Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json)
Hash identifier: HdvbgkEH3LOJE2V3aSEDlofHzDHU0gk2AWQufaO8I3c=
Subject key identifier: D4:1E:78:03:63:42:8D:C3:4E:3B:3C:B0:F3:20:CC:1D:94:51:0D:16
Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da
Certificate serial: 019DA453DFCA250D8169B581A63F7EEB4D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
Manifest number: 03D2
Signing time: Sun 19 Apr 2026 06:00:53 +0000
Manifest this update: Sun 19 Apr 2026 06:00:53 +0000
Manifest next update: Mon 20 Apr 2026 06:00:53 +0000
Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: dYFQakvEWyKjshwBcW87qGJ2a31L8z7Fx/75GV+j1yI=)
2: d6pd06B5mnNywdYo5eZBwLJxfT8.asa (hash: ETla8YTJcM+5uBnfvCMaInkUnAmAwDLx0tjpRZMyWmk=)
3: tvMXQZLl7Wysz_xvdn4KxR27LYI.roa (hash: DS+mGSmFWnDI1NNRJFgUsn5iaFW320NJTO3U5Mk3hfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:df:ca:25:0d:81:69:b5:81:a6:3f:7e:eb:4d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da
Validity
Not Before: Apr 19 06:00:53 2026 GMT
Not After : Apr 20 06:00:53 2026 GMT
Subject: CN=d41e780363428dc34e3b3cb0f320cc1d94510d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:62:ed:f1:f5:03:32:b5:64:f5:16:ee:74:
51:e1:64:0a:e8:49:9e:4f:36:c4:56:d1:89:1d:f8:
9c:53:1f:23:8b:15:ba:b1:bb:cb:34:03:51:b8:79:
c1:8b:87:2a:da:37:a8:1d:af:a1:70:c9:da:17:67:
5c:35:58:d8:00:74:aa:6e:eb:6a:8f:04:ec:23:b1:
ef:ad:28:48:23:4b:b7:de:4d:30:9a:d6:14:e2:8a:
47:34:ca:5e:d5:20:ef:61:ca:9f:da:cc:25:51:47:
15:e4:c4:40:ee:05:ad:82:85:60:c4:a5:3b:cd:57:
27:ae:03:65:fa:f3:13:c2:37:e6:d2:ad:84:f0:1a:
a0:d4:b3:c7:e9:31:d4:47:de:32:6d:83:57:15:28:
d7:e1:12:ce:6d:6d:9f:13:7f:a2:6f:be:5b:f2:8e:
f7:a9:d7:d5:3a:72:59:e4:6f:0b:0e:b2:00:70:3b:
b5:f2:49:56:e9:d2:78:33:a3:f7:85:a6:3d:55:cb:
3d:8c:0b:f1:5b:ae:ba:16:3a:c0:71:94:7f:da:eb:
03:58:a1:b6:89:8a:3c:b8:d4:dd:cb:5e:e1:bd:98:
ef:dc:29:aa:d0:51:3b:e6:2c:89:9b:f6:a4:96:a4:
26:54:b0:78:1f:06:37:f2:a4:b2:04:df:31:98:86:
0f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:1E:78:03:63:42:8D:C3:4E:3B:3C:B0:F3:20:CC:1D:94:51:0D:16
X509v3 Authority Key Identifier:
keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:4d:2d:95:1f:e9:86:c1:3f:48:34:ea:2a:a9:67:ef:bf:13:
2e:dc:d5:f5:df:f5:30:4d:94:50:f0:65:de:25:0e:21:dc:6e:
97:d7:bc:91:03:60:08:dc:d9:6d:d4:7a:54:d5:3d:51:58:ed:
6b:a2:9b:4d:71:18:a5:e1:70:5f:2c:c5:23:d5:9d:bc:91:2a:
2a:87:95:51:58:f7:e1:6e:df:40:1c:2d:a6:3a:b0:6e:e4:82:
81:00:43:68:52:66:2f:9b:d6:fb:10:12:f5:3d:41:08:0a:fd:
16:a7:4e:ff:8d:8f:5c:ea:19:d8:84:8c:64:6c:6c:50:e9:d5:
ce:bf:e9:d2:af:ce:39:b4:8a:04:64:b1:9a:f4:3b:66:c5:16:
59:ed:e0:64:1c:54:49:6a:69:0c:dc:0d:47:91:7e:bf:4f:a7:
d4:16:c6:1b:dd:f3:d6:1e:b1:c7:69:ac:fb:e0:e3:54:03:49:
23:6b:99:de:5d:d8:de:0c:d1:2b:3a:d2:64:f4:5c:3d:00:a0:
8b:6e:d0:59:b1:4c:53:d8:a0:d2:9b:de:10:73:68:81:c3:0e:
83:03:72:30:e6:03:cb:f2:cc:bb:ea:af:75:e4:dc:43:64:6c:
9b:e5:80:e7:f7:10:e9:af:82:83:2e:09:0a:c6:15:e9:d7:2e:
2b:30:8c:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 16:13:19 2026 by rpki-client