Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: tpRStlU/sH0RxTx/uhk7XN2czeeqp8B/bOUh1Mcv510=
Subject key identifier: A7:D2:4B:DD:FE:7A:9E:C8:0D:BE:34:B5:32:CC:E9:CB:97:CE:AE:0C
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019CABD914BE2EEE28E20930A94B776C0A68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0EE0
Signing time: Mon 02 Mar 2026 00:00:56 +0000
Manifest this update: Mon 02 Mar 2026 00:00:56 +0000
Manifest next update: Tue 03 Mar 2026 00:00:56 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: /YUjUAq/Fqvuwld7geAirqsfaT1eMST23i2ki6pBLUw=)
2: TgwXo42orCf9sT1fT8jrPa56jeU.roa (hash: GfcY69aJuiib4Ntp1/VS83/ai4i4eQHgc9DzBgB534U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:14:be:2e:ee:28:e2:09:30:a9:4b:77:6c:0a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Mar 2 00:00:56 2026 GMT
Not After : Mar 3 00:00:56 2026 GMT
Subject: CN=a7d24bddfe7a9ec80dbe34b532cce9cb97ceae0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7a:2f:2e:3e:b9:0c:72:b3:fa:ba:57:21:d4:
02:a7:9a:9d:11:3a:1e:71:ac:10:f4:a3:36:34:61:
00:cd:71:48:f8:84:a9:0b:30:a4:83:f6:04:a3:cb:
a5:12:53:0a:2c:af:05:2e:12:27:e1:84:4a:47:a1:
5b:9d:7f:ce:4e:b8:05:aa:c1:7b:17:9e:53:af:26:
99:83:b7:19:1b:26:00:14:8d:61:7a:59:e4:72:89:
74:57:57:68:fe:a6:da:56:7c:93:e7:fd:d5:e4:af:
a5:5b:da:67:55:71:20:1a:8c:89:5b:24:3b:24:ac:
7f:2e:34:c5:19:bd:b0:ef:32:7c:0d:6e:f1:c2:4a:
a3:bc:7e:f7:59:63:54:b6:80:09:09:fc:73:9f:63:
15:be:87:52:eb:08:70:e9:3d:c0:4b:d6:dc:30:e2:
57:e6:f0:ee:f4:d3:a5:3e:9c:ca:66:5b:08:b1:19:
d9:4a:8e:a0:2a:55:66:71:d0:ef:7b:16:c6:d4:15:
99:ba:b7:7d:14:b0:f2:af:e5:9f:11:98:51:af:8a:
1e:64:85:52:d4:43:5e:34:08:e6:69:45:70:0f:5d:
54:6b:04:c3:1e:f1:b7:35:64:3d:84:f8:21:fa:39:
83:25:60:cf:19:0a:92:43:18:cf:b2:b5:5e:62:3d:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D2:4B:DD:FE:7A:9E:C8:0D:BE:34:B5:32:CC:E9:CB:97:CE:AE:0C
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:50:bb:3c:61:fd:c2:c4:cb:59:1a:0b:96:9a:e0:36:f6:ad:
63:9a:41:4b:6e:bb:88:3e:eb:48:07:b2:53:cb:1a:8a:4d:4b:
17:10:6d:98:35:bc:c6:de:0b:a7:ba:32:48:b2:10:c5:5a:d4:
86:e6:ff:55:15:1c:fe:70:18:c5:41:bc:85:59:cf:4e:69:ed:
64:89:ca:1d:79:4d:c1:19:aa:0b:71:f6:dc:47:c5:81:2c:10:
c2:b1:dd:3d:51:46:4f:84:fb:9a:a6:9b:09:d9:1e:ff:9b:1d:
60:76:b8:9a:9c:37:48:7d:49:6a:62:2b:66:80:3c:15:62:86:
40:e0:de:3e:61:dc:4a:2f:bd:db:b6:18:03:67:2a:23:51:37:
99:f5:c3:f8:af:3b:cf:a3:88:ce:cc:23:1e:49:2c:75:c2:25:
bb:fc:8f:8b:df:da:3b:ec:eb:cd:aa:df:a4:3e:23:97:55:be:
7f:8d:4d:bd:33:91:cb:81:40:43:ff:e1:cc:88:34:e1:f7:57:
c0:ed:ac:f8:4a:1b:cc:67:8d:a0:86:22:38:76:96:ba:f2:ec:
d7:15:eb:84:d8:84:98:72:bf:46:ee:8d:91:09:c7:30:d2:42:
f4:8a:fb:2e:8e:ae:3d:74:fc:aa:79:27:85:4a:ba:42:30:05:
ff:12:69:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:50:26 2026 by rpki-client