Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: yu91J5Dwwvm9FhkmGRolfP7bEeiiRXxh+z53Y9MBrbk=
Subject key identifier: F7:61:8D:F7:AE:7F:0A:1E:27:95:1C:64:33:C9:B4:BC:D7:C4:B6:F2
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 019EC06E538E1B717FE84D4BC36DB359AE36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 077E
Signing time: Sat 13 Jun 2026 10:01:56 +0000
Manifest this update: Sat 13 Jun 2026 10:01:56 +0000
Manifest next update: Sun 14 Jun 2026 10:01:56 +0000
Files and hashes: 1: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: dxk/4Fcz9dUqQGPPDp7U4iZNe5RW8+A7luEYP70YWXg=)
2: fXgOCRgOegnV1PEEj7p5LXQbx44.roa (hash: HzRwFTg0Qc4HS5vLz9pBbUoRgZKToj/APhUhfPnSo54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6e:53:8e:1b:71:7f:e8:4d:4b:c3:6d:b3:59:ae:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Jun 13 10:01:56 2026 GMT
Not After : Jun 14 10:01:56 2026 GMT
Subject: CN=f7618df7ae7f0a1e27951c6433c9b4bcd7c4b6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ec:82:16:ca:c9:98:47:1e:42:69:23:1e:03:
a0:59:57:81:a7:92:9f:97:d0:d9:7a:78:1d:13:67:
1f:99:ae:fc:1e:09:eb:b9:77:2f:69:1c:03:d7:d0:
80:79:8c:7c:19:33:f5:77:27:b5:0a:c3:3d:40:37:
35:0e:0b:5e:29:43:7e:d1:d7:d2:90:41:83:bb:69:
d7:47:21:d5:d3:2f:4c:25:fa:39:b2:99:b4:d3:51:
30:ac:e3:c2:9d:cd:9a:30:d2:16:2b:de:69:79:8f:
c5:a1:2a:09:74:1d:98:59:dc:66:e2:31:30:46:99:
8f:da:7d:98:7f:c1:1e:c3:33:2f:0a:b3:1e:0f:da:
ad:f2:f5:3e:c5:37:60:c7:e2:76:15:60:16:b7:9f:
33:99:f1:17:bb:bc:32:d4:9a:1f:4e:ac:27:ce:d2:
8e:62:30:f5:01:5b:ac:fb:eb:3b:73:7e:47:af:b1:
27:de:f7:ad:82:66:ba:9c:17:b7:67:94:4a:b3:10:
8f:94:bb:9b:59:f8:de:78:85:0f:e0:5b:87:0c:06:
ec:7f:94:c5:6e:40:c7:49:74:9a:6c:b3:24:aa:8a:
31:7f:5d:23:f0:06:03:99:bd:a6:f4:b9:d3:f8:7c:
c0:4b:51:19:89:38:d5:c2:a4:88:9f:cf:f7:95:47:
cc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:61:8D:F7:AE:7F:0A:1E:27:95:1C:64:33:C9:B4:BC:D7:C4:B6:F2
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:71:c4:3f:96:1b:1d:e7:d4:a2:3f:b2:5f:e9:e8:07:63:0b:
e7:ae:df:2c:06:83:7f:16:1b:1d:ff:cd:14:0e:cc:3a:89:ed:
98:9c:95:dd:9a:dc:83:c7:f3:60:28:1b:0c:c5:16:09:82:e5:
0a:61:12:ae:b0:1a:6e:cb:9b:ce:0b:9c:a0:01:07:a7:c8:89:
2b:f7:53:c2:21:02:e8:9b:f0:c1:ab:c4:4f:b7:45:db:90:bb:
9b:a6:e9:eb:02:fd:6b:0e:78:8a:91:9f:f8:7b:19:6d:63:38:
5d:1e:08:6b:d5:0a:a3:fa:da:9c:7b:e8:cf:78:bd:ca:56:4d:
64:d8:cb:0a:8e:3a:77:34:f2:ae:69:9c:24:61:2e:75:b8:96:
d7:60:2c:1c:f5:bc:0c:b2:e6:ad:d2:5e:c3:6d:40:48:91:b6:
55:eb:4e:9a:d2:c8:54:68:54:71:e9:d4:7d:3a:27:cc:54:dc:
d9:05:74:a2:79:ef:c1:86:78:49:24:29:11:f2:e7:0a:55:ec:
21:69:9a:0d:df:f9:f2:30:49:46:4f:66:64:fd:95:cd:a6:7a:
20:23:e3:73:5e:c6:d9:6a:83:fb:cf:fe:07:91:79:9b:fe:a3:
47:6d:9a:75:dc:de:a0:a6:d9:d8:94:b8:33:66:5c:b3:66:dd:
94:a4:12:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:52:57 2026 by rpki-client