Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: VUt7Cpyj4Ml5nGuDaLgZnbKafqSRLFNKyJ3qfuwbxIQ=
Subject key identifier: 0C:72:63:62:47:33:81:48:94:5A:19:4C:A8:AB:0F:0E:BB:3A:04:0F
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 019D98F4A644D401D8B7FB8FC64B184B2671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 06E5
Signing time: Fri 17 Apr 2026 01:01:03 +0000
Manifest this update: Fri 17 Apr 2026 01:01:03 +0000
Manifest next update: Sat 18 Apr 2026 01:01:03 +0000
Files and hashes: 1: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: upwyHaeeSQT6CI3XuE/ZMuXHSk0+d5SVyMGOIaNMBvQ=)
2: fXgOCRgOegnV1PEEj7p5LXQbx44.roa (hash: HzRwFTg0Qc4HS5vLz9pBbUoRgZKToj/APhUhfPnSo54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a6:44:d4:01:d8:b7:fb:8f:c6:4b:18:4b:26:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Apr 17 01:01:03 2026 GMT
Not After : Apr 18 01:01:03 2026 GMT
Subject: CN=0c72636247338148945a194ca8ab0f0ebb3a040f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:66:3f:81:da:a5:5a:6d:b7:6c:c7:f0:12:10:
ef:32:cb:d9:98:23:9d:55:12:ae:12:11:ab:2f:92:
3a:05:fb:4b:1d:c8:7a:84:f0:a5:a3:bf:9b:da:ad:
50:c4:60:fb:08:c9:22:0f:13:08:90:4b:f1:9d:53:
8e:ee:ef:be:9a:a2:6f:f0:b1:0a:b4:14:c6:bd:d6:
98:7c:8a:2b:c0:2c:54:73:66:a0:df:f7:6c:25:06:
49:8a:17:d8:e7:c2:e2:3b:4e:09:4d:22:f6:b0:00:
25:1e:c7:8f:e7:a7:d3:4d:27:c6:38:a8:fb:83:41:
d5:da:86:f3:7b:ed:ae:80:a8:ea:cd:ff:86:77:ef:
ca:7f:fc:fa:e5:18:6e:96:fe:83:b1:18:00:4c:f8:
5d:c8:d5:47:a2:83:d6:b9:28:30:48:4f:a7:b3:5a:
03:68:ab:cf:20:45:19:b3:25:5f:1c:79:86:79:b2:
c3:15:e4:2a:a9:65:23:c4:2d:0e:1a:d5:d1:6a:a6:
63:7b:97:8f:f2:3c:e4:0f:10:8b:6d:95:c5:c0:64:
15:bb:83:ce:4a:43:cf:70:c2:23:86:4b:d4:a5:ea:
f8:f8:ef:a3:19:c3:ca:e1:c2:11:6e:2c:c5:b6:9f:
af:0d:bc:dd:8b:5b:bd:32:c3:b6:25:e0:e8:45:cb:
09:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:72:63:62:47:33:81:48:94:5A:19:4C:A8:AB:0F:0E:BB:3A:04:0F
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:45:df:09:dd:41:68:b2:c9:59:08:60:46:f8:da:9b:2b:f7:
92:ac:61:af:ab:f9:7b:20:f7:3d:22:cd:61:73:c0:ba:b1:cd:
69:b2:63:d5:fb:b8:b1:58:8b:98:bf:9c:6d:cd:68:b4:69:93:
7f:ce:dd:cf:52:66:5b:d1:9c:a4:05:86:02:5a:39:49:b4:cd:
c8:95:f4:18:8e:d7:5b:7c:e0:49:67:ca:38:ad:f4:79:11:dd:
ba:1c:cd:90:0c:6a:3d:dc:98:ca:d2:f7:7e:eb:59:75:fa:b6:
96:34:e3:64:c3:b9:67:93:3a:78:77:4d:7f:45:f7:da:22:18:
5f:86:7c:28:98:e4:23:88:45:12:97:56:a3:6b:df:ee:b1:e9:
48:47:9f:4e:d9:04:33:91:f1:66:5f:f0:75:82:2e:39:68:ce:
cf:22:de:21:d5:13:f7:18:81:bd:9d:92:0d:15:1b:18:2e:6d:
0b:47:e1:57:db:ca:6a:b4:9a:03:a4:64:ad:1e:8a:f3:c6:63:
d2:ac:b7:ba:c6:ca:9e:ca:5b:79:f1:a6:38:ad:3b:23:43:30:
84:e5:b0:00:8b:a3:61:1b:a6:13:39:a2:89:16:ff:90:57:5d:
10:9d:7a:df:b4:45:ae:4b:58:50:b8:f6:ee:33:df:77:97:61:
12:12:b8:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9KZE1AHYt/uPxksYSyZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNzE1MDZiZmFiOTEyYzdiODE3MWI5NmI4NWEwOTliMTQw
ZTZjZDgwHhcNMjYwNDE3MDEwMTAzWhcNMjYwNDE4MDEwMTAzWjAzMTEwLwYDVQQD
EygwYzcyNjM2MjQ3MzM4MTQ4OTQ1YTE5NGNhOGFiMGYwZWJiM2EwNDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA82Y/gdqlWm23bMfwEhDvMsvZmCOd
VRKuEhGrL5I6BftLHch6hPClo7+b2q1QxGD7CMkiDxMIkEvxnVOO7u++mqJv8LEK
tBTGvdaYfIorwCxUc2ag3/dsJQZJihfY58LiO04JTSL2sAAlHseP56fTTSfGOKj7
g0HV2obze+2ugKjqzf+Gd+/Kf/z65Rhulv6DsRgATPhdyNVHooPWuSgwSE+ns1oD
aKvPIEUZsyVfHHmGebLDFeQqqWUjxC0OGtXRaqZje5eP8jzkDxCLbZXFwGQVu4PO
SkPPcMIjhkvUper4+O+jGcPK4cIRbizFtp+vDbzdi1u9MsO2JeDoRcsJMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAxyY2JHM4FIlFoZTKirDw67OgQPMB8GA1UdIwQY
MBaAFHJxUGv6uRLHuBcblrhaCZsUDmzYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY25GUWFfcTVFc2U0Rnh1V3VGb0pteFFPYk5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9jZDU4MjQtMmRkZS00MDNlLWIyYzQt
ZDIyNTAzMmQxODU4LzEvY25GUWFfcTVFc2U0Rnh1V3VGb0pteFFPYk5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9jZDU4MjQtMmRkZS00MDNlLWIyYzQtZDIyNTAzMmQxODU4
LzEvY25GUWFfcTVFc2U0Rnh1V3VGb0pteFFPYk5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxEXfCd1B
aLLJWQhgRvjamyv3kqxhr6v5eyD3PSLNYXPAurHNabJj1fu4sViLmL+cbc1otGmT
f87dz1JmW9GcpAWGAlo5SbTNyJX0GI7XW3zgSWfKOK30eRHduhzNkAxqPdyYytL3
futZdfq2ljTjZMO5Z5M6eHdNf0X32iIYX4Z8KJjkI4hFEpdWo2vf7rHpSEefTtkE
M5HxZl/wdYIuOWjOzyLeIdUT9xiBvZ2SDRUbGC5tC0fhV9vKarSaA6RkrR6K88Zj
0qy3usbKnspbefGmOK07I0MwhOWwAIujYRumEzmiiRb/kFddEJ1637RFrktYULj2
7jPfd5dhEhK4aQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:16:12 2026 by rpki-client