Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
File: 9jOGnDZCtefqAii_DgspXO_MTd8.mft (raw, json)
Hash identifier: n1Gphvn5iQtRaBi8UlbT6We1CSBH/NsBISJmQqbd/qU=
Subject key identifier: 0D:9F:43:6E:A2:1B:4A:B9:46:9C:B3:C2:61:59:4A:15:11:E9:FF:82
Authority key identifier: F6:33:86:9C:36:42:B5:E7:EA:02:28:BF:0E:0B:29:5C:EF:CC:4D:DF
Certificate issuer: /CN=f633869c3642b5e7ea0228bf0e0b295cefcc4ddf
Certificate serial: 019CAA218F45B71DAB129B484A14A9B35D42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
Manifest number: 12BB
Signing time: Sun 01 Mar 2026 16:00:51 +0000
Manifest this update: Sun 01 Mar 2026 16:00:51 +0000
Manifest next update: Mon 02 Mar 2026 16:00:51 +0000
Files and hashes: 1: 9jOGnDZCtefqAii_DgspXO_MTd8.crl (hash: HKjqxE35wVR0XpxyI0WemXJ5IDiwgSgFBpsd/kb6o9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:8f:45:b7:1d:ab:12:9b:48:4a:14:a9:b3:5d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f633869c3642b5e7ea0228bf0e0b295cefcc4ddf
Validity
Not Before: Mar 1 16:00:51 2026 GMT
Not After : Mar 2 16:00:51 2026 GMT
Subject: CN=0d9f436ea21b4ab9469cb3c261594a1511e9ff82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:b0:ee:40:e7:bc:cc:53:44:d3:48:eb:75:
ff:54:69:21:5c:89:22:9b:f9:a2:f8:b8:0d:12:36:
01:d3:43:6c:34:5a:70:c1:b9:5e:42:70:5b:c3:50:
87:f2:8a:16:fe:f9:99:ec:36:de:8f:1c:3c:37:a0:
c2:19:db:65:fa:4f:62:08:5b:d4:18:b3:f8:46:b2:
b9:0f:5a:fe:77:6d:d5:e2:d7:8e:54:45:a8:c2:96:
3f:8c:dd:3b:b0:96:60:08:b9:ec:82:1e:c8:0f:43:
db:5a:5a:10:05:c2:87:b4:83:d2:2c:cb:f5:25:bb:
6d:19:ee:41:8c:b6:dd:55:d8:ab:3d:21:77:5b:a0:
db:c9:ca:e4:22:3d:3c:63:e7:fa:62:65:78:1f:9f:
e5:a5:96:b3:3a:16:8d:68:82:b1:b1:72:27:6f:fd:
4b:0d:bb:4a:c0:43:14:74:ba:88:a2:03:c2:62:5f:
8e:75:21:a3:e9:72:2c:88:5b:cf:73:d9:2a:8c:b7:
c1:d9:a2:25:2e:fa:d7:f7:20:9e:f4:62:0f:43:0a:
52:5c:22:1b:62:90:1b:99:96:67:53:2b:09:17:28:
a7:0e:a5:14:04:60:c4:fd:da:68:82:73:ec:2f:a7:
90:3d:55:d5:3d:b9:9e:a5:f7:d5:e2:4d:7a:07:5e:
f7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9F:43:6E:A2:1B:4A:B9:46:9C:B3:C2:61:59:4A:15:11:E9:FF:82
X509v3 Authority Key Identifier:
keyid:F6:33:86:9C:36:42:B5:E7:EA:02:28:BF:0E:0B:29:5C:EF:CC:4D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9jOGnDZCtefqAii_DgspXO_MTd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6da562-a836-48cc-aa57-8c4bb4485f34/1/9jOGnDZCtefqAii_DgspXO_MTd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:b5:33:f8:1c:bd:8d:55:85:85:b9:eb:34:16:9a:bf:19:95:
ef:4f:a5:02:05:c1:27:df:14:a3:b6:67:93:6b:f5:3e:a8:f5:
34:50:08:28:32:83:7c:4b:db:60:9d:18:ac:9c:c1:d5:fc:b2:
fb:9d:0d:02:f9:e7:72:91:3e:08:83:8f:0c:f9:c6:df:72:6a:
64:91:60:02:18:89:1a:7a:5b:9e:12:b9:45:fe:5a:4b:ab:11:
a4:b9:ab:53:55:ed:8a:0d:3f:72:ae:77:cb:97:32:5e:0a:16:
b7:a5:58:4e:5f:5a:87:85:a3:1b:e5:8b:9e:7e:40:f5:cd:bd:
84:da:49:1a:15:28:c7:f7:4c:25:65:35:3e:36:74:9c:a4:4c:
44:eb:b3:f9:35:e1:d5:10:d7:59:6c:ec:12:fd:17:47:b6:3a:
5a:ae:5a:50:da:23:03:5a:e4:0d:62:7d:74:df:3f:d9:d6:c0:
05:a1:e5:da:46:a5:14:e1:38:cb:fd:3f:54:0b:a2:28:bc:c3:
e7:53:31:39:0a:de:a6:cb:4e:f0:0d:bf:4d:9c:dc:32:ad:0f:
ed:ea:da:d8:68:bb:0a:10:ba:49:e9:25:01:53:02:48:9b:b7:
ea:f6:55:ea:38:07:51:bc:5a:aa:2e:74:87:5f:9e:ec:ae:4a:
cd:c7:ce:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:00 2026 by rpki-client