3d:34:e4:c8:8b:c7:
52:e8:01:ba:01:b8:e9:56:ed:3c:dd:c4:ee:4a:d2:79:45:41:
1e:38:d5:50:a4:5b:5c:d7:4e:89:c8:e2:c9:6f:94:d4:3e:98:
ad:3c:a8:58:7b:a4:ab:be:d1:2a:ff:ca:40:25:f7:b4:41:1a:
63:42:a7:e6:2a:d5:fc:5a:03:42:a5:b6:95:fa:62:5d:ac:48:
34:46:6e:96:fe:d2:3e:44:b6:c1:db:23:9c:be:77:b1:0a:ad:
25:e4:0a:27:12:49:36:c4:29:ff:22:cf:ee:d3:54:65:13:9a:
ac:85:3c:cc:cd:9e:55:9f:85:12:87:fa:cd:f3:a0:48:7f:d9:
d4:a8:a7:15:60:05:de:a1:c7:c6:15:5a:7d:a5:18:2e:64:36:
3d:94:78:42:f5:ec:0f:dc:9e:27:2a:16:e1:51:ad:da:f5:e3:
d0:63:5d:54:d6:d4:7b:5d:cd:14:03:a6:f6:ea:4b:ce:40:4c:
e2:4d:26:a8:25:c0:1d:bd:b3:4c:d3:f3:32:19:e3:03:33:7e:
82:0a:37:8b:a1:19:3a:2d:aa:b6:1c:14:ef:b8:76:49:dc:73:
19:84:ee:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:55:41 2026 by rpki-client