Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: 1io3VdVo8Hp1jFslE8rCm1otHoBURUHqxFfugJDaOVk=
Subject key identifier: D0:2C:68:30:C5:DC:ED:77:EC:AB:9B:88:16:87:C3:D3:2C:6F:BD:14
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019DA30ACF36C6D8DE6AA7FE3A26ADDE916D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 185A
Signing time: Sun 19 Apr 2026 00:01:27 +0000
Manifest this update: Sun 19 Apr 2026 00:01:27 +0000
Manifest next update: Mon 20 Apr 2026 00:01:27 +0000
Files and hashes: 1: YeLaacDEqyOHodEKhBUtu92hvRw.roa (hash: Ji1cHzcmwBaizYoDGG5KY1yTxLM1jIXJ3gtR7NQt17s=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: HUv/iV1SqicJMVVYVe4yEY79/Jo671Kgi+HWqZMpJm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:cf:36:c6:d8:de:6a:a7:fe:3a:26:ad:de:91:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Apr 19 00:01:27 2026 GMT
Not After : Apr 20 00:01:27 2026 GMT
Subject: CN=d02c6830c5dced77ecab9b881687c3d32c6fbd14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6b:44:d4:52:1d:2c:da:88:b6:d7:5b:16:42:
ec:e1:61:a7:86:9d:59:d8:c1:dc:34:8d:24:e0:b2:
1e:03:19:fb:ac:15:72:9f:f9:59:70:42:27:16:5a:
2a:9f:ca:4c:8d:31:5a:54:04:f3:dc:fe:98:5d:6a:
63:16:e5:dd:1f:ce:57:44:6a:73:2f:6a:39:8d:ef:
39:80:63:e5:14:3b:da:f5:21:e9:ea:cb:d3:4d:51:
64:e9:be:9f:38:de:21:ce:bb:df:b6:72:f6:d5:6c:
32:c0:54:e9:1e:fe:3d:68:da:a5:8e:1e:39:da:45:
db:fc:c2:90:81:10:bc:df:77:a7:ac:a6:cd:8e:3a:
8b:1e:a2:3d:7f:1e:e0:89:96:0f:33:66:19:9c:43:
09:69:a8:84:83:30:f3:b3:4a:43:17:3a:7a:35:8b:
bf:46:6f:2e:f9:e6:f5:65:ec:26:e2:66:1c:32:fe:
a8:e2:c1:d3:1e:5c:1b:64:66:0f:8e:fe:fb:62:5d:
bd:28:ee:e0:a0:f3:35:c3:64:b2:f6:44:f2:57:6e:
76:2c:94:ff:19:74:fc:99:74:ad:92:7d:e4:8a:7e:
a2:61:cc:eb:39:2b:eb:f7:4d:75:df:42:b8:13:d3:
a2:47:9e:51:e1:88:88:ba:65:3a:ac:b4:cc:4d:0a:
df:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2C:68:30:C5:DC:ED:77:EC:AB:9B:88:16:87:C3:D3:2C:6F:BD:14
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b5:07:37:fc:0c:e2:a0:7c:04:9f:3e:dc:9f:f3:4e:a5:47:
54:d1:bf:ac:e3:00:a6:d0:1c:5f:b0:56:d0:80:c3:95:e9:d1:
9b:98:c7:3b:21:73:bb:ab:e3:2e:0d:14:a8:8a:26:b8:4a:94:
6f:50:1e:fc:de:16:17:46:95:a3:5e:97:68:d3:94:7d:c9:ee:
0b:9a:1b:04:4f:e1:90:42:9c:03:53:0c:e2:10:37:5d:5c:0b:
9f:d0:31:d3:4f:a6:7a:88:30:a3:dd:ca:02:54:cf:01:80:5c:
11:0f:f7:4f:0f:ae:b9:af:8b:b0:d8:43:4b:ce:f2:72:48:f3:
57:91:60:2e:8e:fc:d6:e3:99:47:d5:7e:c5:76:46:43:aa:18:
33:1f:a1:fa:aa:73:a3:e5:06:f2:36:6f:f7:47:62:05:d1:af:
93:10:2d:ff:21:2a:c5:ec:85:7d:23:33:7c:bf:62:fc:00:55:
0e:ea:0d:45:46:cf:1d:81:cc:e9:23:f0:57:b3:8a:77:0f:0c:
d5:cc:b1:8e:a5:6e:01:48:10:2e:40:52:44:3d:98:16:9a:fb:
54:ab:28:7f:34:4f:4e:c1:f5:f7:60:b3:6d:f3:88:26:fa:12:
89:07:00:2b:df:57:70:14:95:86:1f:13:76:5a:a2:e7:9f:99:
e0:25:bf:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:26:33 2026 by rpki-client