Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft
File: s9nxe5jDqWQThWY7jNW3X-HwpJg.mft (raw, json)
Hash identifier: 5HHYkHBHOIu5+Xragg7hr9bgQelc13xVu7ktpgn2UXc=
Subject key identifier: 5A:0D:0F:0C:95:07:8F:55:03:AF:63:A6:C0:B9:0C:6C:3A:BB:17:3E
Authority key identifier: B3:D9:F1:7B:98:C3:A9:64:13:85:66:3B:8C:D5:B7:5F:E1:F0:A4:98
Certificate issuer: /CN=b3d9f17b98c3a9641385663b8cd5b75fe1f0a498
Certificate serial: 019CAD229AA79AD1CE50D1636404CF4DA542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 06:00:52 +0000
Manifest this update: Mon 02 Mar 2026 06:00:52 +0000
Manifest next update: Tue 03 Mar 2026 06:00:52 +0000
Files and hashes: 1: s9nxe5jDqWQThWY7jNW3X-HwpJg.crl (hash: 8cB/U5Mm5nH8d17dFngBZRy+AhohF3u06/4zIYZD3CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:9a:a7:9a:d1:ce:50:d1:63:64:04:cf:4d:a5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d9f17b98c3a9641385663b8cd5b75fe1f0a498
Validity
Not Before: Mar 2 06:00:52 2026 GMT
Not After : Mar 3 06:00:52 2026 GMT
Subject: CN=5a0d0f0c95078f5503af63a6c0b90c6c3abb173e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:14:2a:25:be:9b:a8:d3:ec:e5:49:20:ba:2b:
c6:e0:0f:38:7e:56:6a:8a:04:94:6f:6f:ea:7d:14:
2d:8a:bd:d4:cc:4f:ea:63:e2:d7:2f:d7:f1:2b:f7:
cf:7c:9a:e6:82:7e:42:59:ec:52:38:91:eb:0d:92:
e4:92:84:ec:b7:57:c8:cf:b8:e0:64:71:e1:0b:ee:
22:a3:5c:e7:5f:22:46:69:b0:fd:38:0a:a0:fc:6e:
c8:cc:35:5e:74:86:68:61:70:56:aa:17:4f:3e:cc:
cb:b1:6e:0f:97:1f:83:59:69:a8:28:48:d2:e1:33:
c7:1e:03:4f:60:fe:b0:e6:3e:45:44:a2:d5:c0:04:
c4:fb:d1:c1:3f:b2:81:e8:78:e0:0e:28:e1:b0:33:
72:a3:96:2d:9d:0c:69:b2:ef:b7:2e:3b:6e:28:e5:
02:a6:b3:e7:c1:5f:88:dc:1f:fe:23:54:13:c9:7e:
11:31:85:53:e0:59:cb:45:7c:da:b0:a4:8d:c8:0d:
b0:f7:cd:16:dd:d6:e5:d8:d8:ab:ba:20:d3:3f:cf:
b4:f1:4f:bb:e8:4c:76:c5:b4:7f:fd:15:e9:b9:6c:
f8:6d:72:20:dd:2c:34:67:4a:35:06:7d:75:ff:73:
0a:25:de:8b:a4:96:f9:f3:48:a3:b0:ae:8c:5a:51:
b9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0D:0F:0C:95:07:8F:55:03:AF:63:A6:C0:B9:0C:6C:3A:BB:17:3E
X509v3 Authority Key Identifier:
keyid:B3:D9:F1:7B:98:C3:A9:64:13:85:66:3B:8C:D5:B7:5F:E1:F0:A4:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:fe:79:c2:37:80:14:b8:56:28:9d:f4:9a:f2:3b:68:25:8f:
99:f4:e8:ba:c4:20:7a:9c:90:e5:ce:32:ec:2d:f5:fb:c0:8e:
77:ad:58:95:87:a7:d5:e9:3e:e1:41:af:64:38:cf:cb:f3:80:
e3:a9:b1:50:3c:10:dc:c4:24:c2:cc:a3:7a:1a:59:4d:29:9e:
16:2f:d2:91:79:85:4f:a3:2b:3e:97:2e:bf:69:98:eb:09:cc:
37:5d:06:54:8d:f7:77:dd:37:6b:ae:6e:24:0d:78:77:3d:54:
4f:5e:82:14:26:e9:22:32:27:a4:e9:23:8e:ac:82:db:93:43:
a0:3f:a5:99:f9:11:46:f9:78:5d:32:01:f5:57:8b:ce:16:2b:
b6:a9:2f:3b:f5:93:09:04:9b:d1:ed:7e:3a:19:95:a2:42:f2:
71:ba:c8:25:13:1f:02:2a:e3:73:87:3d:34:1e:4e:6c:0d:31:
fd:fc:36:66:8e:7a:0b:23:4f:72:a9:d0:bd:5e:c8:df:ba:b9:
46:f5:de:a6:4b:a5:14:d8:a0:fa:1b:51:29:dc:ad:6b:47:3f:
dd:a2:de:f4:41:c0:13:29:38:f0:0d:6a:56:86:41:87:1e:d6:
95:fe:d2:b0:95:f6:c1:09:74:49:0f:0d:98:85:0c:f5:83:2f:
f3:57:38:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:25:05 2026 by rpki-client