Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: oRicgg28S75F58hc9d1rqtz1LCaoGqzrB/cVe2YzLYk=
Subject key identifier: 9A:51:6C:E4:E2:C8:5E:B0:AA:57:AF:C7:82:2B:AE:49:66:D9:A3:ED
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 019D277279BBACCFC4C71CE1682632D48EFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0BB4
Signing time: Thu 26 Mar 2026 00:01:46 +0000
Manifest this update: Thu 26 Mar 2026 00:01:46 +0000
Manifest next update: Fri 27 Mar 2026 00:01:46 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: gwmJmB3L/0ojlZCI4ckTl3ewWQ6hxgMu0EMBYqO/dR8=)
2: fzKhZS7tgEqUrdZvJWQiBhGYXjs.roa (hash: oNIwrLOUrwNgDI/YRh0BOg1IxHhuOn9PuGYKfadJj30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:79:bb:ac:cf:c4:c7:1c:e1:68:26:32:d4:8e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Mar 26 00:01:46 2026 GMT
Not After : Mar 27 00:01:46 2026 GMT
Subject: CN=9a516ce4e2c85eb0aa57afc7822bae4966d9a3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bc:b4:3d:59:43:81:9a:de:72:24:00:56:d8:
4c:da:44:4a:d3:43:72:b6:45:6a:04:0a:df:14:b1:
7e:da:b4:38:2c:f3:69:9c:cc:c9:c2:33:21:51:b0:
11:cf:5d:c0:3b:5d:55:d0:48:94:37:71:dd:ad:97:
26:eb:37:e0:41:18:7d:b3:d0:f0:a2:62:4f:27:2b:
5b:9a:11:63:99:9c:91:01:15:aa:ae:70:03:0e:16:
6d:36:26:4d:58:03:a7:de:6e:42:3e:3f:25:52:06:
da:a0:48:26:56:28:31:39:27:91:ec:1b:a2:7e:fc:
36:7b:03:25:6e:7f:1f:dd:04:3d:cb:81:8b:59:29:
b4:aa:8f:75:5a:ed:54:c1:d4:04:32:93:42:35:7d:
61:aa:d2:9b:b6:1e:94:0a:d7:c5:61:26:87:35:19:
10:4d:e7:bd:53:9d:f0:dd:1c:97:84:c1:f9:cb:c6:
44:be:cd:17:72:ca:25:07:57:ce:88:bb:e0:86:63:
87:e5:4f:26:86:ab:19:eb:5c:09:99:5b:e2:2d:b4:
cb:d2:eb:b4:eb:34:1f:12:d6:2a:7b:d3:a9:5c:39:
64:57:a2:84:18:1f:9e:d3:59:1c:dd:4c:8a:0f:57:
32:d5:3a:19:7b:57:3d:a1:a8:d6:9b:cb:45:63:26:
88:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:51:6C:E4:E2:C8:5E:B0:AA:57:AF:C7:82:2B:AE:49:66:D9:A3:ED
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:24:51:1b:cc:21:1e:1f:bf:8b:d0:4f:49:9e:21:e4:69:8c:
5e:15:d4:f0:51:81:03:05:5a:b8:66:54:07:a9:5c:69:ad:9e:
c0:0e:d4:12:c5:9e:8a:79:50:9f:ac:b1:58:b2:49:d0:ce:9c:
cc:27:51:31:b1:0a:9d:0d:a3:ff:c3:68:34:0f:ad:1a:74:ed:
0e:5c:aa:04:ca:1c:95:1d:1c:83:6c:b8:93:e5:b5:e1:e0:d2:
be:2c:ff:ff:9f:bd:4a:97:ad:e1:fc:d4:8c:32:35:49:11:74:
a3:ab:e4:35:a4:64:98:93:d2:76:61:ba:f0:06:2c:90:80:fd:
e6:cf:f5:c6:4c:66:73:57:bc:1b:e7:6a:ca:9a:5e:ad:a7:47:
0e:4e:9c:29:2f:78:5a:be:95:6c:7b:3a:8b:4d:21:56:b6:ea:
6f:46:10:49:fc:ba:90:28:c0:e5:06:86:ba:91:e1:ee:c8:a6:
34:c1:b5:90:0c:b8:0b:88:8b:72:95:a7:00:ae:99:30:6c:c4:
73:cd:fb:70:ae:17:2e:29:05:0a:80:30:13:a0:4e:9f:31:eb:
53:f8:19:e0:65:8d:ea:42:a5:a1:09:b6:f9:5f:80:2c:fb:c4:
86:7e:3d:44:60:f7:c2:5e:37:5f:4c:bb:1b:03:61:13:7d:1f:
41:6d:db:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:00:22 2026 by rpki-client