Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
File: CbtjJ836FlJNx9AzcTivMl-14tk.mft (raw, json)
Hash identifier: ilu/zi5MPVfPz8fXbxNSJACfnL3IBrQBMLR5hPAzjS0=
Subject key identifier: 92:56:06:13:C2:69:97:93:0C:E6:C6:7B:66:AF:A6:66:00:FC:6B:D6
Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Certificate serial: 019CAB34AEE56955BD97FED8DAB14643209C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
Manifest number: 160A
Signing time: Sun 01 Mar 2026 21:01:22 +0000
Manifest this update: Sun 01 Mar 2026 21:01:22 +0000
Manifest next update: Mon 02 Mar 2026 21:01:22 +0000
Files and hashes: 1: CbtjJ836FlJNx9AzcTivMl-14tk.crl (hash: PFeAyuroo+6T1s4b1M3+lL/OMtlZgRXx4jlMnpJE2vU=)
2: xAAFr_8pM0qHutXKz5bJzNuOHSs.roa (hash: mrqi/YUBSl2ewfWvM3J/1CATw90lWobMjcJ1JqVQVtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:ae:e5:69:55:bd:97:fe:d8:da:b1:46:43:20:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Validity
Not Before: Mar 1 21:01:22 2026 GMT
Not After : Mar 2 21:01:22 2026 GMT
Subject: CN=92560613c26997930ce6c67b66afa66600fc6bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:20:54:f0:cc:8e:74:76:7d:0d:13:ab:90:
1f:5e:d0:53:86:d0:78:32:08:fd:06:6a:60:f9:61:
3f:7a:25:c8:ad:58:dc:e3:9e:de:8b:d9:31:30:f9:
29:0c:ab:4b:f6:61:fe:ed:9b:bb:3e:d2:6d:2e:66:
dd:65:23:04:52:0a:db:27:ac:bb:da:90:e1:dd:90:
07:2c:00:30:77:d9:f3:a0:6a:ea:4c:19:81:67:e8:
cf:3d:8b:81:f0:f4:b5:16:7d:85:e2:9a:2a:ee:3d:
1a:25:48:8a:f3:ee:94:9a:53:20:6b:96:1a:6a:3f:
c7:a8:b9:a8:f3:ec:0b:2d:2c:f4:46:17:39:a7:b9:
5a:20:8e:79:53:ef:9a:dd:2a:67:fe:e9:91:10:1a:
7b:dd:c7:73:f6:d6:d0:02:c6:4f:d0:65:1e:4c:6b:
40:63:2f:a2:86:8c:e2:66:f2:29:b8:cb:34:47:fa:
5a:c1:f6:b7:cc:91:73:26:0f:80:be:3a:6b:5b:5e:
c6:71:90:06:30:9a:2b:c4:4a:b6:e8:0a:c2:45:07:
2e:ae:6c:de:d8:a6:b8:bd:7f:a0:f1:e1:18:03:2c:
fc:7b:ec:8d:64:ab:7f:14:1e:86:7b:05:95:0a:09:
92:8f:2e:7c:f5:56:cc:31:e2:7c:9c:43:b8:f3:22:
5c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:56:06:13:C2:69:97:93:0C:E6:C6:7B:66:AF:A6:66:00:FC:6B:D6
X509v3 Authority Key Identifier:
keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ab:b6:61:07:d2:25:ad:0d:fb:58:59:a8:8e:07:b0:08:c7:
71:db:50:f9:1d:76:da:f0:4a:d5:7d:89:de:9f:4b:04:75:96:
a7:9d:82:a7:97:ea:ef:86:9a:1f:52:3c:c2:f9:2b:90:10:2e:
eb:41:d6:bb:c3:45:88:d4:78:24:18:bb:bf:f5:46:5f:b9:28:
0a:d4:13:eb:6c:75:24:22:12:b3:b5:48:71:45:66:d4:2b:23:
79:76:6d:0c:e5:c3:e7:0f:c2:58:06:ba:40:c1:f8:f8:7d:7d:
84:4b:63:d7:c1:1f:fa:b9:f6:a5:0b:0a:b7:1b:a1:af:16:57:
ce:86:c7:d3:30:f8:a7:89:99:58:60:eb:cb:3f:23:74:28:43:
77:ca:b2:92:c1:54:44:b1:d6:3c:13:69:cc:dd:11:5f:13:b3:
d6:37:58:0e:d3:54:b2:ee:c1:4b:7b:08:e7:d5:f8:56:65:6f:
b7:2f:75:27:98:47:d8:ef:c7:6f:cc:b0:1e:77:2b:9d:b2:14:
1b:8f:51:7c:38:7d:32:0e:bb:90:3b:c6:6e:89:8e:f0:2a:d9:
b9:4a:b9:ac:53:c1:a8:d2:ba:c3:e1:a8:39:48:36:ea:83:bd:
09:90:ef:49:88:22:be:4c:25:6e:54:b1:f8:a4:91:7f:77:4a:
b2:64:b2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:40:06 2026 by rpki-client