Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
File: 9O9duhAKkrJETz5RLQGlksAZUcI.mft (raw, json)
Hash identifier: XgWemjZy9YF7Ly15jHn0R2GZoUVZWlzQYr1er1cpGBc=
Subject key identifier: 0E:EF:7C:A1:5D:17:99:19:86:28:EA:F6:BE:02:D3:3C:34:C3:E7:85
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 019CADC7EF638A9A74579CD3034BB099C2FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
Manifest number: 0AB4
Signing time: Mon 02 Mar 2026 09:01:27 +0000
Manifest this update: Mon 02 Mar 2026 09:01:27 +0000
Manifest next update: Tue 03 Mar 2026 09:01:27 +0000
Files and hashes: 1: 3FkzAPl5dDeXfEEMRSwLpvP5dBw.roa (hash: qThiWbhOm4MVwzcc4QS1C0KW/Cr2nD4QzMpn3VG/nII=)
2: 9O9duhAKkrJETz5RLQGlksAZUcI.crl (hash: fwwFshsOZxwOYlb2vnCIQDCP+yuOvWLhEYCKHiYNd+E=)
3: GvMwO11Qb_MZ3FmpbZFa_YHcQEw.roa (hash: HHH3HBau0CenEM488oLj5N8VnZu9hoi/hHRUfx5gvaA=)
4: vAGwaiC2Bp1wYYYgaEDGo4Uiqpc.roa (hash: kDL6yMpm7SXuYLlIMpKeyi5R+9DyzeTyoxzQraFeyqU=)
5: yXsRkQTNVDsj9z8xG-aM4CEyin8.roa (hash: ts64cc9kwijL/HlxdE2LWSMe9OcM5b1Rlyuz3fR2RTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:ef:63:8a:9a:74:57:9c:d3:03:4b:b0:99:c2:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Mar 2 09:01:27 2026 GMT
Not After : Mar 3 09:01:27 2026 GMT
Subject: CN=0eef7ca15d1799198628eaf6be02d33c34c3e785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1f:aa:58:17:0a:fb:6d:58:17:f8:c4:3d:0f:
de:26:8a:d3:ef:9e:aa:24:b6:4f:4f:e6:86:f1:0d:
ca:cb:4f:83:c1:68:c8:e2:80:ce:21:4b:33:cf:29:
39:3f:df:e9:12:cd:d2:56:80:43:e5:e8:96:fd:ef:
ed:d7:c3:a8:ff:53:60:b7:82:bf:f8:f9:88:8c:94:
28:15:40:56:3d:27:a5:3d:6f:e7:57:dc:ad:36:7d:
a7:b6:b3:d3:ee:7d:a0:ba:2f:6b:b5:69:55:23:ef:
8b:ac:8c:c7:fa:68:b0:90:5c:7e:b5:18:c3:ab:05:
6b:18:0b:0c:b7:e8:b6:75:73:71:11:35:cb:91:48:
30:09:8c:cc:9a:ff:d3:67:2c:98:15:37:78:29:1d:
a0:a1:60:a3:35:2c:c3:27:64:1b:5f:73:6a:61:5b:
ec:0c:ab:d5:99:48:ef:ef:99:29:c2:3d:d4:aa:34:
c2:95:dd:ba:57:f1:15:e1:1b:a4:bc:bc:ca:02:30:
f9:e5:c6:44:39:b8:15:3f:7a:9a:7d:9b:c4:80:57:
15:84:a9:2f:bc:50:50:0c:23:6e:7d:47:1a:04:03:
59:ac:b3:4e:e3:d3:36:f1:01:39:1c:06:cf:1c:18:
37:4d:7a:e7:59:dd:4d:1a:57:1b:cb:35:70:68:12:
42:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:EF:7C:A1:5D:17:99:19:86:28:EA:F6:BE:02:D3:3C:34:C3:E7:85
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:d8:e8:e1:39:82:d6:71:08:ce:a9:33:ea:66:e2:0c:d0:b9:
2e:97:77:6b:d7:ac:35:0c:16:ee:ef:3a:b8:2a:0c:f3:bd:ad:
7f:23:0c:8b:54:de:16:a3:69:60:eb:f0:04:32:fa:bf:6b:bc:
b5:d9:71:22:e8:87:52:41:42:e3:7e:ce:f7:5f:91:2b:6b:ac:
fb:00:d6:04:eb:77:2f:d5:ac:78:a0:35:9c:80:e8:ac:d1:a3:
55:77:70:f8:e7:c3:08:55:b3:82:c9:38:69:0d:94:32:68:c5:
bc:62:73:a9:74:da:43:e9:2e:9b:7e:b5:4b:6b:41:b8:12:47:
c6:70:45:74:c2:93:80:54:d5:a6:80:49:64:95:96:10:1f:3c:
01:85:62:6e:ee:c1:0b:22:e5:a0:7f:84:20:d6:30:f2:b6:07:
2b:1a:f6:c2:3d:e7:c9:3d:77:8d:06:b9:d3:34:6b:c3:e8:8c:
49:e8:7f:e4:f8:84:60:83:c0:11:f9:e4:44:43:37:ce:44:8c:
58:01:84:68:5e:fc:c6:7d:9d:47:90:bf:64:87:4b:70:45:3e:
db:7a:9c:e5:4f:bb:9d:83:84:af:09:e8:6a:e0:9c:6a:60:31:
53:90:58:70:74:83:3d:57:a5:23:c0:be:1a:b1:a3:b5:cc:cd:
8f:a9:89:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:47:44 2026 by rpki-client