Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
File: cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft (raw, json)
Hash identifier: Tlj8jNTMqn4W28Xgc58KWrKahwRA7HsxYZaolfYGUI4=
Subject key identifier: 25:14:6F:1F:D0:42:1A:A8:87:71:F4:37:77:2A:62:EC:F5:19:58:F6
Authority key identifier: 71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
Certificate issuer: /CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Certificate serial: 019CAE6C08D3E4524B1D28E7A0C72B2E5FF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
Manifest number: 098C
Signing time: Mon 02 Mar 2026 12:00:41 +0000
Manifest this update: Mon 02 Mar 2026 12:00:41 +0000
Manifest next update: Tue 03 Mar 2026 12:00:41 +0000
Files and hashes: 1: T-RVDwu2R5GREmXjp9oK0pO-emk.roa (hash: NLaXBrxUU7l8TdptUYXzcoGWDubvJljOT1d1MNSpjzA=)
2: cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl (hash: gLH+jeV4Oe083yC2NqehJfedKZ1ZLZjOeP/UvOEjsfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:08:d3:e4:52:4b:1d:28:e7:a0:c7:2b:2e:5f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Validity
Not Before: Mar 2 12:00:41 2026 GMT
Not After : Mar 3 12:00:41 2026 GMT
Subject: CN=25146f1fd0421aa88771f437772a62ecf51958f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:8f:c7:8c:6e:4c:ae:a5:f3:a8:a7:e6:44:
a7:0a:75:a1:96:03:b1:71:84:29:c5:92:88:03:d0:
1d:d2:a5:24:99:8a:b5:9b:61:91:d9:af:f7:88:de:
44:50:d2:8b:e0:0b:f6:95:91:a6:8f:fb:d6:b1:02:
9c:9f:20:a8:98:6f:a1:ad:90:e6:df:d3:f9:b8:e3:
44:09:92:95:81:c0:73:0e:dd:14:da:19:f5:eb:e1:
f0:3f:05:8d:28:8d:c8:d6:a4:88:45:46:14:b3:a6:
f6:23:12:d5:d1:1e:d6:a7:4d:08:72:7d:3a:dd:06:
05:a7:e5:5a:36:a6:70:4a:1f:1e:e5:c1:48:5a:75:
0f:54:04:45:b2:35:3e:0a:1f:21:a8:e5:de:03:6e:
59:d4:40:e2:3b:a4:1b:84:08:ae:d6:12:88:66:80:
3d:24:69:d1:f4:95:75:7e:69:00:5a:75:7e:bb:b8:
ab:c2:5b:15:65:9a:80:bc:e0:8a:a8:10:b1:24:f9:
3e:18:a8:d9:46:07:17:05:8e:0d:91:19:c7:7d:c1:
81:08:ef:a6:bd:74:8d:e4:ab:14:32:ca:06:84:1f:
91:33:eb:0e:68:6c:b8:ec:a2:97:05:11:52:4f:46:
c8:d6:b5:90:89:e1:99:d9:6e:37:f1:da:49:99:24:
3e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:14:6F:1F:D0:42:1A:A8:87:71:F4:37:77:2A:62:EC:F5:19:58:F6
X509v3 Authority Key Identifier:
keyid:71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:c9:b0:b7:fd:54:2c:7b:6d:f6:12:ee:73:e3:9b:02:d3:98:
c0:dd:9a:ba:34:84:38:d6:a7:c4:c7:74:f3:1a:d6:73:27:63:
d5:1c:09:e3:54:73:a9:68:09:bf:00:c4:8d:51:3d:69:c0:66:
d5:c3:d1:4a:25:48:56:2a:66:df:65:1a:c6:1e:8c:8b:8f:c4:
be:a1:4b:72:88:fb:c2:dd:c6:4c:a3:30:4c:18:c9:a3:5d:eb:
e6:7c:4d:18:28:95:a9:32:5d:62:df:e9:07:8c:9b:80:51:e2:
ba:c0:82:fa:92:b6:e6:b5:3b:03:76:c4:bb:db:e3:70:86:19:
21:96:79:cb:e9:a4:da:2b:62:be:c4:f2:3d:e0:56:cd:7e:a3:
a5:f9:d5:2f:43:75:3f:45:56:11:f7:df:8f:a8:8d:67:bc:1b:
59:ae:26:c7:c7:51:b5:6c:ea:c8:22:78:88:b9:8a:ee:19:cd:
f7:ba:1d:a6:ba:53:21:2b:56:74:a3:f4:58:86:d3:b8:ee:b7:
ac:d2:72:e1:03:86:0f:0f:37:42:14:b3:8f:a5:84:f7:41:a5:
0c:8f:b3:11:38:d1:4e:29:51:e4:18:1c:58:e1:e9:8f:7f:4c:
1a:cd:03:9b:69:3a:33:96:78:13:29:3e:ee:6c:14:d3:6d:5a:
4a:34:06:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:55:47 2026 by rpki-client