Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: qLO4JoluBzw+Yf2McfHc38mEEXnRqAKEV6S+w/zigW0=
Subject key identifier: 5F:14:6C:52:F7:88:82:B7:81:60:20:BA:CC:C6:4E:E1:D7:0B:9D:E2
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019D9963080D7C234B8E307766139F546439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0F5B
Signing time: Fri 17 Apr 2026 03:01:37 +0000
Manifest this update: Fri 17 Apr 2026 03:01:37 +0000
Manifest next update: Sat 18 Apr 2026 03:01:37 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: Orqc/mzf5/L8thb7dTD63PNZZOXebRp0gt+dBjwCZok=)
2: TgwXo42orCf9sT1fT8jrPa56jeU.roa (hash: GfcY69aJuiib4Ntp1/VS83/ai4i4eQHgc9DzBgB534U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:08:0d:7c:23:4b:8e:30:77:66:13:9f:54:64:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Apr 17 03:01:37 2026 GMT
Not After : Apr 18 03:01:37 2026 GMT
Subject: CN=5f146c52f78882b7816020baccc64ee1d70b9de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:3e:35:ca:1b:03:e2:13:cc:53:59:8a:81:
ea:48:b8:1c:a2:bf:3b:7d:c0:5d:e5:a2:44:0e:e4:
4d:6d:32:c1:96:9d:39:bd:85:8e:aa:e0:89:78:2f:
a0:40:36:55:b4:71:98:28:b6:57:d0:2e:14:aa:5d:
7e:0d:53:24:3b:a5:ff:fe:3b:11:58:ad:07:b6:2c:
af:9a:a9:96:79:45:ef:42:81:60:55:5b:05:94:6c:
f1:02:35:8d:27:fe:db:e9:d6:f9:a1:7e:67:af:a9:
fc:41:98:6a:b9:3f:71:d0:fd:90:8d:8b:04:6c:20:
69:62:47:8b:76:26:e8:4f:33:dd:bb:34:dd:eb:dc:
6c:f9:93:44:c6:78:72:0d:1e:7b:9a:a4:4d:c6:d2:
22:86:53:bd:fc:5d:8d:fe:0c:6d:7c:04:3c:0f:71:
40:98:1f:b7:0d:d6:c9:9c:85:cb:f0:93:b4:7e:8a:
11:f3:0d:d5:d8:d7:d2:d9:1a:e9:58:2a:b2:f4:98:
b1:5b:c7:d8:51:74:0b:55:bc:f0:24:63:4b:e7:4f:
7f:98:62:ce:1d:bc:9b:14:82:64:55:9f:79:5d:49:
fc:9d:1f:44:3a:1d:f5:df:82:09:00:72:0f:7b:b1:
76:9f:eb:6f:d1:94:5f:d8:29:67:0a:29:0e:e1:ae:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:14:6C:52:F7:88:82:B7:81:60:20:BA:CC:C6:4E:E1:D7:0B:9D:E2
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:68:c9:c8:48:fe:fa:61:12:c4:8d:7d:83:b0:02:70:8e:6c:
2f:c6:18:7a:77:fa:b8:1f:63:98:cb:c1:86:59:13:47:97:23:
58:a3:b5:3e:69:6f:05:91:1d:b1:de:ac:2b:03:d4:e1:e3:48:
eb:80:68:cf:1e:be:4f:bf:eb:01:4d:22:40:cf:e6:c8:f0:f4:
35:31:b5:f5:97:fb:c5:07:d2:c0:b0:9d:a0:31:52:04:ea:21:
38:3a:db:fa:29:f4:cb:c6:14:3c:63:8e:13:b7:39:de:f8:b6:
de:27:74:1a:51:05:8d:2c:1f:3d:dd:b6:2d:38:60:1f:90:d7:
32:47:c9:59:f9:89:81:df:03:50:20:04:b2:cc:a2:60:58:6b:
d2:4e:11:df:de:ec:a7:e1:d5:ba:b2:ca:21:c6:f5:19:6c:81:
26:83:fe:83:ab:71:b9:e7:85:a5:a8:e7:4c:cc:ac:5f:68:ac:
7b:b5:6e:d0:6c:7e:b7:50:92:31:09:06:51:53:85:ef:c2:49:
ea:99:f8:42:fd:c4:03:f9:35:54:8c:38:04:f2:97:90:86:31:
0f:a1:08:4a:72:e5:88:3c:b8:7a:51:16:a1:f2:0b:7a:59:12:
0f:0c:a9:4e:32:db:65:ee:79:f5:0c:2e:44:9f:2b:ce:19:a6:
f3:26:a2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:54:04 2026 by rpki-client