Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json)
Hash identifier: 2kdTPO7jpNGWdCU7yD1J2OiLgOnCCHJJOpc7KLzXWZ0=
Subject key identifier: ED:B5:07:8E:33:79:E7:FA:EE:07:49:99:52:35:A1:A2:D8:A8:FE:FE
Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da
Certificate serial: 019CB21211A629499E32ECF639BDF431140E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
Manifest number: 0354
Signing time: Tue 03 Mar 2026 05:00:54 +0000
Manifest this update: Tue 03 Mar 2026 05:00:54 +0000
Manifest next update: Wed 04 Mar 2026 05:00:54 +0000
Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: kgfJF3GcIhGOXlZcTWOvqd0bO9Wwy5bRAi+GOqsdnqY=)
2: tvMXQZLl7Wysz_xvdn4KxR27LYI.roa (hash: DS+mGSmFWnDI1NNRJFgUsn5iaFW320NJTO3U5Mk3hfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:12:11:a6:29:49:9e:32:ec:f6:39:bd:f4:31:14:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da
Validity
Not Before: Mar 3 05:00:54 2026 GMT
Not After : Mar 4 05:00:54 2026 GMT
Subject: CN=edb5078e3379e7faee0749995235a1a2d8a8fefe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e6:24:5d:98:bb:8c:b7:c8:ec:64:2d:19:4b:
e5:44:d9:fe:2a:7a:49:f8:3b:07:39:d5:cc:8b:68:
44:f1:11:1a:55:34:ca:4a:67:f2:d6:82:41:50:61:
ee:b8:19:83:4b:ff:73:ab:e1:8d:37:d3:80:e5:04:
34:ea:06:60:3d:9b:13:5b:79:64:61:1a:31:a7:c3:
b5:4e:c1:50:ff:21:a1:09:4b:98:b0:af:fa:95:15:
29:17:35:42:c7:67:95:92:1a:0e:a6:25:10:c4:01:
f0:76:f2:2a:2b:cc:c2:ba:b5:e6:03:3b:a9:0e:f6:
a1:17:7a:f2:50:8a:db:e3:cc:f4:0c:6f:c9:fe:35:
57:ca:c3:37:b1:ff:6d:ea:74:5d:9c:ce:80:a3:9b:
0b:3c:b2:cd:8f:49:ca:5c:46:45:67:cb:18:b6:27:
8c:83:1e:62:ae:bd:0d:03:f5:e3:be:ea:ab:14:5a:
be:ad:eb:78:f7:64:cd:91:f8:6f:b8:83:a6:1e:42:
30:70:eb:76:b1:1b:52:1e:a4:a8:a4:19:af:28:29:
13:22:42:5d:f5:3d:1d:ca:1a:72:54:fa:2a:54:81:
5c:a6:1b:09:d5:cd:bb:d0:07:d4:3c:c7:4c:88:a2:
a7:8a:17:1e:07:59:de:cf:a3:13:ab:3a:70:24:33:
c7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B5:07:8E:33:79:E7:FA:EE:07:49:99:52:35:A1:A2:D8:A8:FE:FE
X509v3 Authority Key Identifier:
keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:5a:89:7a:c1:fe:c9:71:45:1d:c3:27:e4:b2:3b:e9:17:4b:
60:3f:de:c3:e2:f1:be:a3:06:ef:60:b3:b0:7d:c0:9b:4f:a3:
d6:85:72:d7:40:4a:88:9d:35:f8:15:e6:22:ce:53:c0:32:8d:
e6:48:72:a4:93:9c:7c:ae:95:2c:58:17:e5:6d:f8:20:cd:c7:
86:44:6b:37:a8:73:38:99:dd:0b:ed:a1:20:b7:ec:3f:14:08:
9e:e4:af:fb:ec:c4:fd:1a:66:53:5a:32:32:ab:cc:a7:9d:a1:
39:d2:ba:22:37:3d:31:da:35:50:4b:a1:82:5d:f3:1a:4c:65:
ac:9e:12:51:93:d1:35:bc:b2:88:97:23:6f:1a:bf:9c:e4:6e:
cc:29:cd:d8:a8:d3:85:c6:c9:bd:d2:28:0c:ed:ba:80:8e:b0:
ad:c6:f4:7e:c5:bc:70:88:b1:df:c2:81:32:09:e4:f6:9f:13:
88:2f:f9:25:28:53:fe:85:7c:16:0d:2a:19:bf:f0:a9:2f:86:
a4:c2:87:22:3d:d2:12:96:e4:56:5e:b8:cf:06:f4:53:6f:02:
e5:1a:e5:07:c7:63:c1:e2:e7:3f:a9:12:e8:a4:e3:c1:9d:8e:
46:5c:df:7f:c2:67:0b:35:bf:d4:15:b8:5d:a2:80:57:0c:5e:
e9:bf:b2:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyyEhGmKUmeMuz2Ob30MRQOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2MjY1NDY1OGY2NzJhYWNmMzcxMzNiNWM3MWNmNGIxMWMx
ODY5ZGEwHhcNMjYwMzAzMDUwMDU0WhcNMjYwMzA0MDUwMDU0WjAzMTEwLwYDVQQD
EyhlZGI1MDc4ZTMzNzllN2ZhZWUwNzQ5OTk1MjM1YTFhMmQ4YThmZWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyeYkXZi7jLfI7GQtGUvlRNn+KnpJ
+DsHOdXMi2hE8REaVTTKSmfy1oJBUGHuuBmDS/9zq+GNN9OA5QQ06gZgPZsTW3lk
YRoxp8O1TsFQ/yGhCUuYsK/6lRUpFzVCx2eVkhoOpiUQxAHwdvIqK8zCurXmAzup
DvahF3ryUIrb48z0DG/J/jVXysM3sf9t6nRdnM6Ao5sLPLLNj0nKXEZFZ8sYtieM
gx5irr0NA/XjvuqrFFq+ret492TNkfhvuIOmHkIwcOt2sRtSHqSopBmvKCkTIkJd
9T0dyhpyVPoqVIFcphsJ1c270AfUPMdMiKKnihceB1nez6MTqzpwJDPHQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO21B44zeef67gdJmVI1oaLYqP7+MB8GA1UdIwQY
MBaAFPYmVGWPZyqs83Eztccc9LEcGGnaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgt
NjY0Nzc4ODQ1YjE2LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9hNjhlMjYtOTJlNS00ZjQ5LWFkYjgtNjY0Nzc4ODQ1YjE2
LzEvOWlaVVpZOW5LcXp6Y1RPMXh4ejBzUndZYWRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMlqJesH+
yXFFHcMn5LI76RdLYD/ew+LxvqMG72CzsH3Am0+j1oVy10BKiJ01+BXmIs5TwDKN
5khypJOcfK6VLFgX5W34IM3HhkRrN6hzOJndC+2hILfsPxQInuSv++zE/RpmU1oy
MqvMp52hOdK6Ijc9Mdo1UEuhgl3zGkxlrJ4SUZPRNbyyiJcjbxq/nORuzCnN2KjT
hcbJvdIoDO26gI6wrcb0fsW8cIix38KBMgnk9p8TiC/5JShT/oV8Fg0qGb/wqS+G
pMKHIj3SEpbkVl64zwb0U28C5RrlB8djweLnP6kS6KTjwZ2ORlzff8JnCzW/1BW4
XaKAVwxe6b+yug==
-----END CERTIFICATE-----
Generated at Tue Mar 3 14:46:31 2026 by rpki-client