Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: /cJ/qq3lpmPtz/dn5uZpD49oTbN7Vx71MRFLP89mFjE=
Subject key identifier: D1:EE:23:86:29:DF:2E:9B:D1:E9:26:27:C4:F6:D9:59:1D:F1:56:C7
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019EBEEC6A4EEC0360F68FD65DBAC336D957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0FF3
Signing time: Sat 13 Jun 2026 03:00:25 +0000
Manifest this update: Sat 13 Jun 2026 03:00:25 +0000
Manifest next update: Sun 14 Jun 2026 03:00:25 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: D7X/mQPA6BHwZAP+AunNRLszhS/nIwn5/58JxYJFkkA=)
2: TgwXo42orCf9sT1fT8jrPa56jeU.roa (hash: GfcY69aJuiib4Ntp1/VS83/ai4i4eQHgc9DzBgB534U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 03:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:6a:4e:ec:03:60:f6:8f:d6:5d:ba:c3:36:d9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Jun 13 03:00:25 2026 GMT
Not After : Jun 14 03:00:25 2026 GMT
Subject: CN=d1ee238629df2e9bd1e92627c4f6d9591df156c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:77:81:5d:c6:92:be:04:70:da:50:af:a6:12:
eb:46:da:ca:d1:ec:f6:75:89:cf:4f:16:b9:60:39:
2b:9e:ab:8f:cb:bf:4c:02:35:d4:9a:9e:6c:af:af:
55:43:23:18:8f:d4:4a:c1:6f:87:91:f1:66:4c:b3:
73:cf:54:c1:89:6f:ef:e0:71:26:84:34:b8:06:a7:
d2:51:6c:28:d3:91:ba:02:07:25:06:ec:63:20:f6:
7b:ee:0c:7b:40:5a:c2:71:91:89:7f:6f:de:76:90:
a2:21:28:09:4d:36:d4:bc:dd:a0:dc:32:4e:49:3a:
3b:ea:63:69:80:47:6d:11:a8:d6:32:99:bb:a9:e8:
73:85:79:9c:8c:19:da:f7:12:e4:1c:c9:49:64:44:
9f:d3:7e:f3:b9:9b:39:b4:72:0c:03:d9:d4:3f:02:
1c:25:da:10:b1:cb:c2:38:04:59:24:6c:ed:c4:71:
2b:f5:35:b6:57:9c:d6:65:8d:62:68:ba:30:d0:bf:
bf:8b:5f:3e:1e:33:e7:0f:fa:1e:37:06:5d:37:d3:
41:9a:94:06:a4:21:68:25:8b:7c:30:30:3a:87:0d:
b3:7b:bb:fc:53:26:f8:89:af:f3:7c:98:b0:0f:f8:
28:51:b2:b7:9d:68:e2:ef:7f:2c:0c:84:53:45:7b:
8c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:EE:23:86:29:DF:2E:9B:D1:E9:26:27:C4:F6:D9:59:1D:F1:56:C7
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:88:7a:ec:73:ba:4d:7d:c5:e3:e0:fb:21:b1:8d:de:64:bb:
0d:be:71:20:f8:53:f0:7d:e5:5a:d3:82:ae:08:86:79:51:5c:
a1:8a:88:aa:c7:16:f9:11:fd:1e:1e:ca:31:e3:eb:c1:39:8f:
77:93:db:19:2c:d4:c9:d0:6e:b8:47:0a:d9:9a:33:c0:2b:de:
54:5e:d7:7b:5d:bd:1a:ca:73:47:d5:f7:96:1d:ef:f8:17:c0:
19:68:fc:bd:e8:4a:fc:fd:f1:27:15:52:40:13:2c:4a:c3:a8:
64:a4:9a:e7:42:5e:64:cd:d9:5d:56:81:38:ab:5d:bb:0f:fd:
03:1d:35:c1:47:15:d0:99:e0:47:34:a4:e6:46:dc:f2:95:77:
e9:33:14:49:95:dd:27:96:7c:05:64:fd:94:13:9e:8f:25:45:
f9:ae:ad:60:b7:2d:58:ce:c0:49:f8:83:52:89:6f:62:34:64:
9c:b5:14:4d:d2:f0:71:53:9b:bd:75:62:47:e3:d2:ca:db:a3:
8e:c9:aa:21:0f:7b:01:ef:3e:89:fd:9f:5a:bf:22:a6:ac:e4:
f3:94:db:93:1a:a3:67:33:41:43:bf:e2:a8:4d:b1:87:7c:9d:
20:06:82:92:9f:56:30:a7:0d:36:bd:f8:4b:92:12:84:04:97:
3e:f7:b0:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:32:53 2026 by rpki-client