Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: WebybJiev37K7clKCEmIBQIYCFViDS9Lp+08+JZ63Gg=
Subject key identifier: 28:64:4A:52:C8:54:BB:9F:6C:A9:5B:09:76:73:C0:D0:78:6A:4F:BC
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 019DA2D33598EF33CC56A48A4152C6DEEE88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0E41
Signing time: Sat 18 Apr 2026 23:00:43 +0000
Manifest this update: Sat 18 Apr 2026 23:00:43 +0000
Manifest next update: Sun 19 Apr 2026 23:00:43 +0000
Files and hashes: 1: 6h9k6xzi-eiSHNvIfR1iiY1lGdQ.roa (hash: pfVa1UicKiOy2Facu1pK6Uyiw1IMqVl6D7uB18F/7yw=)
2: 9Y6XWJ6VWz8otzDPBalCUtCfzZU.roa (hash: sjrsCbBwaUlQ8V+c9dddc6DlyD0j++DkIm2cvSRmRTg=)
3: bWOm_rxxwcbWaTmu2SnHiIL1r88.asa (hash: QCA4tD64a2YOFOaYQUc8hAaRjVEoTC+6/Xd9DFb0omA=)
4: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: kQ+v9smV7F05odGsH7OeuTpJuIs8O0c3OvVGyq5XaPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:35:98:ef:33:cc:56:a4:8a:41:52:c6:de:ee:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Apr 18 23:00:43 2026 GMT
Not After : Apr 19 23:00:43 2026 GMT
Subject: CN=28644a52c854bb9f6ca95b097673c0d0786a4fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:9a:3f:1f:be:90:24:25:45:3b:c3:f2:be:
8c:9c:47:06:bf:99:cc:0a:9b:3a:d4:42:bd:ce:5a:
f1:2c:fc:ce:34:e1:5a:a9:33:ef:99:44:f0:0b:7d:
0f:33:1b:cb:0b:09:f1:ea:0b:c0:fc:5b:17:e8:af:
d5:8f:8f:60:5d:e6:c2:2e:ce:43:7d:87:c1:82:bf:
9a:c9:02:cf:e0:83:21:54:e2:a9:6a:48:e1:e6:ee:
e5:65:80:f5:af:b3:7c:46:14:b1:7e:f7:97:02:e0:
3c:33:31:77:bf:f0:26:6e:f6:c8:fd:af:d7:f1:70:
de:78:a1:25:e7:66:30:e7:c9:5b:90:14:f9:39:dd:
8f:bb:2a:ea:d3:d2:a2:1f:74:00:c5:d4:d7:c6:98:
41:b0:0e:b4:d1:ee:06:94:3e:ed:3b:08:24:22:3e:
ac:d3:b6:c5:f5:e6:60:93:c6:13:0c:b7:07:a7:69:
89:71:ad:35:60:22:33:c7:03:fb:0b:d8:e1:29:43:
e5:94:7d:23:c8:2a:fd:75:fa:28:3e:b0:67:eb:3b:
36:73:2b:39:2c:21:04:9c:69:9e:b6:7c:88:f4:c3:
f8:59:26:73:bf:c0:88:d6:ef:e5:6d:88:8b:61:bb:
57:02:bc:87:ae:c4:19:9f:03:1f:93:c3:5b:0d:99:
8a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:64:4A:52:C8:54:BB:9F:6C:A9:5B:09:76:73:C0:D0:78:6A:4F:BC
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:13:1a:a6:72:1a:1b:d6:99:2d:20:0a:6c:15:4a:87:10:e2:
05:56:e9:d8:92:1f:f6:c2:05:75:c7:58:84:bf:8e:62:bc:78:
4e:fe:14:a2:e1:d9:01:8c:0e:99:5c:e9:46:38:54:49:d7:56:
5b:cb:04:e0:26:7e:4d:d3:48:7e:35:36:04:0f:8e:77:c1:2e:
83:3b:29:23:33:68:fb:67:91:9f:d7:55:28:ed:43:9c:04:1f:
25:ef:84:0e:ea:98:8c:07:d4:c5:41:00:78:5f:4c:4d:7e:00:
12:01:d7:82:0d:e2:b4:d4:15:67:00:a4:ce:f2:86:ea:ec:8f:
e9:04:76:67:d4:46:98:4c:91:d9:a4:c7:5d:9f:67:0c:36:c8:
e9:21:36:fd:90:71:fc:c3:47:cf:38:8e:5c:ed:35:34:ca:95:
af:91:05:7a:51:8a:9f:3e:f0:71:77:3b:1a:a2:e2:1d:67:20:
8b:6d:fd:a5:61:87:1b:56:f8:d2:ef:86:a8:60:a7:5b:ae:01:
c8:c7:29:81:a9:bc:82:66:3c:46:5f:f5:83:d9:c2:7d:db:69:
d2:b4:03:d6:59:6c:a8:f3:67:78:00:5a:5c:e6:3e:62:6b:c2:
5b:6e:6f:5b:50:98:fd:d3:75:4e:0f:3a:6f:f2:a7:48:90:5b:
fa:c1:85:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:55:46 2026 by rpki-client