Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
File: cKdpKcviHO3ZTAErpYuwtvEpci4.mft (raw, json)
Hash identifier: PfsVam17kF4M4NcY7MzEMAZgOCDEcJy+Ry7MxYm0f9U=
Subject key identifier: C6:7A:05:40:C2:5E:96:CE:28:05:75:C9:B8:6B:54:9A:61:EC:1E:20
Authority key identifier: 70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
Certificate issuer: /CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Certificate serial: 019D26CCEAE04EC6453877C1316BECAD290B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 21:00:56 +0000
Manifest this update: Wed 25 Mar 2026 21:00:56 +0000
Manifest next update: Thu 26 Mar 2026 21:00:56 +0000
Files and hashes: 1: aoOpVJxHaq6lirDB7KBfHBY1mPg.roa (hash: yU+Zr+0ARyapGrg/EO3GqqfA2M5mqsDqcwUrOhZ27aQ=)
2: cKdpKcviHO3ZTAErpYuwtvEpci4.crl (hash: 7e+R9D8TsJz2wayW7f0Q+j9KyD5snhI+lx/X5xDE6e0=)
3: hulhdN0Qn-peYoW5Is6weOEdrhI.roa (hash: s79WL7wCJTobjZ+5yZurGdhzF/MfqEzBAkYlfeNPrEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:ea:e0:4e:c6:45:38:77:c1:31:6b:ec:ad:29:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Validity
Not Before: Mar 25 21:00:56 2026 GMT
Not After : Mar 26 21:00:56 2026 GMT
Subject: CN=c67a0540c25e96ce280575c9b86b549a61ec1e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c6:9b:11:39:c6:b1:41:97:f4:5e:d7:8e:df:
09:50:da:b1:fc:2a:26:97:53:10:7d:2d:64:4d:72:
af:54:74:14:86:5f:ab:44:b2:cd:23:ad:94:0e:f7:
ed:c4:97:60:36:bd:a1:26:f3:94:3d:ba:3e:2f:f2:
82:c6:c1:72:8a:d7:c1:b2:8b:99:c2:00:4b:33:ae:
39:31:f7:8c:25:39:aa:06:57:a5:0b:bd:46:95:e0:
9d:e2:4d:ec:63:38:61:40:6d:a1:a0:70:9b:24:80:
76:b4:34:d8:58:c4:ff:68:f1:5c:b9:26:ee:bc:94:
a2:15:eb:21:ca:3f:a6:72:99:fa:2a:72:2c:b4:a0:
be:1f:5d:f9:91:1e:3c:60:a6:b4:9e:10:dc:17:14:
7c:fe:f4:f4:98:14:62:be:e5:17:04:3f:2c:4e:a2:
50:12:25:3a:8f:f6:ca:13:e9:8b:17:da:c8:b3:45:
7a:2d:f1:bb:28:e0:ea:93:ea:7d:39:55:7d:24:50:
7b:30:59:be:47:53:0d:e4:4f:8b:18:b8:0d:a8:6c:
c3:d7:23:ae:b3:a1:03:03:30:67:c4:5f:2c:00:2f:
06:85:d6:21:ab:ab:98:c0:c9:22:90:f1:72:27:61:
6e:16:5b:f8:0e:ac:d5:85:6c:88:9f:b3:15:d3:2f:
98:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7A:05:40:C2:5E:96:CE:28:05:75:C9:B8:6B:54:9A:61:EC:1E:20
X509v3 Authority Key Identifier:
keyid:70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:58:65:07:5b:84:4d:f5:e5:03:e6:6d:c1:de:79:a7:a5:ae:
74:07:fd:c4:81:2d:76:75:e1:3c:3d:4c:4d:3b:a6:87:57:da:
d4:2f:22:c9:c5:75:48:7c:f7:7c:68:a1:4f:d8:af:4e:91:07:
20:62:eb:1b:37:74:69:25:e2:33:73:f7:5d:18:99:a7:21:8b:
4d:46:de:99:39:97:c4:0b:51:39:e7:3a:a8:01:55:25:6c:d9:
6c:04:4b:b5:e1:35:1a:db:ad:2d:95:be:71:23:08:1c:0a:25:
27:74:04:91:cf:e2:64:5a:29:9c:af:62:c1:44:4f:fd:e1:32:
bf:46:05:d1:e7:ea:d3:85:a5:6d:49:84:ff:43:63:67:a9:d2:
f3:42:01:4c:76:54:d4:06:60:ae:2b:16:56:02:d9:9c:48:ce:
d1:54:e2:d2:98:2b:73:8c:75:56:1a:8b:8e:29:a7:9d:01:c7:
fa:21:11:02:65:64:5f:75:5a:b0:6b:0d:c2:89:04:19:45:bf:
c1:b6:74:23:26:6b:9d:c1:7f:9e:38:ca:54:3f:79:55:a9:72:
38:79:2c:a1:ba:87:98:41:d2:fd:1a:6b:5a:ab:9d:40:e6:27:
a7:02:82:9b:30:3d:9d:13:4a:db:17:0b:1c:63:a3:25:1e:6f:
9a:09:dc:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:07 2026 by rpki-client