Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
File: dy9i9-iZgXRBGAk19CuCo5mAotw.mft (raw, json)
Hash identifier: DffI2+uDzkCVIc7Hbgf0GmE7udNto6nPWfoXHCVhKcI=
Subject key identifier: 99:3A:2B:08:13:A5:2B:73:BD:7C:5A:DA:72:F1:3B:9D:74:7F:B5:42
Authority key identifier: 77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
Certificate issuer: /CN=772f62f7e899817441180935f42b82a39980a2dc
Certificate serial: 019D9A3E1AA4F34E417434B11BE5376A0E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
Manifest number: 076D
Signing time: Fri 17 Apr 2026 07:00:54 +0000
Manifest this update: Fri 17 Apr 2026 07:00:54 +0000
Manifest next update: Sat 18 Apr 2026 07:00:54 +0000
Files and hashes: 1: 6yY6DHXCUp0-mtoCCLRQRpOy0Lg.roa (hash: 2i0eUBbBDwosjWl+pJkRt8nwBhZb81HA+7BnLWvezVQ=)
2: 72o1zQG6O8_8WQS5xWxLLwedUHA.roa (hash: hxPUIpJCQ0HNeMfrnwSBVOj6gd6VpV7h2c++shFRmY4=)
3: dy9i9-iZgXRBGAk19CuCo5mAotw.crl (hash: Cix5ygLPF9zke9ZgZdFUpamJq3PrOmq5DDw2KtlNYqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:1a:a4:f3:4e:41:74:34:b1:1b:e5:37:6a:0e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f62f7e899817441180935f42b82a39980a2dc
Validity
Not Before: Apr 17 07:00:54 2026 GMT
Not After : Apr 18 07:00:54 2026 GMT
Subject: CN=993a2b0813a52b73bd7c5ada72f13b9d747fb542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:05:ac:32:bd:96:25:ff:1b:6c:e3:3d:ac:75:
8c:45:9e:bf:a6:15:6c:a9:ef:b5:7c:20:1a:c4:1d:
2f:96:e3:f9:5d:4c:ff:33:1f:eb:8f:67:a5:19:e0:
e1:29:df:9e:f9:e6:54:02:fa:0b:42:a7:83:0e:31:
a2:bf:b8:ef:69:25:e0:22:44:59:81:4c:7a:82:32:
6c:10:f0:01:c6:12:78:df:4c:d6:86:9e:d9:9e:ee:
a7:98:c4:e2:c2:ca:ac:af:57:0c:55:86:35:18:7b:
8f:a2:7a:6f:ca:9d:4c:44:5b:1c:e2:f5:8b:5a:8e:
0d:c9:ac:14:5b:9d:85:35:c7:59:3c:80:95:61:08:
89:25:e2:02:84:dd:ba:21:39:55:a5:68:2b:b4:db:
a4:c5:39:44:2d:f5:56:e1:d7:59:cf:24:fe:11:d0:
c8:9f:0d:0c:94:0c:e9:a5:41:3a:db:d5:ea:36:53:
eb:13:5d:a4:82:dc:48:1e:5c:48:04:fd:cf:26:5c:
24:bd:1e:c2:f9:22:0b:3d:b2:c7:e9:c8:c6:63:20:
a1:a0:9b:e0:0d:a6:24:eb:86:41:8c:b1:13:5f:fc:
97:37:4d:e0:ff:7e:99:ee:77:c4:41:79:06:6a:f1:
b3:df:06:a7:7e:a5:0c:9d:82:b7:8f:a8:84:10:bd:
61:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3A:2B:08:13:A5:2B:73:BD:7C:5A:DA:72:F1:3B:9D:74:7F:B5:42
X509v3 Authority Key Identifier:
keyid:77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:1d:5b:5a:85:bc:e2:44:7d:75:82:2c:d0:f2:83:e1:c1:a0:
2b:81:1f:04:82:80:e4:97:2f:4e:b3:62:47:ba:96:14:4e:68:
bc:a2:ba:db:6d:e0:6f:bd:35:cd:65:32:ee:87:b7:c3:75:98:
8c:4a:97:0c:bb:60:28:da:bb:f2:fc:1f:76:14:32:c2:67:ad:
7c:bd:e1:2a:77:4a:2f:a0:bd:75:b8:5b:f9:31:43:e9:3c:15:
62:e7:95:eb:55:8f:2c:94:72:29:ad:8f:43:8d:72:7d:62:1e:
a4:8e:79:95:9c:0b:32:2b:7d:c9:ff:03:0b:0c:0b:14:9d:a8:
55:51:51:f1:d5:de:3c:dd:81:fb:aa:88:ad:ac:0b:10:4b:b5:
2f:04:a3:9c:73:11:94:76:5c:8d:e6:62:dd:52:12:17:48:11:
e4:71:17:bd:87:78:a8:ba:7d:7f:a3:e4:eb:04:e8:66:a1:52:
df:b4:2d:80:54:3e:28:b7:9e:6d:7f:52:c4:10:48:83:f1:ea:
d4:49:94:82:4f:16:f8:08:d0:2c:42:83:92:34:7c:76:5f:a9:
a8:3d:4c:b2:8f:d3:5f:ee:24:28:de:84:c5:34:99:9f:4d:8b:
7c:83:24:93:5d:4f:21:2d:cf:f6:fc:cf:db:8c:b9:06:be:62:
f6:b1:e9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:04:24 2026 by rpki-client