Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: TI8KRnNU4gvwGw/ZVNEkgjHGDrhI6O4bEmTDhavuulo=
Subject key identifier: FA:83:42:15:1A:EB:84:59:27:8C:5F:CF:FD:3F:80:A1:A3:A3:0F:D4
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019D9B1997714E8F6570F90193F90E140EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 04BC
Signing time: Fri 17 Apr 2026 11:00:38 +0000
Manifest this update: Fri 17 Apr 2026 11:00:38 +0000
Manifest next update: Sat 18 Apr 2026 11:00:38 +0000
Files and hashes: 1: 1-BDF7EdL9hLHZ4qCs6jAWm3n8G8.roa (hash: 3HI3L0u1gTr2C+yxlBAEamd5L6jvpyumi2g5XXRKy/k=)
2: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: N5m0I7SMvQIK/hmpiprIsaesa5cma2RTHwKYkksPETw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:97:71:4e:8f:65:70:f9:01:93:f9:0e:14:0e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Apr 17 11:00:38 2026 GMT
Not After : Apr 18 11:00:38 2026 GMT
Subject: CN=fa8342151aeb8459278c5fcffd3f80a1a3a30fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:1e:f4:9b:96:d7:89:19:a0:5e:af:9e:a7:
63:12:5b:39:a8:d0:dd:87:3b:46:37:b6:d3:29:ff:
2d:71:c1:26:63:3e:0f:20:e9:2b:2f:c9:13:7c:37:
e8:21:aa:6f:ff:1c:7a:33:18:7f:8d:d6:cd:4d:d7:
4d:b5:42:07:3f:d5:a0:ea:30:6d:58:5c:fb:74:6e:
a1:2e:ea:54:00:af:65:24:78:2a:d2:3d:ed:f1:e3:
40:79:10:71:b8:3a:e6:b4:ec:b0:43:95:7b:b1:1c:
49:74:6c:90:65:f0:5c:38:68:2a:71:19:79:b4:65:
14:ad:91:66:55:66:33:6e:82:e9:12:a0:81:73:c0:
1a:3f:d1:b5:78:90:58:25:aa:d3:a5:3e:93:21:d1:
c6:8a:e3:bb:af:da:65:7c:1e:61:95:28:01:a6:ee:
46:1f:7b:9c:52:2b:ea:4c:2e:2b:48:c1:b7:ea:34:
2a:1a:c4:aa:28:b5:0f:99:0b:42:a6:5b:33:f9:7f:
22:ce:89:a0:8d:dc:e0:b7:0b:78:a4:56:55:37:cc:
bf:3c:08:8d:ae:76:80:7b:6a:57:f5:98:ea:77:71:
03:91:6b:e1:a8:8e:26:bb:01:b8:04:0f:df:66:69:
51:d8:71:14:02:ea:40:6c:79:5e:75:af:dd:55:69:
23:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:83:42:15:1A:EB:84:59:27:8C:5F:CF:FD:3F:80:A1:A3:A3:0F:D4
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:88:3c:c8:1d:d0:6f:2d:3e:11:ab:59:48:b0:cc:0c:04:44:
a2:19:2a:0d:55:70:02:2b:a3:3f:44:7b:2d:4d:0b:d0:98:93:
1c:e0:d1:d5:93:6c:58:08:2e:e3:ab:63:2b:32:29:61:30:39:
88:b5:08:e1:8e:c7:09:a6:ee:83:51:6b:59:8b:e9:f9:ce:c0:
3c:6f:44:e4:a4:2b:f0:1c:1c:a3:b3:22:f0:52:1e:cc:fd:f9:
aa:26:6f:55:44:48:dc:0e:4e:53:f4:a3:e4:ee:84:4b:bf:51:
df:f8:6f:bb:ab:4d:de:e0:d6:32:fb:05:29:e2:a4:09:57:0e:
d0:79:3b:15:e4:5f:ce:0c:52:b3:e1:db:25:43:8b:85:59:2e:
50:ee:de:c5:11:f5:cc:7c:4e:c7:bc:7d:da:a1:c9:d7:c8:c8:
d6:c8:5b:0e:0d:91:35:75:0d:7a:13:0b:43:56:f1:e4:1a:04:
24:78:8b:6d:c3:24:f9:fd:ba:52:6e:17:75:4d:44:df:0f:46:
e9:65:78:bc:48:de:cb:d8:7d:b6:da:cc:1e:79:1b:bc:1a:4a:
07:25:d6:34:4f:85:6a:e4:c1:65:cc:0c:8c:4c:da:b3:8c:46:
5d:4c:b0:ee:2c:d5:2c:12:a4:d6:1d:65:19:fd:f8:bd:d6:6c:
e1:c4:f0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:32:25 2026 by rpki-client