Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: chR2WKMTA+zcOYwv4oMQ4XdqUhsqLB6/QcDqZjEPQUs=
Subject key identifier: AD:4D:3B:CF:C7:57:71:37:C3:9D:8C:16:D2:AC:78:74:EE:03:69:F3
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019EBFC821A2BA729CE717DDBD9E48B9F54E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0BD4
Signing time: Sat 13 Jun 2026 07:00:24 +0000
Manifest this update: Sat 13 Jun 2026 07:00:24 +0000
Manifest next update: Sun 14 Jun 2026 07:00:24 +0000
Files and hashes: 1: AaBEOZ3ZZUPRMOYr0HR7shqRlxU.roa (hash: oniToucQYdIHu6lqhV89eqCsufsXROkFzPNah6lqOE4=)
2: BLrQemDWjWx48NYMm5EU7FEE2fs.roa (hash: 3uO6NEJSsXjHXxW7DrT2w1ELWOo2S4puGWGymObsq9I=)
3: cCJJNwn_gJuAQtsmGPX_UDP9tnY.roa (hash: rNInpx5nNSrUT999uu8Pr9WEUgG03eUXK2AlHeyvWXE=)
4: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: iCtkVPuDGmHEOsMxwrYH7Dt5HFz/tW+IwNbLrESlApA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:21:a2:ba:72:9c:e7:17:dd:bd:9e:48:b9:f5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Jun 13 07:00:24 2026 GMT
Not After : Jun 14 07:00:24 2026 GMT
Subject: CN=ad4d3bcfc7577137c39d8c16d2ac7874ee0369f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f0:77:01:a7:84:82:a2:6b:3e:c7:88:95:c2:
c8:4b:0e:c8:b6:6a:8f:2d:a3:aa:eb:7c:b2:6d:31:
c9:df:b4:c4:fb:40:65:f3:82:d6:40:54:f6:8c:17:
9a:18:64:b4:2f:fc:cc:fe:af:f2:d7:f0:33:88:2d:
53:46:ab:91:23:b3:29:42:3e:73:a4:77:5f:90:2b:
69:d8:b3:8c:00:99:f3:6a:62:78:48:3f:70:1f:16:
9c:c6:9a:e2:46:ea:9a:8f:84:f8:6a:30:29:c3:39:
3a:ff:3d:fe:70:d0:3a:ee:78:37:4a:1e:c3:52:da:
95:6c:30:0a:75:0a:21:79:a5:a1:83:d5:a1:35:8e:
90:48:0d:94:48:df:4c:ab:2a:1f:0b:03:af:53:1e:
fd:ec:7c:a8:ce:56:a7:49:10:7a:a5:78:f3:db:fd:
df:d3:6e:25:03:a2:03:58:a0:c1:cb:d6:dc:30:63:
ca:07:d3:ed:8d:98:9b:41:2e:1b:ac:09:70:68:89:
aa:46:a5:6e:5e:97:ed:b4:31:88:be:2c:05:0c:68:
56:9e:c4:1d:02:54:58:7f:83:80:37:5b:fa:dc:cd:
8c:b2:83:2e:98:06:b1:e5:6b:16:32:e2:29:ec:bf:
20:75:ca:57:a1:80:48:01:27:48:67:04:e5:3e:31:
87:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:4D:3B:CF:C7:57:71:37:C3:9D:8C:16:D2:AC:78:74:EE:03:69:F3
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:c5:01:ce:ce:b8:c7:d4:2c:14:ff:f3:4f:e5:6e:f4:09:4a:
ce:ec:91:1f:ca:6c:65:1a:c2:12:e8:23:09:f8:03:53:bb:b1:
7c:4d:b7:c5:dc:5a:0c:5d:38:36:b7:45:e4:3f:b9:bc:c1:d5:
ec:42:84:d6:33:fb:fa:9f:89:61:a3:30:72:00:f4:31:91:c5:
77:5b:16:8b:f4:e0:1f:9c:bb:d2:6e:7a:92:34:f6:28:7f:2d:
4f:66:17:74:16:83:c4:f3:e6:67:45:81:ae:e5:98:e3:40:0a:
30:2c:1a:9b:19:d3:ab:99:4c:4e:c4:d1:b5:be:7a:79:42:8e:
00:06:a6:f7:b0:a2:d6:ff:5e:67:90:d3:f1:f0:51:36:fb:b9:
a1:01:93:e1:20:cf:f5:6e:48:06:ee:96:47:0a:af:48:6e:17:
67:97:5b:76:6f:a6:5d:ba:1c:cb:69:23:c8:5f:98:09:e5:6a:
8f:fd:f7:1b:0d:79:ca:fe:20:9e:fd:ed:13:a8:f6:a5:a5:cb:
c6:e9:57:35:b5:98:b7:38:3f:b1:fc:d4:6f:8b:58:5d:fd:52:
a6:8d:c1:a0:d9:a6:c4:03:12:f8:26:71:cf:93:18:7c:8d:32:
ed:ab:52:36:c4:1e:9e:e3:b6:36:65:06:f7:d2:6c:ef:25:1e:
8d:54:3c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:42:47 2026 by rpki-client