Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
File: 9O9duhAKkrJETz5RLQGlksAZUcI.mft (raw, json)
Hash identifier: l+/jDeKH/xRue0IkSHEvpvV1rQTz8Nn5Kvlpx5+xOiU=
Subject key identifier: 84:72:79:41:4E:98:AD:AB:63:E1:8E:E6:8D:60:AD:48:E9:A0:5C:72
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 019D9B50AF2E7D3199C187A6BB71F94E9FD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
Manifest number: 0B2F
Signing time: Fri 17 Apr 2026 12:00:49 +0000
Manifest this update: Fri 17 Apr 2026 12:00:49 +0000
Manifest next update: Sat 18 Apr 2026 12:00:49 +0000
Files and hashes: 1: 3FkzAPl5dDeXfEEMRSwLpvP5dBw.roa (hash: qThiWbhOm4MVwzcc4QS1C0KW/Cr2nD4QzMpn3VG/nII=)
2: 9O9duhAKkrJETz5RLQGlksAZUcI.crl (hash: KN99p1MB1XyB5cJyS2fSMmezovOKv+JjDwBNFgypqvk=)
3: GvMwO11Qb_MZ3FmpbZFa_YHcQEw.roa (hash: HHH3HBau0CenEM488oLj5N8VnZu9hoi/hHRUfx5gvaA=)
4: vAGwaiC2Bp1wYYYgaEDGo4Uiqpc.roa (hash: kDL6yMpm7SXuYLlIMpKeyi5R+9DyzeTyoxzQraFeyqU=)
5: yXsRkQTNVDsj9z8xG-aM4CEyin8.roa (hash: ts64cc9kwijL/HlxdE2LWSMe9OcM5b1Rlyuz3fR2RTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:af:2e:7d:31:99:c1:87:a6:bb:71:f9:4e:9f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Apr 17 12:00:49 2026 GMT
Not After : Apr 18 12:00:49 2026 GMT
Subject: CN=847279414e98adab63e18ee68d60ad48e9a05c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7f:85:98:2b:ce:d4:84:66:3d:36:dd:e3:d5:
cf:0f:46:b0:90:18:b1:4a:f0:cc:e9:c2:1c:c1:2e:
15:39:84:c8:ce:3e:c8:f2:ef:e2:4f:bf:3d:f4:51:
7f:ec:60:cb:ce:a2:60:c7:47:78:19:ab:89:07:2b:
ef:b9:26:3a:17:96:4e:13:c7:fe:9e:b0:35:74:a2:
76:f3:20:dd:9e:de:dc:8d:26:3a:e9:3d:b0:7e:b7:
8a:b5:f6:c9:6a:0d:57:0a:5a:af:96:de:d6:fe:92:
f3:3f:f3:35:e8:24:18:23:4a:27:98:6e:a3:de:e5:
85:dd:0f:b6:8f:46:81:2f:29:bf:af:eb:8f:a8:74:
c7:6d:ee:88:d3:ef:51:9f:56:a9:cd:af:38:ad:2e:
7a:77:cb:bd:0a:f2:a4:b8:0c:2c:c2:03:1b:0a:44:
ce:9f:11:6d:9e:e4:24:b1:e5:ad:fc:07:8d:88:b5:
c6:a4:34:2c:0b:27:d0:0b:9f:2c:31:8e:7d:2c:b9:
bb:e2:7b:85:ae:ef:29:21:b7:41:58:f5:ec:fd:0a:
dc:bd:30:cd:08:19:b0:a4:b8:d8:04:1c:5f:2f:3b:
2f:52:7a:4e:51:c1:28:03:6b:ca:fb:e7:2b:76:f5:
50:f7:f2:30:27:38:0c:7b:0c:c3:78:88:55:67:06:
be:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:72:79:41:4E:98:AD:AB:63:E1:8E:E6:8D:60:AD:48:E9:A0:5C:72
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ce:d9:19:a6:26:91:f2:0d:fa:5a:f1:4e:c4:04:71:24:2c:
16:fc:a2:93:37:22:18:6b:74:ad:a9:b0:28:ed:4f:60:46:96:
c7:44:a7:33:89:ea:0c:f9:89:eb:5f:a1:79:9d:3d:91:11:5e:
e2:26:4c:df:2c:fb:76:50:d8:49:4b:d9:2b:e3:07:9d:a4:a1:
6f:84:3c:93:c4:ea:94:59:73:60:8e:91:8a:d0:37:13:e2:16:
5c:cd:05:b2:5c:b2:91:ed:2c:d6:7a:b2:e7:26:c2:92:17:03:
a2:a9:72:c6:d2:77:4f:cd:60:c9:65:83:07:d6:61:10:66:85:
36:46:eb:35:13:6e:20:99:36:4a:7c:95:25:e8:9e:d0:0d:aa:
18:2b:b5:99:26:1e:1d:50:d1:b8:37:1c:8f:0c:ff:a2:9b:bf:
df:b4:32:b5:bb:e2:23:a9:82:a3:2c:83:5a:38:ac:0e:1f:a3:
f4:90:5b:8d:7a:ea:e3:92:a7:29:a1:01:04:db:52:c6:5d:f8:
bb:6f:6a:2a:a0:71:27:4c:54:b6:91:4f:59:85:98:97:f1:18:
87:96:52:5f:65:75:e0:e2:f1:71:93:2a:09:77:06:44:73:d1:
bf:d7:4a:b4:f4:8f:71:6c:50:5e:af:eb:9b:ab:7b:b1:52:0c:
8c:44:af:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUK8ufTGZwYemu3H5Tp/UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZWY1ZGJhMTAwYTkyYjI0NDRmM2U1MTJkMDFhNTkyYzAx
OTUxYzIwHhcNMjYwNDE3MTIwMDQ5WhcNMjYwNDE4MTIwMDQ5WjAzMTEwLwYDVQQD
Eyg4NDcyNzk0MTRlOThhZGFiNjNlMThlZTY4ZDYwYWQ0OGU5YTA1YzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3+FmCvO1IRmPTbd49XPD0awkBix
SvDM6cIcwS4VOYTIzj7I8u/iT7899FF/7GDLzqJgx0d4GauJByvvuSY6F5ZOE8f+
nrA1dKJ28yDdnt7cjSY66T2wfreKtfbJag1XClqvlt7W/pLzP/M16CQYI0onmG6j
3uWF3Q+2j0aBLym/r+uPqHTHbe6I0+9Rn1apza84rS56d8u9CvKkuAwswgMbCkTO
nxFtnuQkseWt/AeNiLXGpDQsCyfQC58sMY59LLm74nuFru8pIbdBWPXs/QrcvTDN
CBmwpLjYBBxfLzsvUnpOUcEoA2vK++crdvVQ9/IwJzgMewzDeIhVZwa+8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIRyeUFOmK2rY+GO5o1grUjpoFxyMB8GA1UdIwQY
MBaAFPTvXboQCpKyRE8+US0BpZLAGVHCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDct
YWQwMjdlOTVjNWM3LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDctYWQwMjdlOTVjNWM3
LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdc7ZGaYm
kfIN+lrxTsQEcSQsFvyikzciGGt0ramwKO1PYEaWx0SnM4nqDPmJ61+heZ09kRFe
4iZM3yz7dlDYSUvZK+MHnaShb4Q8k8TqlFlzYI6RitA3E+IWXM0Fslyyke0s1nqy
5ybCkhcDoqlyxtJ3T81gyWWDB9ZhEGaFNkbrNRNuIJk2SnyVJeie0A2qGCu1mSYe
HVDRuDccjwz/opu/37QytbviI6mCoyyDWjisDh+j9JBbjXrq45KnKaEBBNtSxl34
u29qKqBxJ0xUtpFPWYWYl/EYh5ZSX2V14OLxcZMqCXcGRHPRv9dKtPSPcWxQXq/r
m6t7sVIMjESvEA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:07:04 2026 by rpki-client