Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
File: CBG8UM_tnQLlgZaiyByYjjC6EmA.mft (raw, json)
Hash identifier: wiln46La6W64IuhcboazPg5cYiAyyDEeLzseyleoI+o=
Subject key identifier: 07:D8:5A:EA:9E:32:81:DF:66:4A:83:4A:00:F8:91:57:89:3E:1C:A6
Authority key identifier: 08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
Certificate issuer: /CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Certificate serial: 019CACEBF81B9764E2F79443594D39273A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 05:01:11 +0000
Manifest this update: Mon 02 Mar 2026 05:01:11 +0000
Manifest next update: Tue 03 Mar 2026 05:01:11 +0000
Files and hashes: 1: CBG8UM_tnQLlgZaiyByYjjC6EmA.crl (hash: 1q4BnVSOeSl+W92hFZxrCtRwVPqGUOPOyILPOfCemeY=)
2: WRBFVNx32sOpjsof22cBqYU1U-g.roa (hash: QZBfNPHudXCYECubPVOe4dY+6NgVx9kT9RkWowLyHkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:f8:1b:97:64:e2:f7:94:43:59:4d:39:27:3a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Validity
Not Before: Mar 2 05:01:11 2026 GMT
Not After : Mar 3 05:01:11 2026 GMT
Subject: CN=07d85aea9e3281df664a834a00f89157893e1ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:29:d6:75:7b:b8:54:9a:27:ca:a0:a4:c0:22:
18:3f:eb:72:7d:dc:d5:10:98:00:b8:84:39:8a:27:
74:39:f7:5f:e7:a7:a1:c4:8b:61:c4:8f:7d:b5:06:
db:a1:72:8d:c3:f5:41:e4:31:16:75:e6:64:41:6b:
17:fb:82:5f:c8:5c:e2:b2:07:f0:84:88:33:ca:de:
ce:0f:6f:62:5e:4e:fe:55:e0:f8:fc:db:5f:b7:81:
d9:9d:99:63:a8:ba:1e:51:40:22:f6:ae:4f:79:77:
aa:20:9c:ac:60:af:36:dd:43:1d:82:f8:1a:c4:37:
7b:a8:7f:32:aa:5f:b5:52:a6:88:76:61:ed:ce:57:
87:0d:c9:bd:bf:fd:1d:0e:41:c7:3f:87:1a:10:48:
6f:8f:39:b9:a2:8e:2e:10:c5:e2:40:c9:ef:45:cd:
ab:4a:2c:7a:12:99:77:b6:f1:c0:3c:2e:03:c7:81:
31:9e:fc:fd:a1:47:bf:e9:e0:a2:8e:3d:44:1e:24:
7f:35:9a:e7:da:c8:e0:e9:52:2c:fc:66:11:29:af:
7f:cd:33:5e:a9:c1:f3:61:9a:85:51:51:88:21:b9:
c1:32:3f:a5:1b:92:03:44:58:ea:f1:1c:b3:c4:41:
72:01:bd:54:56:a2:95:5f:4b:e0:af:ec:d4:35:6b:
7a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D8:5A:EA:9E:32:81:DF:66:4A:83:4A:00:F8:91:57:89:3E:1C:A6
X509v3 Authority Key Identifier:
keyid:08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:d0:b8:b7:bc:46:ed:e8:51:b5:89:ac:d0:39:31:8d:cc:18:
2d:3d:c3:9d:0d:37:76:7d:e3:f7:e4:43:3e:5c:0e:d6:23:c9:
58:36:55:54:a6:b1:46:e4:15:d5:25:61:13:61:d3:ce:68:67:
e4:c3:68:e7:b6:db:5a:03:9b:0f:eb:57:76:84:3f:1a:29:fe:
9a:ff:d2:f1:50:5a:fc:58:01:90:d2:5e:84:16:d4:d8:0b:2d:
38:c8:54:b9:a7:b7:eb:ea:1b:2a:a5:e1:e0:70:00:eb:92:c1:
47:9a:2a:4e:c9:bb:3b:d8:97:4b:df:30:ee:e0:71:e6:ba:fd:
c0:4c:dc:90:5c:4c:f1:92:1b:04:a3:ca:71:f5:56:1d:c4:00:
8b:f0:64:df:a7:e5:cf:11:3f:37:f1:bd:ea:4e:c2:66:2e:5a:
16:ea:18:6b:51:06:a4:11:20:e7:5b:74:d4:d0:fa:a0:ba:ba:
4c:d2:c5:e7:58:4f:dd:c4:b6:46:c0:81:18:e9:ff:f9:2e:4d:
df:0b:37:e1:64:29:39:68:50:2b:f8:df:32:66:ce:39:12:ec:
21:45:a6:47:45:0e:07:2e:7b:a5:9f:56:4f:3b:83:9f:a8:74:
18:58:58:47:bd:36:f4:7d:8a:68:37:16:9b:ce:f9:47:9f:89:
03:82:af:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:20:01 2026 by rpki-client