Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: NDdvFHokHq6qCBwYl0J5SGpke0NvSU8BnJUdC00A9iQ=
Subject key identifier: E7:35:43:5D:AA:58:8E:9D:F3:13:0B:87:70:27:16:C4:27:CA:1F:AA
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 019CACB4636CE3FA8B8619643661CA2C82F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 09C6
Signing time: Mon 02 Mar 2026 04:00:28 +0000
Manifest this update: Mon 02 Mar 2026 04:00:28 +0000
Manifest next update: Tue 03 Mar 2026 04:00:28 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: AQwYkgFNhMyzFaqYmTgQa7TWk/uTpAXDiyffqXSVfz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:63:6c:e3:fa:8b:86:19:64:36:61:ca:2c:82:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Mar 2 04:00:28 2026 GMT
Not After : Mar 3 04:00:28 2026 GMT
Subject: CN=e735435daa588e9df3130b87702716c427ca1faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1b:89:27:29:30:d9:7c:3d:e2:74:97:8b:ba:
75:5b:81:c2:66:24:24:0a:5a:82:b7:55:8f:19:97:
a3:b1:79:40:65:47:f4:bf:94:1e:d0:3d:b1:ae:bd:
7b:c4:d3:11:fb:7e:f7:c5:3b:66:a0:bc:cd:dc:da:
ec:14:e3:8d:a1:0b:f4:0f:0a:65:e3:c3:53:a4:4c:
89:79:2d:f4:56:17:1b:d5:a0:c1:3e:c0:d3:43:b2:
9b:83:68:23:17:d6:22:70:48:08:9f:5e:a8:f3:37:
59:a1:7e:10:98:45:f5:84:94:25:36:5b:97:39:83:
9a:e6:77:5f:2b:eb:6a:28:4b:b8:bc:bf:8c:59:20:
0d:ad:50:c1:63:72:a4:aa:cd:89:41:f8:b8:26:62:
89:9b:6a:89:64:2b:6f:85:af:5a:89:c3:1c:8f:8d:
d6:0e:b1:8b:1d:44:79:16:94:a0:4f:37:be:ef:15:
9d:b4:58:95:23:cd:8c:7e:3c:db:44:18:77:5f:b5:
99:68:5e:7b:5a:1e:90:f6:8b:4f:fc:a3:f0:40:09:
9d:e1:67:3f:dd:b0:14:8e:40:d9:ea:28:52:bc:f0:
da:67:a2:91:8f:c7:7c:34:a5:ca:c0:2c:15:27:77:
9d:bd:df:1f:9e:2c:d4:f3:2b:a1:e7:0e:0c:30:04:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:35:43:5D:AA:58:8E:9D:F3:13:0B:87:70:27:16:C4:27:CA:1F:AA
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:8d:a6:83:63:ff:03:33:29:90:aa:c3:5e:0b:91:c0:05:61:
6f:bd:bf:aa:3c:5e:50:2c:15:15:8b:b1:35:1a:5f:f7:44:26:
ab:93:e4:3b:61:46:fb:ac:75:23:4e:a6:f0:4e:be:88:4c:c4:
ed:50:ec:08:8c:22:9d:a6:c8:4a:40:7b:be:81:af:cb:0f:72:
fc:73:32:10:dd:ca:dc:cc:07:fa:88:06:a9:52:03:03:96:e3:
cb:f2:c7:ca:a5:60:70:13:79:c0:43:40:08:9b:07:43:e7:3f:
27:5f:c2:ac:fe:84:9e:37:06:45:0a:51:fc:5d:27:3a:d5:60:
58:b4:59:34:50:98:71:66:67:2e:4c:20:81:fe:ab:70:42:1d:
68:7e:7f:57:94:94:31:4c:87:55:55:08:98:0d:1e:a2:75:f8:
c7:32:83:63:d6:81:7a:77:c8:db:38:6d:7e:1b:cb:80:9e:e4:
4d:4f:d5:60:38:0f:12:7f:b9:33:99:a4:7a:54:b7:03:61:77:
f6:95:0c:1d:5c:49:f1:17:84:de:be:dc:1b:ab:cb:b1:32:a4:
77:db:00:5f:8e:18:76:ee:ff:0f:82:2e:1d:b6:cd:ed:f5:87:
9c:a8:06:e3:fd:9b:d3:f1:f5:d9:fd:f5:59:e5:0c:2a:35:59:
91:83:f8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:36:15 2026 by rpki-client