Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
File: iWsznbz4QR1YQAjPAptHyIqzedU.mft (raw, json)
Hash identifier: AaD3P4mx3k/EHXGBlEDCUt3skEg0VewNXPCKmGDdqRs=
Subject key identifier: 3D:52:DD:C0:76:67:8B:58:AF:B0:06:4B:16:8D:BD:1A:00:9B:A8:BA
Authority key identifier: 89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
Certificate issuer: /CN=896b339dbcf8411d584008cf029b47c88ab379d5
Certificate serial: 019D9BBE575F6B38C321F32338CC5B5FC231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
Manifest number: 9F
Signing time: Fri 17 Apr 2026 14:00:35 +0000
Manifest this update: Fri 17 Apr 2026 14:00:35 +0000
Manifest next update: Sat 18 Apr 2026 14:00:35 +0000
Files and hashes: 1: _01xdN9b6VGiDq8TdVfHkv4nsNA.roa (hash: cof+3EhtbeAEqNmK/OvBSq8ShRaGyYdb9JejvgRl8nA=)
2: iWsznbz4QR1YQAjPAptHyIqzedU.crl (hash: YZBbNsn74TnFm2lsvf1J/JO3K9WKQGUNDBBIfELWbtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:57:5f:6b:38:c3:21:f3:23:38:cc:5b:5f:c2:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896b339dbcf8411d584008cf029b47c88ab379d5
Validity
Not Before: Apr 17 14:00:35 2026 GMT
Not After : Apr 18 14:00:35 2026 GMT
Subject: CN=3d52ddc076678b58afb0064b168dbd1a009ba8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:9f:e8:f4:1f:76:44:b1:19:0e:b0:a2:08:
88:5b:cc:d6:56:db:34:90:c2:0e:07:ef:e8:16:41:
75:03:d1:cc:6a:15:e1:c1:92:36:64:6f:36:9e:e9:
be:b5:c0:dd:f3:2d:3d:47:fa:ae:4a:60:91:54:fe:
9d:02:86:ec:a6:08:10:ec:56:d2:ef:20:bf:63:c3:
48:6c:33:0c:b0:7c:d7:de:98:9b:d0:94:ad:6d:ee:
bc:64:61:22:2b:f1:0c:0d:a6:5c:ee:02:ab:5b:56:
3c:45:12:cf:c0:dc:77:87:54:18:1b:85:3f:08:e2:
73:0f:14:5a:48:0c:d9:ef:33:8d:60:3b:fa:ab:a4:
31:56:76:5e:aa:5b:b2:6a:47:df:23:8f:72:84:73:
ac:d4:a4:51:59:74:01:a5:1a:63:40:78:f6:d4:9d:
cc:b9:f7:af:ad:82:53:02:10:12:f9:08:7a:89:48:
14:80:1d:78:bb:5c:0a:94:3a:d2:84:af:c6:8b:f4:
74:96:1e:94:a0:25:e7:64:30:0b:68:22:73:ef:8f:
6a:55:59:ec:c0:45:7c:3f:19:37:59:75:d8:42:bb:
b1:a3:16:93:61:ab:fe:02:be:9f:64:a4:d9:8e:2e:
50:b1:40:11:ee:33:27:59:32:81:90:2c:51:a8:4a:
3e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:52:DD:C0:76:67:8B:58:AF:B0:06:4B:16:8D:BD:1A:00:9B:A8:BA
X509v3 Authority Key Identifier:
keyid:89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:cc:f9:43:16:4e:30:38:00:5a:9e:75:d2:22:fb:55:35:62:
5b:30:34:70:f9:78:d8:7d:a1:e7:97:82:6b:22:5b:9a:5e:55:
0e:36:07:af:af:3e:d6:4b:dc:e1:cc:30:4a:13:f1:ab:8e:71:
ab:83:34:6e:1d:d4:53:1f:aa:8e:8f:a0:4f:27:73:49:7e:90:
13:0b:c3:bc:50:f5:9b:8b:9f:c3:a9:66:ba:bc:5c:e6:23:f0:
c5:a2:4e:61:87:d5:d8:c6:7b:bf:a5:bb:01:1a:be:34:18:be:
44:64:ab:da:c7:6b:85:17:e6:f1:f1:83:bb:9a:95:15:bf:70:
af:b8:d8:97:d9:19:a2:d6:de:fb:89:3a:81:7f:a0:85:3c:f3:
a4:d4:c2:98:a6:b7:d8:6a:d8:7e:15:5f:c5:60:a8:3b:d6:97:
b3:af:b3:e8:43:d3:15:30:88:50:d5:5e:ac:f0:5e:8b:22:34:
02:3d:89:48:9d:dc:2c:cd:fa:23:96:86:22:76:f6:0c:b3:05:
16:98:a5:b1:85:4c:9f:2b:b5:dc:44:8a:f5:15:28:65:34:d8:
f4:a6:7e:aa:30:dd:18:83:34:7b:8d:9b:90:6a:30:cb:af:ab:
8f:14:d9:0c:fe:5e:e3:46:f5:6b:eb:5d:47:db:ce:5a:12:e0:
3a:f5:48:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:59:15 2026 by rpki-client