Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
File: 9naIfyLs2o0HSBWgvPkfr4GUKr0.mft (raw, json)
Hash identifier: 34pGusdy+fxjySJJSR4JjojTnmrStr01LoFFXccd7wY=
Subject key identifier: 08:5D:9E:7A:58:F0:31:04:EE:92:D9:3C:2C:25:64:7F:2E:F7:AF:1B
Authority key identifier: F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
Certificate issuer: /CN=f676887f22ecda8d074815a0bcf91faf81942abd
Certificate serial: 019CADC843642028965C923A41C79EE24CDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
Manifest number: 0B12
Signing time: Mon 02 Mar 2026 09:01:48 +0000
Manifest this update: Mon 02 Mar 2026 09:01:48 +0000
Manifest next update: Tue 03 Mar 2026 09:01:48 +0000
Files and hashes: 1: 9naIfyLs2o0HSBWgvPkfr4GUKr0.crl (hash: JGDuHvHXDhpS0emYIFRELmfJ4sxg/LAremCCJ/+EIMA=)
2: B87mAdd4CvquW6IizfewWsMBYIg.roa (hash: zPZbgJpRYs/sjp3ISOotVNKeFAfB1E/GJqKV02Oq3YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:43:64:20:28:96:5c:92:3a:41:c7:9e:e2:4c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f676887f22ecda8d074815a0bcf91faf81942abd
Validity
Not Before: Mar 2 09:01:48 2026 GMT
Not After : Mar 3 09:01:48 2026 GMT
Subject: CN=085d9e7a58f03104ee92d93c2c25647f2ef7af1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:c6:46:a6:8f:f8:4f:94:e9:79:76:14:ed:
9b:9d:66:c2:7a:56:96:93:f9:76:8f:e5:96:f3:d2:
8c:85:ca:3b:7f:24:46:a9:a8:54:3f:56:b8:55:ff:
2f:8b:19:3d:78:b0:28:b5:2a:7b:b0:f1:a4:91:d6:
eb:e6:5a:f4:41:b5:74:a6:5d:b2:ae:93:5c:d0:e9:
84:bb:37:c2:3e:8c:08:a2:30:67:a8:c5:10:85:de:
ee:f7:13:5d:48:d4:b0:46:04:63:a0:32:ab:c7:e2:
f2:b4:2f:90:a1:d8:ef:11:4e:f8:35:46:2b:5d:29:
93:01:ad:80:0c:72:4d:cd:46:c2:4b:f0:31:1c:11:
ce:a5:ea:8a:4c:f0:e8:f2:3a:c3:d6:3a:37:42:38:
6c:7c:04:a8:51:b4:ba:24:fd:a9:c0:97:e2:5d:91:
87:24:cd:3c:b7:dc:19:0b:14:bd:80:58:e8:f6:ab:
19:0f:5c:50:56:47:cf:7e:2f:e8:9d:e5:f1:e5:a8:
c2:99:ff:c4:f5:76:c1:83:02:1d:b9:a3:99:42:ec:
1d:a3:ef:c0:97:cd:2f:bc:91:5b:f3:2d:ac:29:84:
51:22:6b:81:64:75:42:ac:1e:77:ad:5d:09:8b:01:
eb:13:09:b1:6f:d5:1b:84:7f:e5:1a:af:8c:63:d2:
ad:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5D:9E:7A:58:F0:31:04:EE:92:D9:3C:2C:25:64:7F:2E:F7:AF:1B
X509v3 Authority Key Identifier:
keyid:F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:4e:7a:b6:33:e4:c1:66:2d:9f:59:a0:be:59:ad:6d:d1:c8:
84:73:9b:4c:27:c3:55:00:dc:08:a5:59:2d:ef:12:13:9e:c4:
1e:5c:65:66:1f:41:2a:b8:ff:7c:f3:db:e4:0b:b1:4a:86:1a:
08:fe:7c:5c:9a:ca:10:5e:87:a9:00:14:87:33:22:4e:c1:47:
6a:4a:8a:77:0e:6d:9f:a0:d1:d9:9b:4d:d7:a2:b7:8c:d9:96:
51:fd:1d:a7:da:d7:1b:50:db:b7:e4:fa:35:30:9b:9d:f6:d0:
cc:5d:d6:57:de:16:e0:5d:13:00:bd:77:f3:45:6c:fc:2d:9e:
0d:12:1a:b2:88:1b:46:7d:cb:24:0e:1b:19:a2:bb:51:08:25:
a0:4c:f1:3e:4f:da:84:ba:ab:55:e5:2d:23:4f:3d:fa:e8:fa:
12:cb:1a:ff:a0:c3:51:67:3d:d0:12:d8:5d:0f:21:5f:ee:20:
dc:49:b8:50:28:59:8c:4c:9e:48:54:c4:4e:05:8c:b9:3d:07:
81:4b:e2:2b:4f:39:89:42:64:22:76:73:ed:64:6c:c4:79:0b:
34:c8:a8:4a:30:42:b8:18:7a:c0:b9:7e:02:e2:fb:e1:af:c8:
5d:30:80:2c:c9:e2:ce:ee:53:a2:12:04:78:56:ca:65:ea:94:
f6:6d:48:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytyENkICiWXJI6Qcee4kzbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2NzY4ODdmMjJlY2RhOGQwNzQ4MTVhMGJjZjkxZmFmODE5
NDJhYmQwHhcNMjYwMzAyMDkwMTQ4WhcNMjYwMzAzMDkwMTQ4WjAzMTEwLwYDVQQD
EygwODVkOWU3YTU4ZjAzMTA0ZWU5MmQ5M2MyYzI1NjQ3ZjJlZjdhZjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwULGRqaP+E+U6Xl2FO2bnWbCelaW
k/l2j+WW89KMhco7fyRGqahUP1a4Vf8vixk9eLAotSp7sPGkkdbr5lr0QbV0pl2y
rpNc0OmEuzfCPowIojBnqMUQhd7u9xNdSNSwRgRjoDKrx+LytC+QodjvEU74NUYr
XSmTAa2ADHJNzUbCS/AxHBHOpeqKTPDo8jrD1jo3QjhsfASoUbS6JP2pwJfiXZGH
JM08t9wZCxS9gFjo9qsZD1xQVkfPfi/oneXx5ajCmf/E9XbBgwIduaOZQuwdo+/A
l80vvJFb8y2sKYRRImuBZHVCrB53rV0JiwHrEwmxb9UbhH/lGq+MY9KtZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAhdnnpY8DEE7pLZPCwlZH8u968bMB8GA1UdIwQY
MBaAFPZ2iH8i7NqNB0gVoLz5H6+BlCq9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOW5hSWZ5THMybzBIU0JXZ3ZQa2ZyNEdVS3IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jYmM0YmItOTk5Yy00OTg4LWExZTEt
Y2QyZGNiMzU1NjU1LzEvOW5hSWZ5THMybzBIU0JXZ3ZQa2ZyNEdVS3IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jYmM0YmItOTk5Yy00OTg4LWExZTEtY2QyZGNiMzU1NjU1
LzEvOW5hSWZ5THMybzBIU0JXZ3ZQa2ZyNEdVS3IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmU56tjPk
wWYtn1mgvlmtbdHIhHObTCfDVQDcCKVZLe8SE57EHlxlZh9BKrj/fPPb5AuxSoYa
CP58XJrKEF6HqQAUhzMiTsFHakqKdw5tn6DR2ZtN16K3jNmWUf0dp9rXG1Dbt+T6
NTCbnfbQzF3WV94W4F0TAL1380Vs/C2eDRIasogbRn3LJA4bGaK7UQgloEzxPk/a
hLqrVeUtI089+uj6Essa/6DDUWc90BLYXQ8hX+4g3Em4UChZjEyeSFTETgWMuT0H
gUviK085iUJkInZz7WRsxHkLNMioSjBCuBh6wLl+AuL74a/IXTCALMnizu5TohIE
eFbKZeqU9m1I8g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:44:09 2026 by rpki-client