Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: 9N+pGFN0spXUSvOiC8PL+JJ72cJk8igaeB71TipDCsk=
Subject key identifier: C9:2E:C6:9F:B1:F5:34:0E:96:CF:2D:D2:B3:EF:88:CE:A3:2A:40:D9
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 019CAAC69BD9B5CB9319E7FC1865655B0EB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0CFF
Signing time: Sun 01 Mar 2026 19:01:08 +0000
Manifest this update: Sun 01 Mar 2026 19:01:08 +0000
Manifest next update: Mon 02 Mar 2026 19:01:08 +0000
Files and hashes: 1: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: 6bgE6KE6I73ViTpTVV28NF/7yuYzqtxnI+P21EfrCQs=)
2: wTEh6ej3g3Q7GGlsQ4YIzozQtnc.roa (hash: qEk4UNZu9aTZfRIMREb/ibtS04CGWHXkv598NCFoY14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:9b:d9:b5:cb:93:19:e7:fc:18:65:65:5b:0e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Mar 1 19:01:08 2026 GMT
Not After : Mar 2 19:01:08 2026 GMT
Subject: CN=c92ec69fb1f5340e96cf2dd2b3ef88cea32a40d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:42:a4:60:b0:a2:84:ad:a2:93:a5:3d:c7:f8:
82:85:c6:33:4e:e1:62:79:cf:8c:18:81:15:5b:ce:
dc:5f:b1:4e:ce:0c:62:b4:af:98:e6:e2:92:bf:94:
f2:23:b0:b5:ce:fa:8c:6b:b6:3f:8a:32:d0:98:4f:
0c:df:e4:cc:5d:23:ef:f5:f8:be:ab:e9:20:be:93:
35:07:64:c1:3c:fb:ac:63:00:96:81:e9:12:f0:f7:
de:1a:27:99:52:b7:bf:f3:b9:05:00:fb:63:85:77:
1a:42:c5:79:c5:82:31:39:a6:19:91:1f:6c:c1:0b:
18:82:a9:17:3f:13:67:25:ae:6b:7b:0e:37:71:c7:
a3:f3:40:89:12:b0:5e:08:ca:e2:a1:5d:c0:1b:16:
94:c1:b9:6d:5d:34:4e:88:0d:1a:d5:3b:2c:06:3e:
8a:0b:e2:ca:20:76:b7:b6:0e:e4:fa:2d:aa:47:c3:
c4:e2:74:7b:dc:91:4a:56:04:8d:38:2a:bc:c7:50:
e2:9b:ca:87:fd:60:4c:d0:f7:2e:53:2b:92:a3:44:
22:62:7d:b4:80:83:bd:46:63:ac:1d:05:15:c9:44:
00:06:2e:9d:25:04:16:44:dc:1f:78:31:67:4f:cf:
61:af:c3:7c:7c:12:d8:d4:a9:17:8f:4d:8c:10:11:
10:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2E:C6:9F:B1:F5:34:0E:96:CF:2D:D2:B3:EF:88:CE:A3:2A:40:D9
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:5b:91:9d:c6:8f:c9:ed:19:3a:ec:84:35:cc:da:08:b5:d6:
94:ce:c9:5f:39:8e:b7:66:e9:0e:1b:fc:3b:86:08:06:0f:40:
13:f0:32:ff:81:c6:e4:2c:ef:02:e3:24:b1:1e:35:e9:cb:0b:
00:66:74:e7:84:1f:f7:e7:6f:13:c7:46:3c:99:7d:bc:b7:4e:
cc:a9:40:a9:c7:97:b8:5c:8e:38:4b:40:e3:fe:ca:88:1a:7f:
98:80:25:10:3a:92:d9:08:97:84:44:6c:c4:5c:4f:72:17:7b:
29:dd:99:e0:b5:db:24:44:f3:6a:a0:d1:7c:0d:3c:ac:c9:5f:
5a:f3:d2:4a:b5:4b:ff:8d:f7:7e:5e:36:0e:c7:ec:3d:09:db:
91:d5:f9:79:2e:cd:b8:9c:ce:66:c5:f5:5a:9d:ac:f0:ba:72:
25:f5:7f:62:76:09:9c:86:a5:dc:c7:8f:c9:e4:0d:62:30:c6:
3c:73:fe:85:30:67:2b:0b:7d:3c:da:d9:90:d3:de:7c:b9:02:
df:10:da:65:8c:61:d6:b6:84:20:f3:85:12:84:a0:48:b3:41:
3f:22:8e:b7:96:bc:ca:a9:58:82:7d:a6:44:58:c6:3f:90:76:
3b:91:80:d4:96:78:b9:f5:e6:2e:27:b6:d2:76:95:11:fa:1d:
99:ad:b8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:00:50 2026 by rpki-client