Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
File: a1a9UK-T9GN-LAfi7EAya8ZABSc.mft (raw, json)
Hash identifier: 4ySKkRt74+q90sOl1nwceMAIiz+Nn+R8EARW1So+aRc=
Subject key identifier: F8:98:34:0A:74:45:EC:B5:FB:9E:F8:6B:03:95:AB:98:F0:91:C0:FC
Authority key identifier: 6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
Certificate issuer: /CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Certificate serial: 019CAAC70674D98BEC4AE0683EDBB8F0C1A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
Manifest number: 04A2
Signing time: Sun 01 Mar 2026 19:01:35 +0000
Manifest this update: Sun 01 Mar 2026 19:01:35 +0000
Manifest next update: Mon 02 Mar 2026 19:01:35 +0000
Files and hashes: 1: a1a9UK-T9GN-LAfi7EAya8ZABSc.crl (hash: d1PflUC3CMYV5uNUWXnmeN7uQ8TP9vzC5pD3C24AJso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:06:74:d9:8b:ec:4a:e0:68:3e:db:b8:f0:c1:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Validity
Not Before: Mar 1 19:01:35 2026 GMT
Not After : Mar 2 19:01:35 2026 GMT
Subject: CN=f898340a7445ecb5fb9ef86b0395ab98f091c0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d7:f8:a0:9b:ac:78:b5:e8:20:fb:3c:21:22:
ab:fd:6f:1a:de:2d:fa:9c:67:55:58:4c:db:c8:3b:
7d:64:39:76:b1:f6:ba:24:c9:d1:43:77:c3:77:5f:
a0:88:2a:30:4f:0a:c2:fe:08:77:44:54:4d:dd:96:
be:d1:a0:df:f5:2d:8d:03:2c:2f:3d:6a:04:08:ab:
24:94:01:bd:15:92:2c:ee:b0:43:45:c7:f5:6c:6e:
dc:36:d8:a2:05:52:e0:1a:c5:5d:53:2b:5a:4a:c4:
9a:6f:16:1b:f4:1d:83:8d:57:fc:61:3f:6c:d4:c4:
3a:3c:91:b5:89:eb:1e:44:e8:a0:99:18:3d:07:73:
8c:c6:83:6f:9a:f3:2c:fc:bb:5e:95:53:2d:10:21:
70:ca:80:fc:0f:10:50:c1:9e:49:2a:b7:5a:e7:81:
7a:48:9b:bd:75:e3:2b:20:ab:b0:ce:63:f3:51:58:
ef:76:1a:9e:33:12:74:e1:34:71:a1:1a:99:cb:25:
9f:e9:d7:cc:f2:62:e6:65:3a:79:b7:81:9e:6a:ee:
a7:18:ee:d1:0b:99:81:51:b2:0f:46:79:c2:98:2a:
22:0a:6b:af:14:83:38:9b:ca:93:c0:44:e6:f4:be:
6a:72:32:28:7a:d1:fe:29:68:9b:2c:e0:e8:44:0f:
47:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:98:34:0A:74:45:EC:B5:FB:9E:F8:6B:03:95:AB:98:F0:91:C0:FC
X509v3 Authority Key Identifier:
keyid:6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2a:b0:5c:d0:b6:a0:18:48:b0:db:87:8b:94:51:17:93:f9:
70:9b:33:7a:05:80:e9:39:c8:b3:36:fd:2a:07:92:e0:60:af:
62:37:b2:78:95:02:10:d0:8a:2a:86:81:a1:58:ab:bc:e5:ce:
e8:25:51:9a:f5:1d:93:fd:7b:07:1c:f3:76:47:57:a9:21:84:
88:69:88:e7:e9:03:cf:a9:24:9e:a4:b7:ca:47:9a:85:57:fd:
b9:3a:bd:da:24:a5:ad:af:05:4e:84:a2:b7:87:fa:99:59:21:
e9:85:b1:fc:4c:7f:4f:2c:9f:82:bc:b7:ef:08:a2:d2:89:5a:
18:56:dd:2c:87:a4:48:92:ff:51:c6:4c:18:19:f8:2a:1a:c9:
32:70:ea:85:3b:76:d4:c1:9b:67:89:cc:50:e4:5a:89:0c:0c:
13:93:a2:54:16:c8:57:35:0c:f1:29:c6:57:b7:39:6c:3b:dd:
e1:15:fd:84:0b:20:6b:26:13:6a:fa:86:4b:90:42:da:6b:64:
1d:50:c9:eb:5c:1f:e0:cb:a4:85:52:cd:1f:99:6b:ac:14:0d:
8c:81:84:b5:ff:0a:56:c9:f1:4d:b9:b4:b1:48:3d:8e:ab:1d:
30:6a:72:29:92:ef:ca:fd:8b:9d:58:9e:4d:d7:f6:37:a2:0d:
75:30:a4:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxwZ02YvsSuBoPtu48MGnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNTZiZDUwYWY5M2Y0NjM3ZTJjMDdlMmVjNDAzMjZiYzY0
MDA1MjcwHhcNMjYwMzAxMTkwMTM1WhcNMjYwMzAyMTkwMTM1WjAzMTEwLwYDVQQD
EyhmODk4MzQwYTc0NDVlY2I1ZmI5ZWY4NmIwMzk1YWI5OGYwOTFjMGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNf4oJuseLXoIPs8ISKr/W8a3i36
nGdVWEzbyDt9ZDl2sfa6JMnRQ3fDd1+giCowTwrC/gh3RFRN3Za+0aDf9S2NAywv
PWoECKsklAG9FZIs7rBDRcf1bG7cNtiiBVLgGsVdUytaSsSabxYb9B2DjVf8YT9s
1MQ6PJG1ieseROigmRg9B3OMxoNvmvMs/LtelVMtECFwyoD8DxBQwZ5JKrda54F6
SJu9deMrIKuwzmPzUVjvdhqeMxJ04TRxoRqZyyWf6dfM8mLmZTp5t4Geau6nGO7R
C5mBUbIPRnnCmCoiCmuvFIM4m8qTwETm9L5qcjIoetH+KWibLODoRA9H8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPiYNAp0Rey1+574awOVq5jwkcD8MB8GA1UdIwQY
MBaAFGtWvVCvk/RjfiwH4uxAMmvGQAUnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFhOVVLLVQ5R04tTEFmaTdFQXlhOFpBQlNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9mZDM0MjktNDUyNC00ZmNmLTk1OTIt
Mjk5NmQ4ZmI2OTdlLzEvYTFhOVVLLVQ5R04tTEFmaTdFQXlhOFpBQlNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9mZDM0MjktNDUyNC00ZmNmLTk1OTItMjk5NmQ4ZmI2OTdl
LzEvYTFhOVVLLVQ5R04tTEFmaTdFQXlhOFpBQlNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSqwXNC2
oBhIsNuHi5RRF5P5cJszegWA6TnIszb9KgeS4GCvYjeyeJUCENCKKoaBoVirvOXO
6CVRmvUdk/17BxzzdkdXqSGEiGmI5+kDz6kknqS3ykeahVf9uTq92iSlra8FToSi
t4f6mVkh6YWx/Ex/Tyyfgry37wii0olaGFbdLIekSJL/UcZMGBn4KhrJMnDqhTt2
1MGbZ4nMUORaiQwME5OiVBbIVzUM8SnGV7c5bDvd4RX9hAsgayYTavqGS5BC2mtk
HVDJ61wf4MukhVLNH5lrrBQNjIGEtf8KVsnxTbm0sUg9jqsdMGpyKZLvyv2LnVie
Tdf2N6INdTCklw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:18:35 2026 by rpki-client