Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
File: 9naIfyLs2o0HSBWgvPkfr4GUKr0.mft (raw, json)
Hash identifier: 2a9sO116RfqAG6QI9RoyiMO9Hao7WDimNLTNLR8KUng=
Subject key identifier: 82:25:18:62:7B:E6:C4:F3:2A:F8:F0:06:2E:2F:ED:91:59:3D:6F:B4
Authority key identifier: F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
Certificate issuer: /CN=f676887f22ecda8d074815a0bcf91faf81942abd
Certificate serial: 019D9B50F5524AA2598D257EC929A0F91B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
Manifest number: 0B8D
Signing time: Fri 17 Apr 2026 12:01:07 +0000
Manifest this update: Fri 17 Apr 2026 12:01:07 +0000
Manifest next update: Sat 18 Apr 2026 12:01:07 +0000
Files and hashes: 1: 9naIfyLs2o0HSBWgvPkfr4GUKr0.crl (hash: yWd4/opzRUNtVFHbCU3y4bmuckRyFuoA3c4TSn4ph6E=)
2: B87mAdd4CvquW6IizfewWsMBYIg.roa (hash: zPZbgJpRYs/sjp3ISOotVNKeFAfB1E/GJqKV02Oq3YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:f5:52:4a:a2:59:8d:25:7e:c9:29:a0:f9:1b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f676887f22ecda8d074815a0bcf91faf81942abd
Validity
Not Before: Apr 17 12:01:07 2026 GMT
Not After : Apr 18 12:01:07 2026 GMT
Subject: CN=822518627be6c4f32af8f0062e2fed91593d6fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e6:1f:3f:50:40:4f:7c:c2:04:c9:24:80:0e:
b9:7f:dd:db:b0:17:49:5d:ec:f1:77:58:25:7a:ea:
33:af:a0:e9:b6:9b:ae:b3:5e:23:b1:d0:c4:3b:45:
93:c7:37:32:19:23:f9:97:62:37:ef:b6:60:ae:66:
77:80:0a:30:3e:22:0a:69:cc:c6:ad:72:b5:f9:5e:
92:1a:65:2e:23:a1:7a:ae:c5:f0:d1:ed:d4:45:cd:
41:e5:8e:ed:c2:52:c2:eb:56:ef:cf:51:a7:9d:37:
94:bf:c7:e2:23:9f:31:53:b2:b6:58:12:8d:1c:62:
d1:9d:19:11:ee:8b:a5:18:da:7b:19:24:d7:b3:31:
ff:45:53:dd:78:a1:45:ff:f8:74:03:cd:f1:3b:af:
f9:3a:ec:ba:b0:1b:80:19:dc:be:ea:3d:be:c2:6d:
4d:a7:40:c5:4b:b0:cf:c0:ad:e2:04:4c:21:36:58:
88:e6:42:1e:3d:eb:13:ee:00:bc:7f:da:07:cd:58:
6e:20:89:03:b6:c4:8e:68:aa:c3:0f:ad:6d:a4:b4:
01:35:58:e3:fc:09:e4:87:7d:b1:3e:5a:9a:b6:77:
2f:50:bc:af:35:57:32:b0:17:8c:55:f1:eb:06:de:
a2:14:f6:f7:76:87:29:23:07:7a:90:db:27:19:21:
c5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:25:18:62:7B:E6:C4:F3:2A:F8:F0:06:2E:2F:ED:91:59:3D:6F:B4
X509v3 Authority Key Identifier:
keyid:F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:b8:35:9d:b0:a9:e2:a2:bb:82:22:b4:2b:a4:4a:05:38:f6:
a7:d6:20:47:18:fc:a7:b2:ab:28:75:0a:97:b6:b8:5f:40:cf:
0b:fa:9c:4b:71:71:02:09:54:7b:fe:4b:ec:3c:03:ec:8b:8b:
f6:e6:8f:05:55:43:1c:a8:ca:56:0b:66:6b:65:50:6a:6b:94:
e0:38:cd:1d:74:05:9d:fe:13:df:27:6b:28:58:1e:6d:5a:30:
ae:75:0d:90:77:13:9d:25:ec:28:b3:69:b9:63:da:57:d0:18:
d3:1d:51:0b:eb:31:87:01:2a:54:53:1a:3b:58:fe:e8:cf:fa:
40:32:73:4b:64:04:3a:4a:bb:68:56:e3:02:88:be:63:a1:61:
31:1f:34:fd:01:f8:3a:c2:73:fe:80:40:62:0a:eb:40:fd:72:
b5:cd:da:6c:16:cd:e9:41:83:f1:0c:69:f8:7c:97:a6:df:bb:
06:6f:1e:d5:22:73:b9:a2:9f:1b:0d:44:f5:11:a1:10:71:98:
1e:29:67:59:4b:e6:58:00:1f:30:18:e6:bc:6b:2c:f9:57:04:
58:df:db:f3:17:f0:67:c4:4f:51:23:f4:f2:bd:a1:d1:71:93:
6c:06:06:32:6c:d5:2c:ac:57:45:c1:37:21:9c:21:de:db:83:
bf:dd:03:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:18:34 2026 by rpki-client