Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: oahHVB31u0NwX4HD31GjRDx3dss23iHP4MQnkV+mayY=
Subject key identifier: F8:76:3E:58:59:78:FD:40:E8:8C:85:72:16:EE:35:F3:63:28:0E:53
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 019CAD5A205124282E68B38D3A116BFCCED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 066B
Signing time: Mon 02 Mar 2026 07:01:30 +0000
Manifest this update: Mon 02 Mar 2026 07:01:30 +0000
Manifest next update: Tue 03 Mar 2026 07:01:30 +0000
Files and hashes: 1: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: /jL6JDeIAefKXg3lT0s3PZiZnXn9TW6gNj5ibosAfpg=)
2: fXgOCRgOegnV1PEEj7p5LXQbx44.roa (hash: HzRwFTg0Qc4HS5vLz9pBbUoRgZKToj/APhUhfPnSo54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:20:51:24:28:2e:68:b3:8d:3a:11:6b:fc:ce:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Mar 2 07:01:30 2026 GMT
Not After : Mar 3 07:01:30 2026 GMT
Subject: CN=f8763e585978fd40e88c857216ee35f363280e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:be:57:85:67:a1:0f:df:36:81:2b:ad:71:d4:
a3:6f:fe:84:3f:a2:41:3c:c4:fc:30:9c:62:9a:d9:
7e:74:ab:2a:5a:57:e1:c3:c8:b2:4d:7f:15:08:19:
1a:22:f9:7e:d8:43:e5:0e:e3:0c:6a:40:cd:f2:5e:
85:fa:d7:17:5b:e3:c8:94:01:f8:05:1c:c3:02:97:
4b:34:89:66:58:30:bf:76:c5:a3:77:3d:5b:3e:8c:
fc:de:1f:db:9f:d8:a4:01:63:88:3f:d8:ca:1a:4b:
11:67:84:b3:03:2c:cc:13:a1:60:b1:1d:33:4b:2e:
95:fd:6a:91:df:4c:f9:66:da:a2:cc:a4:16:65:e0:
0b:09:d9:bf:8c:83:a2:e2:87:99:e1:8e:26:32:c7:
e5:74:b2:a8:5b:92:ba:1b:63:8f:90:dd:83:7a:c4:
f0:48:c3:7b:42:d2:f5:c6:e9:91:7c:e7:3d:00:18:
fe:a9:a1:fc:ea:24:71:a8:89:b5:f8:32:c2:f5:e2:
db:82:61:d6:98:d7:a1:8c:b0:bf:40:a6:f8:1d:bb:
10:7c:49:0e:71:36:fa:3a:27:b9:a3:a6:76:31:fb:
6e:b3:5b:0c:df:fc:19:47:15:c9:06:36:22:e2:23:
a1:37:8c:e3:2e:b7:7b:a2:d6:4a:f3:1a:a2:13:be:
a5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:76:3E:58:59:78:FD:40:E8:8C:85:72:16:EE:35:F3:63:28:0E:53
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:1c:9a:62:2e:4d:aa:78:27:54:2b:04:48:6a:b6:1f:e3:28:
06:fb:da:87:6f:28:58:05:5a:96:37:65:eb:40:fd:7e:b8:06:
14:53:1f:41:44:f0:6e:10:12:dd:ff:10:c2:ea:e3:42:22:30:
f3:c6:fe:0d:70:c3:d2:c2:ff:45:0c:ba:07:4b:97:44:26:0d:
3f:11:a1:32:ae:40:4b:86:9b:58:04:76:06:94:fe:d1:68:ff:
9c:8e:2a:7e:3b:e0:a5:92:61:a9:dd:79:c8:e6:8b:13:a0:14:
6f:45:17:d9:a7:3a:cf:a3:ca:1d:51:ce:a1:0f:88:4a:1b:3f:
e7:65:78:ab:e9:89:7d:09:e3:23:55:82:d6:0b:72:7f:d6:42:
96:65:fe:78:cb:ac:79:03:e5:52:95:41:3b:5d:2b:e8:4a:ec:
7a:35:eb:71:cc:76:1f:91:96:32:82:c9:49:b1:f5:dd:e1:54:
a7:67:97:3c:0b:74:56:6d:85:7d:df:2a:07:d5:2b:4a:ed:cf:
35:b6:28:1e:6c:11:3f:e8:1a:2d:c9:09:93:37:62:b5:c6:49:
59:cb:71:a7:eb:43:11:2e:5c:56:ee:16:14:0d:1a:bb:c8:80:
d9:cd:87:ba:be:b9:a9:91:61:e5:22:33:2d:f2:7f:e5:2f:a4:
7a:99:b0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:49:39 2026 by rpki-client