Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
File: 95d69YDIUMyL-QZJ-b2opqSL85Y.mft (raw, json)
Hash identifier: +3PN8pVOJQ0eMUyCz59G4StR28fv9REfJT9JYTnemt4=
Subject key identifier: 0F:60:99:96:1A:D4:7D:5C:1A:3C:6F:7F:DF:3E:62:EF:A1:DA:C6:70
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 019D9818BBCCE936CDD20B4245732DBD9C97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
Manifest number: 0F45
Signing time: Thu 16 Apr 2026 21:00:50 +0000
Manifest this update: Thu 16 Apr 2026 21:00:50 +0000
Manifest next update: Fri 17 Apr 2026 21:00:50 +0000
Files and hashes: 1: 95d69YDIUMyL-QZJ-b2opqSL85Y.crl (hash: mJ4TfRFqFh39Yx3X0zRfuonZXmbvDEbrr2TWDEngM5A=)
2: MLYNkRRQ88o0jRLfUL-66Ts7owk.roa (hash: 1qOMlKH7FctGbFfwx8gGNyhgQRBsMDafuOc9je+w+4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:bb:cc:e9:36:cd:d2:0b:42:45:73:2d:bd:9c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Apr 16 21:00:50 2026 GMT
Not After : Apr 17 21:00:50 2026 GMT
Subject: CN=0f6099961ad47d5c1a3c6f7fdf3e62efa1dac670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f5:bb:e5:1b:23:92:b8:8a:63:d1:7a:ab:24:
46:ba:19:f4:72:53:ac:23:39:77:f9:2f:e7:78:79:
3c:94:ea:3f:82:db:1f:31:1d:fb:ff:44:04:e5:08:
75:de:ee:da:4b:7d:ef:34:4f:61:4a:24:e9:2b:61:
dd:84:09:6c:ce:21:ed:ea:78:58:68:12:5e:ae:85:
ad:e5:1c:39:63:56:74:d2:a9:0d:b2:02:3b:3d:e9:
2f:3a:07:a9:a8:8a:87:84:28:4f:bd:8b:9a:6c:97:
a5:45:0c:3e:ea:08:84:76:02:13:3c:77:11:66:76:
e1:66:6c:2e:f5:a6:e5:c5:be:dc:24:4a:e1:ec:46:
b5:a3:da:30:d5:92:4f:55:e9:4a:aa:54:72:6e:41:
0b:c6:77:69:a1:58:ec:1a:ee:f7:1a:de:d0:12:e1:
59:dd:dd:28:f3:c7:71:e2:c0:d0:81:5e:5f:c0:d3:
00:41:63:ff:4b:4e:6d:e6:73:aa:d9:cf:bf:ca:dc:
71:20:33:61:02:ab:4f:c4:d8:10:b7:e9:b2:6a:9f:
c9:1b:62:c2:1a:91:01:1a:45:79:3b:43:aa:e6:96:
af:d8:a9:fe:97:04:69:a4:d8:a2:ac:f0:42:0f:b0:
ab:05:24:95:5d:88:31:fb:22:24:b5:8a:fa:81:37:
c0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:60:99:96:1A:D4:7D:5C:1A:3C:6F:7F:DF:3E:62:EF:A1:DA:C6:70
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:50:81:f8:37:94:72:5f:5d:e3:e6:77:8b:43:d0:2c:fd:aa:
ee:8b:bb:ae:bc:93:86:dc:db:23:eb:6d:62:ee:7e:41:4b:c7:
20:31:9f:c3:e1:b0:0a:1a:54:88:9e:a0:e1:93:43:18:a3:5e:
e1:0d:9f:28:dc:2c:ce:07:31:bf:9a:01:a8:78:35:27:e7:4d:
00:dd:e0:d4:dd:c1:8b:73:8d:7a:07:03:cf:6e:d0:5b:89:c8:
56:a6:f6:13:13:de:9f:d9:71:f9:a3:43:14:8a:cd:e3:d3:af:
72:90:8f:b1:63:88:ee:c1:4c:81:4b:fb:0e:11:93:bf:40:fd:
9c:9a:e4:b5:f1:b8:8a:c2:a8:c9:47:1a:46:e1:57:95:e9:51:
5e:28:d2:a8:dd:ce:4b:ef:99:1d:8a:76:5b:db:5f:f4:4c:42:
f6:10:ac:6f:2e:13:57:46:d3:15:47:6d:36:11:ef:c1:22:93:
82:4d:a2:36:73:1d:03:50:d3:16:24:30:02:a2:a7:99:80:49:
fd:c9:b6:48:0c:6a:e4:6b:1c:be:a8:90:22:4c:23:92:e9:ff:
b3:d3:52:cf:6e:77:ec:f9:62:7f:e0:87:55:e9:dd:07:75:c6:
9b:3c:76:1a:e5:05:ca:99:cb:3e:a4:dd:54:21:da:89:74:42:
dc:28:a0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:54:37 2026 by rpki-client