Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: g+UNN0OJoTyjUyrsjWG+ofrs8lLSWasZ8hEpOPbkIWU=
Subject key identifier: 54:AE:C4:7D:1A:57:53:D9:2D:54:92:99:CC:5F:D0:96:01:20:5C:79
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 019D266018D2A645083E9491E4B098CE0A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 19:02:05 +0000
Manifest this update: Wed 25 Mar 2026 19:02:05 +0000
Manifest next update: Thu 26 Mar 2026 19:02:05 +0000
Files and hashes: 1: 6jv9jlHJmC7k64rvSsealEF_Ys4.roa (hash: crUEU6To7tUPJ210jDOrFjZwtJRVZ4icX9N2S6uxoc0=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: Z9Lj1ygxongKK2FaJfgv+prGbofuIj2xRIg0pngfCDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:60:18:d2:a6:45:08:3e:94:91:e4:b0:98:ce:0a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Mar 25 19:02:05 2026 GMT
Not After : Mar 26 19:02:05 2026 GMT
Subject: CN=54aec47d1a5753d92d549299cc5fd09601205c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:b8:64:53:8e:70:87:81:09:d8:8a:36:cd:
8d:93:66:77:86:f6:df:78:1b:e8:a5:19:01:13:9e:
b2:17:71:ed:f3:fe:ee:74:2b:d2:b2:e3:2e:96:af:
71:6b:02:ec:70:c3:70:36:0a:7e:3a:66:cd:40:41:
35:66:a2:1e:88:32:95:57:c7:ed:08:49:79:3b:f7:
f0:4a:fa:fb:c3:b1:49:23:6d:39:02:65:a1:1a:89:
06:3a:63:55:df:cc:42:97:cf:0e:ba:3c:3d:be:f7:
d2:91:d4:85:20:8b:f0:59:db:86:bb:4a:84:e0:e5:
97:e3:f5:e8:f0:bf:d5:0e:e0:78:84:c8:6b:68:ec:
9e:ea:55:2d:31:2f:34:88:e6:63:b6:42:1d:86:bf:
f9:ad:56:7f:2a:b0:3a:6d:46:83:16:d1:46:0d:d7:
d8:31:29:cd:da:32:e2:2b:af:8d:79:44:c9:5f:40:
b2:d5:b0:f3:7b:10:c4:eb:8c:cf:16:c7:ca:b3:b0:
5a:34:30:6d:c5:91:20:d7:70:1e:49:43:ff:38:fb:
6f:29:dd:72:74:8b:20:14:b3:56:c0:55:45:f1:1c:
1e:db:a8:2f:6b:66:09:74:b9:b7:39:72:17:d1:43:
ff:11:06:40:7a:a1:05:9b:88:00:ef:59:d9:16:24:
5b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:AE:C4:7D:1A:57:53:D9:2D:54:92:99:CC:5F:D0:96:01:20:5C:79
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:79:47:8e:48:24:5d:2f:ca:a5:b9:45:42:23:8a:dc:c1:5a:
58:ba:a8:f1:23:90:f2:4b:f6:01:f0:21:6a:34:86:c4:fc:75:
3f:a0:23:fe:34:8a:66:9f:1e:c9:df:0f:a0:bd:16:2d:31:a3:
b5:e5:03:b8:f4:20:6d:d1:2c:fa:b4:3e:51:3d:1a:2c:d8:28:
24:3d:55:1a:56:18:25:cd:36:ee:1e:a0:c0:90:59:c2:e4:87:
14:17:eb:51:9e:c8:0f:38:3c:a7:6c:25:77:63:d3:db:a4:67:
49:d9:4a:04:ab:5c:1c:19:36:08:b4:b0:02:1f:27:01:df:92:
dd:1f:93:46:17:0a:0f:84:ce:93:52:27:5e:59:b5:d6:6d:34:
00:0d:04:d3:bd:15:e2:ba:bc:f6:e4:72:77:28:96:ef:c1:e8:
cd:dd:7c:87:7c:33:60:24:d4:95:2a:f0:08:00:ea:b5:11:80:
e6:64:39:97:28:dc:45:1a:6c:53:b7:af:cc:6c:5b:c5:55:39:
4e:d9:e0:f9:7c:c0:e0:dd:40:62:9c:b4:e6:a6:fc:e9:0b:04:
bc:cf:1a:5b:f3:ec:8a:c7:55:fc:3f:e7:30:0c:81:ce:51:ec:
ae:59:68:b1:2f:b8:8e:99:a9:57:c2:3b:1b:13:0e:f9:20:84:
eb:df:e9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:25 2026 by rpki-client