Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: m9lRsipuslwMviVFAihp0lb5NPonHXpBjotq54BDIzY=
Subject key identifier: 9A:BE:92:AB:22:0A:94:72:27:95:E4:B0:7F:D9:D0:5C:26:FB:DB:5E
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019EBF2339C972C2E8179916443435212BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 1738
Signing time: Sat 13 Jun 2026 04:00:17 +0000
Manifest this update: Sat 13 Jun 2026 04:00:17 +0000
Manifest next update: Sun 14 Jun 2026 04:00:17 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: 2HVcpXvC1nnECv8lWsHgx5M0rtxfLbIlZcXV1cBkwz8=)
2: FVoehWVHfRAM9Wax2PLEzeuzUcQ.roa (hash: jKrRrki3jFgX40lflCLx2Zym5UZldktVdjD6ypmdCdQ=)
3: _FcCRW97Oyy-701A8ky-qnc9PuQ.roa (hash: TPZyrFAeXnN7pauwjeZRrcEQ8uCeSHffzbaYPf3BfAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:39:c9:72:c2:e8:17:99:16:44:34:35:21:2b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Jun 13 04:00:17 2026 GMT
Not After : Jun 14 04:00:17 2026 GMT
Subject: CN=9abe92ab220a94722795e4b07fd9d05c26fbdb5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ea:77:98:aa:7e:a1:4f:5a:69:1b:e8:52:61:
62:68:cd:87:89:1b:56:33:b1:7d:02:38:18:a5:f5:
37:5b:f1:48:77:a1:37:92:98:e9:1e:c6:a7:ce:d5:
c8:c3:ae:15:e4:d4:4d:6d:bb:ab:35:d0:4a:c8:ee:
af:1c:0f:a2:85:fe:03:d9:a7:c1:72:b3:58:86:50:
e3:42:2a:5a:a4:ae:04:ea:1f:68:7e:5e:57:6a:58:
14:f0:1a:24:37:53:55:7c:23:8d:33:69:92:83:44:
d4:64:f8:3f:47:ba:b4:7d:39:06:23:a0:7f:91:1c:
85:6f:9e:3e:e2:41:89:21:ad:80:c2:f9:66:41:e5:
2a:bf:e9:b9:db:4a:03:4e:57:63:3a:01:03:66:77:
cd:36:dd:89:7b:3d:85:29:62:33:fb:75:bd:8f:c1:
a0:fe:c9:31:f7:da:97:e4:6f:7e:a6:92:12:aa:8d:
68:ba:41:0f:f8:56:b1:36:3b:60:2b:38:ba:61:21:
9e:f2:86:e0:15:c8:39:fb:8f:46:b8:d8:2b:20:50:
e0:d7:dd:b7:0d:fa:45:17:75:d6:b0:7a:fc:89:3f:
dc:98:44:db:66:a2:38:89:e1:77:ea:44:90:2c:e4:
e9:92:0a:8f:c3:c8:78:b3:ac:33:ca:d3:b5:ae:9c:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BE:92:AB:22:0A:94:72:27:95:E4:B0:7F:D9:D0:5C:26:FB:DB:5E
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:be:84:56:d9:5a:ec:65:af:96:ce:a4:18:6f:1a:94:c0:06:
d5:39:7d:63:bc:36:da:96:3c:cf:24:54:70:ed:7e:65:9e:df:
eb:a2:56:a3:4a:ad:44:c5:92:1e:78:b0:dc:86:de:78:bc:47:
8b:4e:33:44:d7:b6:c8:88:de:14:81:22:93:f9:c5:c4:5e:5b:
3a:ef:75:ff:a8:e6:8b:e0:cf:6a:b3:9c:53:c7:74:07:69:69:
73:6c:fe:41:15:d8:9b:87:1a:d6:d8:8c:37:2c:2a:23:a0:01:
ca:39:f0:48:e7:d1:b9:fe:98:c8:56:2c:1d:1b:4f:e8:e2:79:
83:59:6d:8e:05:5e:3d:b7:5a:03:78:ff:87:a6:48:fe:25:fa:
6c:7d:dd:16:b0:5f:aa:39:aa:bf:41:28:60:41:69:a9:3f:4c:
6d:54:37:c1:67:f7:70:ca:d1:c8:52:61:fa:0f:3c:5c:a3:2c:
8c:f7:c4:1d:37:2a:86:cc:b5:f4:ab:4d:d6:62:3b:87:27:6e:
11:4b:f9:c1:84:27:50:92:03:89:fa:bb:3b:62:f8:8b:3b:4b:
84:c7:48:99:e3:0b:cd:bf:06:5c:ff:9f:c4:77:62:1a:29:8a:
6d:0a:13:f0:bb:54:f7:1a:78:76:d7:2c:ea:66:4d:e9:bc:4d:
6b:44:75:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:33:28 2026 by rpki-client