Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: MgsyBUipNSh2alAuELLIYdaiUJ2V/9ilVTUXajTOM4g=
Subject key identifier: D7:AC:09:24:2E:77:E9:56:A7:01:3F:5D:8C:70:31:F5:6A:6B:D9:7E
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 019D984FE243E5CD754EC85869E43E2D5B91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0DE3
Signing time: Thu 16 Apr 2026 22:01:05 +0000
Manifest this update: Thu 16 Apr 2026 22:01:05 +0000
Manifest next update: Fri 17 Apr 2026 22:01:05 +0000
Files and hashes: 1: 6f1i3xvOw5Akrk8EPZTaku38e58.roa (hash: yAZKqI7wHi0H5V8PrGtfeSpp18rf8v5uoZXgPYXu5QA=)
2: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: c9rElGCwlvjhcRe131DkDKDZgjdvAm4FwgUE696U45w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:e2:43:e5:cd:75:4e:c8:58:69:e4:3e:2d:5b:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Apr 16 22:01:05 2026 GMT
Not After : Apr 17 22:01:05 2026 GMT
Subject: CN=d7ac09242e77e956a7013f5d8c7031f56a6bd97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:40:0a:1b:5c:9e:2b:b4:2d:63:76:bd:e9:
60:99:52:95:7e:54:db:8f:30:ca:30:ac:a2:ad:41:
28:f5:f3:62:9f:96:21:c0:91:af:fa:df:dc:77:c5:
4b:a5:6a:36:27:2c:22:cc:1b:2a:27:28:4f:a9:9c:
f3:90:e1:68:cf:76:7d:85:da:d1:ee:12:06:6b:f0:
64:de:45:f1:40:f3:8b:79:2d:fb:f2:c6:8b:55:17:
bb:5e:ad:01:b2:b8:d4:ca:74:b5:ad:fd:9e:55:94:
b0:bc:3c:d0:fa:27:f5:1e:11:44:dc:f6:45:08:e9:
09:11:25:01:71:2f:b4:16:83:96:dc:83:45:cd:c9:
ed:d5:7b:b3:ba:1c:af:16:cb:9d:b8:91:f7:39:25:
8e:d6:08:57:c7:21:36:74:87:a7:14:6d:50:90:66:
f8:96:a1:0c:cf:aa:28:b0:b3:f2:c5:bf:c2:c1:e9:
57:e3:a0:4b:4f:a8:b3:86:12:ec:91:df:6a:4e:8e:
68:6e:bd:dd:77:79:98:f2:fd:8f:91:ea:24:96:5a:
2e:80:be:ee:fa:87:81:df:62:bd:59:39:81:d4:bf:
98:97:10:ee:9d:51:87:91:47:75:ba:b7:8f:3f:3d:
24:ac:1f:2b:69:b2:cb:b6:cb:d5:9a:6e:33:13:18:
c0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AC:09:24:2E:77:E9:56:A7:01:3F:5D:8C:70:31:F5:6A:6B:D9:7E
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ce:b6:4f:03:68:43:3e:3b:8d:e9:78:e0:18:6c:0f:a8:47:
93:14:87:3f:68:c3:a5:ae:0d:23:55:b6:5b:f5:c2:04:8b:d4:
70:d5:f0:21:f0:43:1a:f1:d5:81:95:c5:25:5d:c8:25:fc:19:
d8:bc:8f:73:fb:46:98:04:5f:fa:1c:9d:0f:77:6a:72:fc:9a:
10:71:64:88:a3:d4:99:02:5a:68:56:4c:a3:2a:e2:e4:8c:4a:
7a:b2:fe:40:23:67:5b:94:62:cb:1d:ae:96:a8:73:e9:15:1e:
a7:ac:fa:5b:fc:e5:50:e5:6c:03:a4:85:82:fb:4d:47:d2:f6:
a0:e6:31:03:ce:56:28:37:ef:5b:1b:ad:11:1c:48:0f:42:1f:
59:2b:63:dd:ea:fe:b4:21:1e:52:16:d7:52:1b:89:03:38:4b:
8d:e4:40:69:56:ad:f0:fa:90:d9:b1:1b:b1:04:89:28:4f:28:
7c:1e:25:1d:c5:f0:42:7a:2e:09:db:4b:11:58:22:8f:c8:b3:
12:33:1b:39:00:58:c7:bf:35:ec:b0:43:16:e6:d1:c0:52:dc:
46:45:e4:3e:80:f3:a2:d5:d1:05:63:ca:b2:4f:11:c0:74:a1:
35:2d:91:3a:54:66:c1:15:51:ba:79:c8:63:44:cb:a8:18:ab:
3d:8e:ae:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:07:01 2026 by rpki-client