Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: 1dqLmTTRGUUybur9Qmm9ycR4Tb+LqiVJ4xqifsyfhMc=
Subject key identifier: F9:B3:6F:CF:EF:28:A8:74:7D:7E:8C:6B:9B:F8:7B:E3:FC:AC:67:AA
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 019D9962A73A70BB3DFAA15FADE39B2314A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0F41
Signing time: Fri 17 Apr 2026 03:01:12 +0000
Manifest this update: Fri 17 Apr 2026 03:01:12 +0000
Manifest next update: Sat 18 Apr 2026 03:01:12 +0000
Files and hashes: 1: eXDqAVaIQyjrBekMkhiLLXazNGo.roa (hash: mx0bQziTxDdXw4zJxmPWo837bOwGLkOKhTyelVbdF1g=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: 465ldel/2FFS7+cTGFiVCve7bHZc1pQjHWe6AoBq1EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:a7:3a:70:bb:3d:fa:a1:5f:ad:e3:9b:23:14:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Apr 17 03:01:12 2026 GMT
Not After : Apr 18 03:01:12 2026 GMT
Subject: CN=f9b36fcfef28a8747d7e8c6b9bf87be3fcac67aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ca:75:c9:56:4c:3e:fb:08:99:30:87:5b:d8:
6e:48:2e:17:ac:ad:10:09:bc:71:19:b2:c4:f2:4d:
fa:d1:99:7b:d4:59:73:42:e6:01:fe:46:91:bc:aa:
39:67:30:c1:54:b0:df:7f:a3:a3:10:ad:29:65:e8:
11:67:8c:6a:d7:d7:6d:3c:1f:0d:7b:45:93:3c:64:
02:12:91:49:1b:8d:f7:9f:30:fa:16:b1:f6:3a:3e:
02:6d:fc:8f:6d:7b:89:23:e8:e7:6f:6d:80:c1:cb:
30:58:87:b3:9e:91:4c:62:87:4f:16:5b:a8:e6:bc:
4c:d0:1f:31:55:94:d3:1e:6d:7f:7a:f2:fe:40:ad:
90:d0:f6:f7:d1:c3:2f:cd:f6:14:7d:df:2b:d7:f4:
71:f9:02:88:21:53:40:42:69:7f:6c:c6:2c:d8:d8:
00:4c:d5:50:20:57:da:c4:42:87:4b:12:b5:6b:b4:
e5:ed:71:9f:f8:53:02:04:76:d9:a2:c8:05:bd:89:
23:bf:a1:a4:81:dc:b9:05:8d:ae:8c:53:e9:e0:9c:
4a:69:b4:ab:7b:a1:65:09:fd:3e:36:65:87:f5:74:
e0:14:7f:b4:52:31:c0:21:e1:0e:c2:36:d4:14:84:
ac:d7:1c:fd:2a:a6:d5:ad:ef:ff:40:ed:8d:c8:3e:
68:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B3:6F:CF:EF:28:A8:74:7D:7E:8C:6B:9B:F8:7B:E3:FC:AC:67:AA
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:5e:14:26:bb:ba:9e:6d:30:b5:82:12:15:9d:1f:9f:75:31:
1e:c7:80:5e:9a:39:84:2c:e2:84:a2:62:5e:68:62:11:9c:79:
ca:e5:f2:8d:c6:e8:58:0b:7b:d7:31:0c:8b:e9:a0:af:b2:8e:
60:80:69:17:87:a7:8c:af:24:34:6a:62:74:ca:2f:c6:b0:0e:
bc:01:b7:9d:65:a2:d8:9a:73:1b:51:72:d0:5b:37:bb:d8:b8:
68:58:ee:18:d2:68:f5:9d:50:11:7d:70:60:4c:e4:7d:1f:79:
a5:d3:37:2c:e4:65:5e:55:0b:be:1b:66:c9:46:7f:7a:f2:9c:
8a:b8:6e:c6:91:61:56:2c:c7:38:40:80:0b:6d:a9:39:bd:1d:
19:aa:b3:1f:a3:bf:b9:f4:77:64:bd:70:6a:ef:57:58:1a:5d:
4f:75:d2:7b:90:39:df:ce:03:29:83:48:00:4e:ba:50:b4:7e:
bb:48:e2:c0:5e:ce:99:ae:3b:9f:f4:6b:a0:69:b4:54:23:5a:
81:ca:f9:4c:a6:35:6b:2a:3b:59:c6:af:0e:10:71:52:35:7d:
9f:fc:15:0c:80:3f:a4:7c:2b:51:ec:9e:c2:99:24:a0:c7:ac:
37:ab:64:f8:76:aa:d9:d9:63:ce:0f:bc:04:3b:a8:55:ff:40:
bc:e8:ac:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:20 2026 by rpki-client