Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
File: CBG8UM_tnQLlgZaiyByYjjC6EmA.mft (raw, json)
Hash identifier: elyPbuDxtKzvot1TxbUJuAANlTQ+aBKLNbUrv3iAKdw=
Subject key identifier: 27:BF:1B:3D:B8:67:5D:22:DD:A3:2C:7E:FD:10:F6:D2:A0:CE:2D:57
Authority key identifier: 08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
Certificate issuer: /CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Certificate serial: 019D9A75369AC1E1A8B788399D2C050C8B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 08:01:05 +0000
Manifest this update: Fri 17 Apr 2026 08:01:05 +0000
Manifest next update: Sat 18 Apr 2026 08:01:05 +0000
Files and hashes: 1: CBG8UM_tnQLlgZaiyByYjjC6EmA.crl (hash: d9GdX/8VRm3oAvFWZojjgYrE/8xwk88ePn3fkOyUvmM=)
2: WRBFVNx32sOpjsof22cBqYU1U-g.roa (hash: QZBfNPHudXCYECubPVOe4dY+6NgVx9kT9RkWowLyHkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:36:9a:c1:e1:a8:b7:88:39:9d:2c:05:0c:8b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Validity
Not Before: Apr 17 08:01:05 2026 GMT
Not After : Apr 18 08:01:05 2026 GMT
Subject: CN=27bf1b3db8675d22dda32c7efd10f6d2a0ce2d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b1:d3:a9:4b:3d:a4:83:b4:ac:c7:c5:8a:35:
44:e9:e4:52:61:b6:cd:75:be:4d:70:25:a5:18:71:
37:e8:20:e2:35:d5:8b:f4:2c:6c:4a:29:fd:17:49:
bf:4a:89:8a:92:07:26:00:72:20:1b:65:46:ab:54:
ca:dc:38:b9:bd:71:37:3f:0d:f4:da:5d:fb:6c:76:
d5:91:cf:f5:d3:5c:0b:e8:64:af:45:3f:70:fa:ea:
eb:03:a1:b1:d0:01:62:0c:8c:35:b6:bb:73:c8:ba:
e1:ab:a5:d0:7d:27:8d:11:e8:ed:5a:ec:8f:2e:38:
65:cb:86:da:d0:4e:a6:3f:8d:01:22:92:0a:98:08:
7e:9b:f0:70:5e:3b:db:b7:d3:8a:85:d5:95:57:84:
7b:8a:46:76:03:8b:ae:6d:cd:49:04:24:16:7c:8a:
e3:e3:e8:a2:d5:eb:6a:7e:f2:dc:ee:ad:ba:e4:05:
bd:03:31:c5:9d:b0:0f:06:1d:50:87:d3:40:ce:9e:
1a:7e:69:bc:11:9e:78:b3:b0:67:9c:d2:c6:09:0b:
90:fc:7c:62:cf:3c:74:98:94:d0:4d:82:77:8c:27:
49:e2:57:80:ae:68:e1:74:a2:db:7e:08:42:0f:99:
e0:7b:7a:a6:4e:3b:56:0d:92:d5:f8:8a:61:80:95:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BF:1B:3D:B8:67:5D:22:DD:A3:2C:7E:FD:10:F6:D2:A0:CE:2D:57
X509v3 Authority Key Identifier:
keyid:08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:38:a2:4f:d4:62:49:74:0c:35:80:db:9a:a2:c0:81:e5:f0:
ba:19:0c:41:12:6f:93:dd:ad:db:cb:3a:fe:07:5e:b5:89:b0:
35:7d:d1:bf:55:b9:5f:fa:59:9e:f8:92:45:2c:a4:90:9d:ae:
04:81:81:79:07:a7:b7:85:13:ba:2f:f3:86:49:63:7f:e4:16:
22:4c:75:a9:d7:b5:80:f3:b9:a5:05:68:a2:74:48:8f:8b:cd:
ff:71:d6:a5:67:2a:43:b5:96:f7:5e:d6:67:1a:84:cf:4e:c4:
46:61:a0:2c:8a:20:47:81:3a:48:57:03:66:47:76:5c:54:4f:
1c:f0:a7:ad:15:b4:70:38:60:d6:34:d2:74:39:92:19:63:f1:
5c:a8:5c:00:46:9e:ce:5e:62:91:65:a2:6b:41:8e:99:d2:33:
da:54:59:5c:1e:76:39:f9:c8:83:33:13:bd:7a:3e:f1:20:79:
c2:03:77:97:67:b3:6c:34:5e:94:74:5d:05:77:10:98:97:4c:
58:b9:83:2e:85:83:35:97:ce:9c:f5:87:2c:c8:ff:11:49:ef:
f1:e6:cc:16:69:dd:70:df:98:b1:d1:59:ec:7f:c1:8f:0c:87:
73:d2:28:ad:98:0e:ae:3f:c5:22:d7:99:76:73:a6:9e:22:92:
fb:8e:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:43:00 2026 by rpki-client