Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: 5JeAOB9fvozwST1LGKnkQH0mdaWhwRaFMKuv5bIfySo=
Subject key identifier: 91:0A:AB:A9:EC:9A:EB:45:8F:0C:95:F4:AE:7E:DC:09:3E:35:B8:90
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 019CACB502611BD42F92BE1F883E7570F98F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 17D8
Signing time: Mon 02 Mar 2026 04:01:09 +0000
Manifest this update: Mon 02 Mar 2026 04:01:09 +0000
Manifest next update: Tue 03 Mar 2026 04:01:09 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: tAY0AM8XHhPf4hIRj7a08N7uqW69qwqOlgbk9+Urypg=)
2: n5-SbGgTWlbW_C1J7zQnQwhdk_I.roa (hash: 20MmpTiNHIRI615LwLOcDmRN7JohlEVDp5KlQ4ApT5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:02:61:1b:d4:2f:92:be:1f:88:3e:75:70:f9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Mar 2 04:01:09 2026 GMT
Not After : Mar 3 04:01:09 2026 GMT
Subject: CN=910aaba9ec9aeb458f0c95f4ae7edc093e35b890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:53:94:bc:0b:13:c8:48:6f:f1:40:43:f4:
d4:ea:8c:3e:a4:5d:02:e9:92:dc:d7:bf:f4:fb:de:
bb:22:00:c2:59:3f:e7:62:55:67:47:22:1d:1b:50:
cd:e0:bf:8a:5c:ca:40:66:45:c9:fc:22:27:17:64:
61:2b:5b:a4:14:35:90:0c:d1:88:dc:bb:0d:a2:86:
25:b6:81:ae:f3:dd:03:9e:88:53:77:8f:25:8d:ab:
99:8f:c3:37:ac:9d:ec:5a:26:ca:0e:e4:15:3c:40:
19:2d:ce:cf:b4:c1:13:5d:15:f1:4b:42:8e:b0:72:
3d:72:04:9f:45:05:5b:69:cb:57:86:a2:e9:ce:1b:
e5:75:a8:3c:0e:95:9f:d3:94:c0:dd:65:a1:37:b1:
11:cd:1a:74:52:75:80:9d:04:4f:15:19:9c:47:7f:
67:59:ea:fa:3b:54:49:90:69:1e:1b:9d:64:3c:be:
4c:0a:9b:48:e8:ac:ab:1e:78:c6:f4:e1:f8:66:a6:
a1:0c:a0:a7:68:b3:79:e9:aa:4b:24:5b:65:da:53:
4e:a6:28:f5:74:66:07:ab:14:4d:76:fd:f8:11:58:
7f:c8:03:ac:aa:10:46:07:82:f7:51:b2:6d:0a:c3:
65:51:b7:bf:80:df:e7:60:81:be:b0:98:7d:68:1d:
de:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:0A:AB:A9:EC:9A:EB:45:8F:0C:95:F4:AE:7E:DC:09:3E:35:B8:90
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ad:b9:e3:01:52:d8:41:76:1c:f7:61:e1:79:a4:5d:64:02:
1a:5a:48:8c:7d:36:7f:97:5d:54:ed:ec:5a:2d:9a:43:b1:f4:
73:2d:d4:e5:3e:3f:26:0f:a9:75:61:3c:54:e0:1c:02:47:6d:
4a:f9:37:db:39:fc:6c:66:e3:0e:6d:d4:87:42:4a:d9:00:bf:
3a:e4:f0:6a:6f:f6:d4:a3:aa:cc:2e:8b:de:54:6e:14:48:ae:
a6:36:a2:8b:7b:1b:f9:ee:2d:5a:1a:f7:af:e5:4a:8c:ce:84:
ec:4d:81:94:f9:85:1c:13:5d:dc:bd:82:64:df:5a:1c:44:96:
8d:3f:98:5e:08:15:3f:51:e5:dc:58:36:99:55:a0:6e:4f:35:
0d:41:e4:01:53:56:7a:0f:7e:a6:28:ef:29:d3:cd:b1:4b:5e:
d8:f2:ac:ed:0e:16:24:12:e4:de:bc:dc:62:10:f1:a9:85:5c:
60:03:4c:1d:0f:31:e8:92:34:a6:b3:fc:b2:83:a7:2c:15:67:
64:ce:c9:42:0c:41:09:e0:97:39:63:ab:7f:14:2c:0e:85:f6:
e2:59:f8:51:de:d1:92:5a:10:a3:bc:ad:61:0c:a8:34:95:02:
3a:57:79:ae:97:38:19:ec:81:b1:a7:00:86:b0:e1:96:0b:ff:
dc:28:b8:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystQJhG9Qvkr4fiD51cPmPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZTcxNzRjNmY3NGZhOWEyMmIwYWRlZTI1MWE4ZDY0MzEy
MzEzZjIwHhcNMjYwMzAyMDQwMTA5WhcNMjYwMzAzMDQwMTA5WjAzMTEwLwYDVQQD
Eyg5MTBhYWJhOWVjOWFlYjQ1OGYwYzk1ZjRhZTdlZGMwOTNlMzViODkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1xTlLwLE8hIb/FAQ/TU6ow+pF0C
6ZLc17/0+967IgDCWT/nYlVnRyIdG1DN4L+KXMpAZkXJ/CInF2RhK1ukFDWQDNGI
3LsNooYltoGu890DnohTd48ljauZj8M3rJ3sWibKDuQVPEAZLc7PtMETXRXxS0KO
sHI9cgSfRQVbactXhqLpzhvldag8DpWf05TA3WWhN7ERzRp0UnWAnQRPFRmcR39n
Wer6O1RJkGkeG51kPL5MCptI6KyrHnjG9OH4ZqahDKCnaLN56apLJFtl2lNOpij1
dGYHqxRNdv34EVh/yAOsqhBGB4L3UbJtCsNlUbe/gN/nYIG+sJh9aB3ekQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJEKq6nsmutFjwyV9K5+3Ak+NbiQMB8GA1UdIwQY
MBaAFPTnF0xvdPqaIrCt7iUajWQxIxPyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi84NmVmYjMtZWYxZS00NjljLWFlYjQt
Mjg5NzhjM2M3ZWM1LzEvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi84NmVmYjMtZWYxZS00NjljLWFlYjQtMjg5NzhjM2M3ZWM1
LzEvOU9jWFRHOTAtcG9pc0szdUpScU5aREVqRV9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGa254wFS
2EF2HPdh4XmkXWQCGlpIjH02f5ddVO3sWi2aQ7H0cy3U5T4/Jg+pdWE8VOAcAkdt
Svk32zn8bGbjDm3Uh0JK2QC/OuTwam/21KOqzC6L3lRuFEiupjaii3sb+e4tWhr3
r+VKjM6E7E2BlPmFHBNd3L2CZN9aHESWjT+YXggVP1Hl3Fg2mVWgbk81DUHkAVNW
eg9+pijvKdPNsUte2PKs7Q4WJBLk3rzcYhDxqYVcYANMHQ8x6JI0prP8soOnLBVn
ZM7JQgxBCeCXOWOrfxQsDoX24ln4Ud7RkloQo7ytYQyoNJUCOld5rpc4GeyBsacA
hrDhlgv/3Ci4MQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:41:02 2026 by rpki-client