Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: syT+j4LjnaMPm50qvCw6tgPKnZtxcAuvZWujsFFTUho=
Subject key identifier: 7A:1B:EE:C2:D1:72:94:76:0A:4F:E5:52:F3:E6:25:DA:D8:F9:6F:F6
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019D99994749581A783C11D50B1D1B692A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 16A0
Signing time: Fri 17 Apr 2026 04:00:52 +0000
Manifest this update: Fri 17 Apr 2026 04:00:52 +0000
Manifest next update: Sat 18 Apr 2026 04:00:52 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: Njo4Ai8P2YgvTg7rcO70qLSt7/kNEaP676jFHHFyQsE=)
2: FVoehWVHfRAM9Wax2PLEzeuzUcQ.roa (hash: jKrRrki3jFgX40lflCLx2Zym5UZldktVdjD6ypmdCdQ=)
3: _FcCRW97Oyy-701A8ky-qnc9PuQ.roa (hash: TPZyrFAeXnN7pauwjeZRrcEQ8uCeSHffzbaYPf3BfAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:47:49:58:1a:78:3c:11:d5:0b:1d:1b:69:2a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Apr 17 04:00:52 2026 GMT
Not After : Apr 18 04:00:52 2026 GMT
Subject: CN=7a1beec2d17294760a4fe552f3e625dad8f96ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:22:b0:6d:98:62:77:3d:f6:81:96:b4:d1:
f9:3e:b1:24:bf:c4:d2:22:7f:fa:cc:d4:dd:33:78:
08:36:75:fd:17:a8:f1:e0:94:15:ee:c7:fc:0e:2e:
7e:8c:cc:56:3a:5a:e9:5f:8e:8a:f6:a3:79:0b:4f:
8e:cc:a4:df:20:d6:b4:94:d4:0c:f2:dd:0d:f3:bb:
43:73:7b:d9:89:ce:d5:7c:38:44:a0:5f:2d:53:b6:
4e:6f:c5:b1:b0:df:55:86:9d:8a:8f:fe:92:88:15:
d3:d2:0b:0e:49:f7:81:cc:03:3a:0a:1c:d3:96:11:
69:c9:ea:8e:e8:52:be:de:d1:16:1b:77:f0:03:9a:
5a:72:c3:36:30:e5:7a:40:f5:70:de:52:d0:a1:03:
f0:82:ad:f4:7e:54:73:fe:f6:d8:24:3a:24:58:93:
5d:05:3d:2e:d6:77:91:ef:3e:e0:5a:6b:a1:22:08:
3b:52:77:b5:a9:ad:3f:af:84:c2:20:c1:bf:15:35:
8c:0e:53:30:51:ac:15:04:36:f0:46:c6:03:76:bc:
d8:f4:9e:56:e7:d5:f5:4b:ef:e1:12:ca:93:4f:d3:
b5:93:ba:29:3c:d3:40:51:9e:0f:5b:2a:c1:03:6d:
f9:58:ce:01:e5:0a:ae:07:a8:a3:b7:83:ec:7d:f4:
6a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1B:EE:C2:D1:72:94:76:0A:4F:E5:52:F3:E6:25:DA:D8:F9:6F:F6
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ad:f8:09:27:ed:a6:39:cb:56:98:21:12:4a:46:01:2c:3e:
bf:5e:81:e7:12:7c:70:b6:a0:56:2c:2e:41:eb:65:8d:0d:6e:
05:b5:45:f5:58:54:a5:12:94:44:57:a4:e9:e4:3e:06:fb:d5:
51:22:f5:dd:28:35:99:b2:57:3c:2e:a3:30:31:3f:fc:cf:e5:
36:09:23:d0:7d:59:11:42:e6:e3:0b:24:e3:3b:6f:0b:f6:41:
2c:9a:1e:44:48:12:bb:b5:2f:88:02:90:0e:13:75:99:d0:ab:
b6:b3:b1:9b:0a:61:f3:b8:8e:d8:41:9f:da:cc:75:fb:00:3e:
dc:bc:a8:6e:ca:28:16:58:38:a6:9d:6b:f1:f3:83:32:cf:e6:
b2:06:6c:69:af:bc:8d:54:0a:26:dc:ad:4e:78:c8:6f:c4:d7:
a6:e1:43:1a:ca:26:4c:b4:da:5a:de:b5:cb:c8:a3:88:a3:b0:
a4:cf:4a:97:bc:ac:f2:a8:42:b8:ee:59:cf:96:45:b2:db:f2:
93:56:a3:6c:bd:ec:ff:f1:90:ef:24:13:70:d0:84:ce:a2:03:
13:2d:1c:4a:4f:28:ae:ec:b6:d7:e4:c0:d4:3e:1a:dc:1f:3f:
16:63:fc:ee:69:71:24:72:79:50:3f:b8:3c:ec:46:dc:dc:de:
42:3e:32:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:22:58 2026 by rpki-client