Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
File: cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft (raw, json)
Hash identifier: nmHTZVlFnnoIvLiP+F5lxhVeHiilaaxYNcmGK2VDUpU=
Subject key identifier: F1:72:59:22:53:5E:00:E8:44:9B:60:3B:60:12:5C:E0:17:F5:D5:47
Authority key identifier: 71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
Certificate issuer: /CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Certificate serial: 019D9BF573EE30E53318DBDD9A99000F9E93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
Manifest number: 0A07
Signing time: Fri 17 Apr 2026 15:00:47 +0000
Manifest this update: Fri 17 Apr 2026 15:00:47 +0000
Manifest next update: Sat 18 Apr 2026 15:00:47 +0000
Files and hashes: 1: T-RVDwu2R5GREmXjp9oK0pO-emk.roa (hash: NLaXBrxUU7l8TdptUYXzcoGWDubvJljOT1d1MNSpjzA=)
2: cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl (hash: Vr0yZtddv7OcsFuk2uV7suz0U7h+dQ9RpKxxEgBuPnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:73:ee:30:e5:33:18:db:dd:9a:99:00:0f:9e:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Validity
Not Before: Apr 17 15:00:47 2026 GMT
Not After : Apr 18 15:00:47 2026 GMT
Subject: CN=f1725922535e00e8449b603b60125ce017f5d547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:15:40:65:9e:71:77:a0:ee:88:1a:6e:08:81:
2b:74:b8:fe:90:22:23:f1:02:aa:d3:b5:cb:b7:06:
cf:42:1d:21:ba:7a:b0:95:3f:47:3b:44:93:de:b9:
6d:1a:23:ce:c0:d5:6d:a0:4e:e1:8b:0d:c6:df:69:
45:63:a7:ef:63:70:30:4a:10:38:07:87:54:f6:df:
71:d6:51:0e:4a:a3:67:0c:24:88:1d:0d:ee:ed:f5:
7f:4a:b5:00:f2:8e:4d:db:55:47:77:19:58:ff:71:
af:ad:c6:c3:75:f7:d8:67:1f:f5:81:6b:1b:a4:aa:
57:d4:04:58:57:d9:a9:f5:15:8b:f3:bb:54:04:e3:
ac:80:5b:f4:e5:09:02:a1:0b:4c:6e:eb:f0:3c:92:
c7:0a:cc:e0:09:ed:c2:5a:dc:0e:72:b5:47:d8:19:
5e:9b:ac:59:95:5c:1e:04:1a:be:7c:cb:94:31:af:
dd:f7:a9:aa:27:6d:62:ba:4d:8e:79:af:b0:61:c9:
5d:07:dc:9d:b9:a5:fa:b1:b7:b9:8f:c8:da:b4:2e:
32:f2:91:6d:13:90:e4:d8:0f:1b:04:b5:66:e3:15:
99:57:e6:c5:ee:9a:db:f1:3b:2f:7d:11:42:04:ac:
1e:32:a4:40:26:bd:93:bc:ae:47:1d:db:39:d2:0f:
a1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:72:59:22:53:5E:00:E8:44:9B:60:3B:60:12:5C:E0:17:F5:D5:47
X509v3 Authority Key Identifier:
keyid:71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:d7:01:30:4c:a0:89:f7:3b:ab:64:16:31:dd:8f:4a:39:77:
dc:78:81:77:db:4a:91:ef:63:31:18:5f:7a:2f:62:67:ef:69:
d0:06:c7:41:71:73:26:30:3d:4f:d0:ee:41:ff:c7:4e:64:4d:
e7:17:48:6a:95:53:31:90:20:1c:54:e5:15:0c:1e:3d:d5:9c:
42:ec:0d:1c:ea:90:9c:8a:04:4d:25:9f:66:31:23:cf:9f:82:
05:fd:7d:be:b8:ff:be:50:e2:29:a4:14:4d:64:92:93:c8:8c:
b3:cc:3b:5b:a2:ae:20:7e:20:52:37:ce:3c:ba:c7:41:e9:a5:
7f:20:a3:86:c6:16:b7:e4:46:8a:d7:67:4a:22:8b:75:88:88:
23:7e:d7:14:bb:fc:0a:b9:53:8d:ae:87:82:78:08:56:6e:7f:
ba:3c:d6:5b:c4:e5:2c:74:04:69:fe:f0:60:1b:18:a4:8c:92:
af:d7:0d:c5:6b:0c:f9:7b:8c:3b:30:ab:93:81:3e:71:20:68:
f2:95:78:17:63:d7:13:85:8c:8c:ee:91:b8:58:0c:49:cf:91:
48:52:76:65:de:33:ae:f1:24:8d:e0:b5:59:96:49:9b:55:89:
95:11:21:70:c1:12:a9:1c:fa:2f:ba:ca:32:9d:ff:3f:bd:21:
ff:3f:9f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:47:11 2026 by rpki-client