Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: tIRSDUkoQTfuWBcOH1hEBHO7GQ6Nd1FP7ybNdA6MBvs=
Subject key identifier: 2D:1B:3D:0C:FD:77:94:AF:18:AB:91:57:C4:FF:06:C4:CE:99:58:19
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 019D9C2C4D472D0540B17004DB4A3BDA4FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 16:00:42 +0000
Manifest this update: Fri 17 Apr 2026 16:00:42 +0000
Manifest next update: Sat 18 Apr 2026 16:00:42 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: 4dxOZlunMbARnTkCxAwoJ8NLxbMhG3w67DXrr0CwCGw=)
2: n5-SbGgTWlbW_C1J7zQnQwhdk_I.roa (hash: 20MmpTiNHIRI615LwLOcDmRN7JohlEVDp5KlQ4ApT5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:4d:47:2d:05:40:b1:70:04:db:4a:3b:da:4f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Apr 17 16:00:42 2026 GMT
Not After : Apr 18 16:00:42 2026 GMT
Subject: CN=2d1b3d0cfd7794af18ab9157c4ff06c4ce995819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:22:a4:54:eb:72:bb:6c:52:db:b9:11:f2:
f3:23:c6:a9:f0:75:d8:12:42:8a:db:e4:c6:f9:4a:
22:2e:d5:ee:a8:ca:06:a8:21:f2:7d:72:24:17:b8:
5d:cc:79:63:d8:8b:de:c3:00:91:ab:57:1f:83:f8:
83:58:e6:01:ac:2e:95:64:4e:92:20:a7:cc:ee:e8:
b2:b7:0d:7d:1a:92:1c:7c:98:0e:2e:d7:72:bf:0f:
c2:87:63:93:9c:fd:bf:f9:08:9f:7c:88:6e:f1:66:
07:0d:b0:1c:79:9f:ea:17:39:d7:bb:f4:4f:32:9c:
03:5c:51:4a:05:68:98:15:ca:05:32:65:d0:c3:4c:
f1:cb:44:86:f6:db:7b:c4:55:24:6e:ac:b9:e4:c7:
a2:fa:c1:3b:c7:4f:02:5e:62:2c:5f:ab:60:b8:a9:
be:19:ce:53:87:f7:93:6f:90:26:73:f8:ae:5a:27:
bb:2c:9c:4c:9b:c3:0e:39:b3:40:d0:da:f7:78:b7:
1d:2f:aa:fb:3e:57:78:29:25:31:62:48:76:b0:fd:
a6:b4:fc:a1:52:52:bf:30:43:9f:de:4e:27:48:d2:
9e:f4:52:99:66:7c:3d:f8:52:26:a2:4d:23:f7:ff:
a5:97:95:f3:d9:6f:ee:bc:6a:54:e2:55:f4:68:cb:
42:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1B:3D:0C:FD:77:94:AF:18:AB:91:57:C4:FF:06:C4:CE:99:58:19
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:bd:7c:66:24:f8:bf:27:67:5f:cb:f8:59:d0:98:6f:b9:9f:
ff:83:b6:96:6c:c4:95:c5:06:cc:7c:09:3a:3c:0f:dd:46:fe:
7e:57:94:dc:54:6f:c2:89:54:93:0c:24:7d:19:26:0b:d8:8a:
06:ff:ed:26:d5:62:10:17:d0:38:46:9f:d8:e3:fb:10:12:6a:
49:6e:26:35:56:ed:3f:ec:b8:d6:ab:9b:11:fc:89:12:c2:58:
85:18:7c:f9:cc:67:d9:57:d5:84:f5:05:33:dd:d9:d5:27:61:
c4:a1:13:e1:69:c2:ce:de:f6:39:4b:5e:df:b0:6a:99:76:42:
b1:0d:86:9f:1d:d1:50:e4:66:74:46:b4:ea:68:53:ff:15:d5:
29:3b:08:44:c4:3e:95:ad:24:f8:4a:d9:9a:f7:7a:72:57:62:
13:43:34:99:b8:e9:d8:35:99:7e:0b:63:27:1f:c8:33:de:67:
df:dd:d3:d5:d0:f6:61:5c:a9:ef:4a:59:c3:19:66:29:43:bf:
a7:cc:a3:74:6e:d0:e3:56:f1:94:b9:1f:d3:47:ef:89:20:90:
4a:fe:74:a0:fa:58:54:0d:0a:cb:68:24:13:84:75:cf:29:7f:
29:ce:a7:c3:47:c2:7c:82:ff:3e:f2:af:73:3e:92:73:49:cc:
85:c9:be:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:40:36 2026 by rpki-client