Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json)
Hash identifier: Pyx3EV81nKcd97pPfMg5XuTg3T33eLfBkhf8sZMGVzI=
Subject key identifier: 72:D3:01:C1:C6:14:EF:19:68:31:50:EC:31:DA:70:79:DF:80:93:14
Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Certificate serial: 019D9A074BD0DF965EE85617C32F85E278AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
Manifest number: 0D43
Signing time: Fri 17 Apr 2026 06:01:02 +0000
Manifest this update: Fri 17 Apr 2026 06:01:02 +0000
Manifest next update: Sat 18 Apr 2026 06:01:02 +0000
Files and hashes: 1: SNdVrzFoTGYFoAaQRYv8cJ6F2H0.roa (hash: MfCh5miyV4l1WaY/F5DKyibenGShF9S2TLmog0i5DGQ=)
2: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: GH+snuCCkQuu2yVMXDri6QzncYuxlSq4eHLKdSED0CQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:4b:d0:df:96:5e:e8:56:17:c3:2f:85:e2:78:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Validity
Not Before: Apr 17 06:01:02 2026 GMT
Not After : Apr 18 06:01:02 2026 GMT
Subject: CN=72d301c1c614ef19683150ec31da7079df809314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5e:52:58:86:2c:55:3e:67:d3:89:34:e8:83:
a6:01:4a:06:7b:a2:f6:42:99:51:15:24:fa:9d:64:
b8:1b:25:9a:49:27:65:5c:bd:0b:26:15:7a:bd:54:
30:ba:fc:dd:22:75:6b:1e:31:69:6c:66:74:b0:d7:
dd:23:24:3b:11:ce:7e:e2:01:f4:62:4c:0d:cb:33:
ac:bc:f3:99:bc:6d:98:a2:fa:4e:51:4c:78:a9:84:
7a:76:25:46:ab:2a:c6:53:13:32:22:87:e3:44:a1:
7f:68:dc:05:cf:6e:bf:28:14:fb:89:02:31:ca:b9:
41:da:cc:ec:0a:d4:c7:f5:b0:a6:71:7c:3b:67:5a:
a4:65:e1:3f:41:b2:58:da:42:db:29:8a:1e:58:ab:
cc:16:d0:25:65:62:78:24:6e:53:e6:fc:b0:a0:1f:
4b:33:f6:b1:ff:b6:ba:c8:cb:89:9d:3b:ed:f5:81:
8d:46:0b:c1:6c:61:80:31:58:12:a6:28:d7:7b:0d:
07:b1:ff:eb:a9:dc:02:ee:39:ec:e4:d7:a6:ff:a4:
01:ea:8f:20:c9:00:e0:06:e9:90:48:7f:3c:29:5f:
a3:af:6d:fe:da:92:44:b1:8d:e1:72:52:27:6f:07:
4a:d3:86:78:29:18:89:f3:fc:51:e6:a5:05:fc:dc:
8d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D3:01:C1:C6:14:EF:19:68:31:50:EC:31:DA:70:79:DF:80:93:14
X509v3 Authority Key Identifier:
keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:0f:91:20:b9:57:c4:61:38:24:22:e5:9a:aa:30:81:54:f7:
d8:d8:06:a2:5b:ae:35:eb:98:3c:68:40:ea:7d:c9:90:93:93:
91:40:37:62:d0:5d:1e:2a:dc:34:d7:a3:4f:c2:47:84:19:c4:
14:d7:1e:5e:a4:6c:49:35:82:f8:f3:7e:28:29:82:00:43:f7:
b0:65:20:12:cb:8d:d0:39:a9:c9:7f:cf:08:81:87:e5:6d:4d:
3c:fc:69:e2:df:75:5a:21:8d:f7:b9:4b:fc:11:3f:9b:60:37:
c6:ac:25:ba:3d:ba:35:a3:4a:68:19:8c:3d:4a:f3:9c:56:7e:
07:ad:21:c3:7c:01:53:12:39:95:80:51:1d:e8:41:a0:01:a2:
de:60:da:80:ac:1e:16:57:96:8f:d7:af:d0:fe:24:dd:07:a2:
dc:cf:51:99:6f:da:e5:db:04:90:c9:b7:0c:65:18:ca:fc:c1:
6e:cd:15:33:9c:b1:0b:77:23:f3:59:80:e8:31:14:1a:79:bb:
4c:1f:fd:00:d1:dc:6f:81:1c:89:d5:d2:8a:a5:e2:6e:6d:69:
d4:44:0a:64:e3:9c:f7:cb:d4:58:5a:4d:3e:fd:e9:e6:4a:87:
76:3e:b3:bc:db:5a:1d:44:2b:f0:4b:ce:37:a8:a4:03:02:dc:
ae:05:84:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:04:26 2026 by rpki-client