Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
File: d9Vhc4owymkonMhFMN5d73SjqYI.mft (raw, json)
Hash identifier: 5DSYHX6Qc/Te29mkZpwFYiJ10EVtBIgswC2HID9Uoak=
Subject key identifier: 0B:7B:A9:28:AB:9D:50:9D:5F:F8:DE:3C:52:8E:D3:4B:06:4B:90:55
Authority key identifier: 77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
Certificate issuer: /CN=77d561738a30ca69289cc84530de5def74a3a982
Certificate serial: 019D9CD163F11FE31871FAE928D0E2B642B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
Manifest number: 9C
Signing time: Fri 17 Apr 2026 19:01:01 +0000
Manifest this update: Fri 17 Apr 2026 19:01:01 +0000
Manifest next update: Sat 18 Apr 2026 19:01:01 +0000
Files and hashes: 1: d9Vhc4owymkonMhFMN5d73SjqYI.crl (hash: uHjEsUjkYiPRHq5I8By65NhoZuJ70247z8DKtH6INBc=)
2: wBGjgdfu_nLRR4DjOBdo0PtKJMM.roa (hash: PPK9ixZ6Q7KuFLEJo2Wk9bDSxb6ZvTbGERhmOzUiZuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:63:f1:1f:e3:18:71:fa:e9:28:d0:e2:b6:42:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d561738a30ca69289cc84530de5def74a3a982
Validity
Not Before: Apr 17 19:01:01 2026 GMT
Not After : Apr 18 19:01:01 2026 GMT
Subject: CN=0b7ba928ab9d509d5ff8de3c528ed34b064b9055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ae:8b:0e:6d:a9:34:7b:96:5e:9d:14:5e:68:
fb:15:fc:ff:d2:ca:ea:7f:d4:69:5f:19:89:b6:d7:
ec:11:5d:d6:0c:2e:aa:e8:72:5b:9e:eb:04:00:e7:
6a:bc:0e:91:19:25:e3:e3:64:4f:30:25:bc:17:60:
77:35:9d:00:fa:73:50:bf:98:6f:64:f7:8a:3a:6a:
1c:79:f2:cf:d7:8f:25:4f:47:3f:f1:91:c0:2c:b9:
bc:b8:f1:d1:46:5c:7c:33:1f:c6:d0:4a:de:99:5e:
37:ff:9e:ee:7c:63:c3:af:c4:53:97:bc:3f:36:58:
07:6e:c0:95:de:3e:64:a5:69:02:19:06:ee:f8:01:
4d:9e:56:63:0a:2f:71:57:91:3b:90:46:22:83:32:
cb:e9:fb:f4:d1:31:cb:12:c1:ed:36:aa:07:18:b4:
86:c0:88:d5:60:3d:35:76:e1:97:16:4f:fc:f4:b2:
f2:fb:21:b7:d1:9f:a3:2d:6d:66:0c:7f:60:2b:f3:
93:e2:be:46:c2:b6:f4:99:00:b6:d1:3c:36:70:bb:
ec:c7:d6:7a:00:f7:18:3f:56:15:5c:5a:cd:20:12:
7e:e0:4e:38:f8:65:2c:26:1d:1e:d0:74:a6:4a:73:
f1:1b:cd:7f:69:23:8c:e8:34:72:ee:a7:b7:31:cb:
fe:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7B:A9:28:AB:9D:50:9D:5F:F8:DE:3C:52:8E:D3:4B:06:4B:90:55
X509v3 Authority Key Identifier:
keyid:77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:7a:c9:f6:3a:e1:df:ae:96:2e:22:9f:f2:87:dc:2f:c4:7c:
a4:8a:b8:e5:71:92:ce:54:a8:b3:55:09:ff:80:bb:90:5f:f7:
16:3b:f7:96:29:1b:85:18:8e:22:c9:98:60:be:52:67:0a:e5:
1a:3f:29:3b:2b:cf:0a:77:d1:ba:23:a3:44:75:14:f1:88:68:
e4:6b:db:e6:d9:ba:2f:19:1d:5c:bd:bf:8f:41:f4:ce:dc:21:
56:9b:e0:04:fc:6e:2b:e2:c8:01:33:d4:9a:2a:b3:48:a4:16:
3c:fc:88:10:f9:aa:64:24:f0:c0:d7:91:aa:20:c7:0c:36:66:
44:0f:23:68:93:cb:41:63:ee:d9:1b:e4:69:bf:a9:28:dc:e9:
bb:14:c2:fb:a0:cd:23:df:20:55:25:f9:62:3c:69:6f:00:58:
60:31:ae:e8:34:1e:14:17:fc:04:c5:a9:1d:96:1e:db:5c:b4:
93:b5:96:df:14:55:6b:18:d7:04:1a:4d:b4:a9:57:e3:82:c3:
55:17:2f:0c:5a:86:5e:71:9d:9f:e8:d1:94:d3:2c:f8:84:fc:
7a:48:ac:c0:cd:54:c3:cd:aa:7c:ce:06:5f:38:40:59:d3:06:
52:64:30:b7:d8:f9:11:9b:38:f9:83:d9:32:2d:21:2d:56:4d:
17:76:a8:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:59:59 2026 by rpki-client