Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json)
Hash identifier: U4AxAqOhcIwe+gjG1IXPosVg8f8/VlkurA7Bxuc2Ugg=
Subject key identifier: 69:C0:E7:28:A3:F9:B2:84:3F:91:4B:51:72:FD:E7:DA:44:0A:8A:9E
Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Certificate serial: 019CAE6C5EAC2756A417F63011B69A5DD04A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
Manifest number: 17D9
Signing time: Mon 02 Mar 2026 12:01:03 +0000
Manifest this update: Mon 02 Mar 2026 12:01:03 +0000
Manifest next update: Tue 03 Mar 2026 12:01:03 +0000
Files and hashes: 1: 4QtQ4JO4bCdyuS9fUme9C3LxdRc.roa (hash: R6o6h7FPQ78N3YyiGkBHhpV10pWrv1sif+o6N3TYJMg=)
2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: 4TLOcfeH/nALf5pysKIz0OqfNLzlPWMQpsOeDeVhIdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:5e:ac:27:56:a4:17:f6:30:11:b6:9a:5d:d0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Validity
Not Before: Mar 2 12:01:03 2026 GMT
Not After : Mar 3 12:01:03 2026 GMT
Subject: CN=69c0e728a3f9b2843f914b5172fde7da440a8a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fa:d2:c3:aa:9a:0d:a7:5f:3c:f0:9d:8f:e9:
87:a6:18:a8:a6:1c:56:ac:a4:90:8b:16:48:ec:4a:
5f:3f:6a:3e:36:4e:a5:fd:cf:be:9d:b0:5e:49:9b:
e6:f7:84:5f:7d:43:26:93:db:84:c0:02:8f:18:e9:
ea:02:56:8e:d3:9f:4c:d9:7b:64:46:ac:b0:b3:e1:
ed:6f:e3:fe:2a:4c:e8:c9:df:24:e6:f6:87:8d:2c:
ef:63:57:9e:c4:71:b3:96:86:ef:1b:21:eb:27:30:
e6:a1:38:3d:14:d5:ec:f9:31:a9:f4:13:c0:cd:d1:
70:e0:c9:4e:b8:e4:84:36:c9:a0:ba:b2:75:2d:d3:
97:dc:fa:18:28:4d:4d:07:f5:75:2e:d3:31:79:e0:
76:fa:dc:2c:99:54:49:ae:49:65:47:36:20:c3:61:
14:94:1d:a8:5e:09:3d:59:ab:a1:aa:8a:df:fe:2a:
a5:2b:6a:ad:e4:99:af:c4:98:f8:55:e1:bb:a3:4f:
58:db:9d:f4:b9:93:bb:78:6f:01:15:78:8e:70:ba:
13:59:e8:bb:e7:97:e8:6b:4f:fa:78:bb:d3:8a:d6:
8d:b6:25:4a:2b:5c:34:42:42:07:0a:fe:95:00:a5:
ed:39:01:de:bf:3f:61:3f:34:bb:71:67:60:e7:cf:
04:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C0:E7:28:A3:F9:B2:84:3F:91:4B:51:72:FD:E7:DA:44:0A:8A:9E
X509v3 Authority Key Identifier:
keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:e1:48:b1:80:06:2b:0e:4a:58:8f:6c:82:07:d6:84:d0:0d:
16:cd:7b:0a:c1:3b:94:8d:1b:56:b5:9f:f2:74:25:96:83:90:
eb:01:9d:53:69:c8:f0:cd:27:3f:1b:e2:38:38:24:a4:98:20:
95:04:05:55:82:60:11:74:76:e1:7d:8c:c1:0f:bd:83:92:10:
d9:09:20:38:42:5a:68:32:cd:53:f1:64:7b:10:03:03:80:3a:
c9:f8:98:91:1f:8d:e1:2c:1a:b1:b3:7b:6c:cb:ad:2e:ad:6a:
43:d3:27:1c:9a:54:68:0e:a1:db:88:98:46:06:6c:ff:9f:64:
a6:4f:96:b3:4d:d5:2a:ad:23:9b:69:6f:3d:30:87:9f:73:5f:
7a:c6:99:f0:27:08:95:68:31:67:9b:08:9d:53:12:bf:05:2d:
59:e5:a6:26:2d:30:9f:cc:34:b6:33:7d:ac:7f:9b:63:d8:0e:
f9:3c:6e:88:3d:57:e4:e9:d8:7c:64:a5:6b:c6:e7:b9:a9:69:
e1:db:c5:b2:94:d3:b0:5c:cd:0e:d0:a7:63:0e:68:16:46:32:
a0:c4:96:db:dd:e0:b3:e9:a6:4e:06:ff:fb:1a:ee:40:f0:36:
bc:21:f4:d9:90:ca:dc:20:88:bb:cd:12:16:b7:c0:c7:ce:45:
9e:d6:2e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:02:14 2026 by rpki-client