Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: rCf5+xMN3+Air7ejvQgIvVHat3MoTTDz0Fq5lG0k8Vg=
Subject key identifier: 07:8A:5A:22:F7:BE:EC:A8:60:FF:42:CA:0E:4E:2B:A1:24:A4:EE:70
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019D9A3E06EF899988509640C03167E7418B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0B3C
Signing time: Fri 17 Apr 2026 07:00:49 +0000
Manifest this update: Fri 17 Apr 2026 07:00:49 +0000
Manifest next update: Sat 18 Apr 2026 07:00:49 +0000
Files and hashes: 1: AaBEOZ3ZZUPRMOYr0HR7shqRlxU.roa (hash: oniToucQYdIHu6lqhV89eqCsufsXROkFzPNah6lqOE4=)
2: BLrQemDWjWx48NYMm5EU7FEE2fs.roa (hash: 3uO6NEJSsXjHXxW7DrT2w1ELWOo2S4puGWGymObsq9I=)
3: cCJJNwn_gJuAQtsmGPX_UDP9tnY.roa (hash: rNInpx5nNSrUT999uu8Pr9WEUgG03eUXK2AlHeyvWXE=)
4: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: t9gLQa/9QOLc1xsg1I9UAjCnVuUIVtHHgFiGV9O8MWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:06:ef:89:99:88:50:96:40:c0:31:67:e7:41:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Apr 17 07:00:49 2026 GMT
Not After : Apr 18 07:00:49 2026 GMT
Subject: CN=078a5a22f7beeca860ff42ca0e4e2ba124a4ee70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:72:e8:32:ec:51:71:09:4a:22:5c:37:40:f5:
eb:52:53:3a:a1:7a:91:04:14:87:22:33:d2:f5:cb:
0e:7c:2d:ca:0e:c6:a2:06:53:89:4c:00:c6:e6:32:
31:ea:14:c8:d5:de:32:47:da:0b:fa:34:32:ff:7c:
20:7a:ee:5e:35:b0:bc:b5:50:68:bc:8e:9f:8a:3a:
22:4c:6a:1f:43:f2:7b:f1:76:39:2f:06:3d:56:55:
b7:93:ff:5c:61:2e:98:6e:8e:56:c7:28:40:55:d5:
92:ea:e0:98:6e:c7:f4:9e:63:2a:05:19:cf:2b:a9:
1e:f7:2f:55:d6:52:81:b4:77:8f:6a:e4:a4:38:db:
49:12:e5:1f:f6:fd:e1:04:69:d4:2b:06:d1:fd:18:
8a:19:a1:bd:65:89:22:24:bb:c0:9a:2b:70:7e:7f:
b1:70:86:6b:a5:d9:45:a6:09:03:12:f1:5c:e2:5b:
93:d9:0f:de:f0:36:bc:6a:f9:96:b2:db:d6:3b:7f:
61:c3:b4:e5:b9:5b:eb:2c:eb:b4:77:ba:53:b6:07:
f1:f2:e6:a1:ee:dc:e3:3b:42:a3:8b:0f:25:be:a7:
e8:45:2c:12:8b:97:b5:54:bd:3e:06:d3:3c:36:7f:
01:c8:f1:42:f9:de:fb:88:5c:bd:00:35:0d:0b:2a:
e6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8A:5A:22:F7:BE:EC:A8:60:FF:42:CA:0E:4E:2B:A1:24:A4:EE:70
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:56:af:d3:18:f6:04:40:1c:66:d3:87:aa:db:09:1e:6e:32:
68:ed:7f:98:2d:cf:ff:cf:3f:c8:a1:e6:cd:a7:4a:6f:08:21:
69:a6:1d:c8:9b:84:ca:6e:ba:a5:c7:73:41:47:67:8a:cc:6a:
dd:b8:a1:b1:88:30:6a:47:2e:80:1f:b7:e0:eb:95:79:04:03:
f6:df:08:67:52:da:fc:c2:73:88:7d:98:1f:af:7b:8d:be:18:
e6:22:07:41:9f:73:3c:d6:5a:47:90:2d:bd:8a:af:c9:0a:58:
7c:6d:a3:a8:2a:dc:09:63:58:37:7a:cc:f4:fa:52:a5:fe:44:
6c:d3:d4:c9:ae:20:f9:8d:0f:d4:af:c4:56:83:d7:5d:9a:2a:
a6:07:fb:48:ab:72:d7:61:57:70:1c:49:aa:26:56:38:63:64:
6f:69:08:3b:f8:b8:17:ff:2d:3a:d5:6b:3d:1b:64:a9:40:a8:
4e:3c:ac:0a:e4:97:c5:4e:40:e3:95:5a:00:3b:ec:8d:d3:f4:
5f:3c:bf:a0:c2:7a:0d:93:8f:a2:f1:72:ac:4d:0d:4e:53:a9:
b0:82:67:7d:17:65:29:bd:2a:00:10:30:f2:77:b5:72:97:1b:
b9:54:47:d5:07:3d:c2:66:56:35:e5:8f:90:73:a0:21:93:88:
c3:fe:33:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:25:41 2026 by rpki-client