Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: f6xtWpWMETK7E+vCH2zBPHbPEoy54COADEWZU9KfW7I=
Subject key identifier: 93:C3:6F:A5:B4:25:60:BD:1A:46:33:90:1B:63:5E:1F:CA:B0:59:71
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 019D37C1234A9C1319AAD3E787DFF4D6ADED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0A0E
Signing time: Sun 29 Mar 2026 04:01:37 +0000
Manifest this update: Sun 29 Mar 2026 04:01:37 +0000
Manifest next update: Mon 30 Mar 2026 04:01:37 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: tn/5NfF1aVzcnDKPFrLC7USMiFYOFUkUxZMRCNs31qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:23:4a:9c:13:19:aa:d3:e7:87:df:f4:d6:ad:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Mar 29 04:01:37 2026 GMT
Not After : Mar 30 04:01:37 2026 GMT
Subject: CN=93c36fa5b42560bd1a4633901b635e1fcab05971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c4:17:85:d1:6d:ba:4d:45:a5:3a:aa:31:4c:
91:0e:34:68:bb:73:cc:7c:9e:95:20:be:8f:06:16:
97:f2:90:e9:cc:18:0a:c7:4a:aa:46:60:88:54:5f:
fa:c1:44:f4:48:48:d9:f6:71:87:5c:31:1a:df:e8:
59:f5:f7:7e:4d:a4:70:58:83:56:7d:e2:25:10:fe:
4b:57:f6:2c:19:a2:13:30:50:81:6f:74:fe:16:d0:
d3:88:a7:dc:47:6f:78:b3:9c:79:60:0e:c6:39:02:
01:02:8d:19:74:aa:c1:ce:74:74:96:c7:72:f2:f3:
cd:fe:c4:2d:a9:32:ce:0e:66:38:c1:95:6d:e0:60:
fa:3f:e1:69:17:ec:79:62:87:9b:67:0e:dd:49:a0:
a5:13:b3:6e:ed:1b:11:dc:cd:58:15:f5:7b:8d:78:
bd:2e:a6:f4:34:6f:47:a1:8e:f6:74:5d:a5:7a:59:
f1:bf:ff:b8:d6:ef:42:93:26:28:c0:77:f8:6c:20:
d4:2d:25:63:6a:54:e2:79:6a:fb:4e:16:24:e0:24:
b3:3c:d3:31:f1:85:17:a9:63:58:16:22:8d:d1:f4:
d0:e1:e0:65:c7:1c:01:4f:b0:4e:00:00:b7:34:f6:
ef:53:2b:9f:32:70:e5:8b:07:47:c0:a2:20:b3:90:
e6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C3:6F:A5:B4:25:60:BD:1A:46:33:90:1B:63:5E:1F:CA:B0:59:71
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d0:72:4b:d2:63:71:b9:9d:39:65:18:63:e4:4a:e5:7a:f2:
51:b1:1d:a4:4c:99:86:bb:72:02:fc:98:ce:22:90:f9:a4:f2:
1c:1e:60:04:94:9a:50:0a:23:ee:52:22:a5:51:a2:bf:a0:cd:
29:ae:b8:c8:d3:b9:13:3a:6e:7d:8c:13:7c:44:d8:1f:69:03:
6e:ec:05:da:75:2c:90:31:1d:99:4b:c9:0d:52:69:24:1d:eb:
9a:f9:31:cd:7a:72:66:00:37:98:79:19:19:c7:ab:99:db:90:
6c:bd:b4:af:0a:68:f8:51:2c:78:31:8c:fa:69:ed:95:06:79:
50:ed:d2:e6:26:26:87:82:4a:50:92:73:e8:12:75:25:b2:c8:
da:bf:db:08:7f:c1:89:bf:c7:5f:f9:fb:40:df:6e:93:5c:4b:
27:ac:04:62:4e:1d:58:22:44:7c:b8:0f:f1:21:e5:b7:96:38:
76:8f:17:ba:05:1e:70:e4:fc:dd:b3:97:16:17:37:a7:76:5f:
36:9e:2d:5f:bd:0c:dd:28:b6:ad:a2:d8:81:0c:27:0e:f6:85:
26:0d:aa:28:40:ac:71:4e:aa:1f:09:4d:bf:88:44:5d:14:60:
df:cc:48:9a:d7:77:29:4b:9d:5b:8e:f7:1a:64:66:3c:44:8f:
1a:83:be:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wSNKnBMZqtPnh9/01q3tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZDk1MmJkNDBjZTA5NzNmOTEwNDExZjU5MmUzNmU5MDEz
NmMyZWEwHhcNMjYwMzI5MDQwMTM3WhcNMjYwMzMwMDQwMTM3WjAzMTEwLwYDVQQD
Eyg5M2MzNmZhNWI0MjU2MGJkMWE0NjMzOTAxYjYzNWUxZmNhYjA1OTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8QXhdFtuk1FpTqqMUyRDjRou3PM
fJ6VIL6PBhaX8pDpzBgKx0qqRmCIVF/6wUT0SEjZ9nGHXDEa3+hZ9fd+TaRwWINW
feIlEP5LV/YsGaITMFCBb3T+FtDTiKfcR294s5x5YA7GOQIBAo0ZdKrBznR0lsdy
8vPN/sQtqTLODmY4wZVt4GD6P+FpF+x5YoebZw7dSaClE7Nu7RsR3M1YFfV7jXi9
Lqb0NG9HoY72dF2lelnxv/+41u9CkyYowHf4bCDULSVjalTieWr7ThYk4CSzPNMx
8YUXqWNYFiKN0fTQ4eBlxxwBT7BOAAC3NPbvUyufMnDliwdHwKIgs5DmYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPDb6W0JWC9GkYzkBtjXh/KsFlxMB8GA1UdIwQY
MBaAFIvZUr1Azglz+RBBH1kuNukBNsLqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYt
NWMyYWJlNTM5NGU2LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYtNWMyYWJlNTM5NGU2
LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjtByS9Jj
cbmdOWUYY+RK5XryUbEdpEyZhrtyAvyYziKQ+aTyHB5gBJSaUAoj7lIipVGiv6DN
Ka64yNO5EzpufYwTfETYH2kDbuwF2nUskDEdmUvJDVJpJB3rmvkxzXpyZgA3mHkZ
GcermduQbL20rwpo+FEseDGM+mntlQZ5UO3S5iYmh4JKUJJz6BJ1JbLI2r/bCH/B
ib/HX/n7QN9uk1xLJ6wEYk4dWCJEfLgP8SHlt5Y4do8XugUecOT83bOXFhc3p3Zf
Np4tX70M3Si2raLYgQwnDvaFJg2qKECscU6qHwlNv4hEXRRg38xImtd3KUudW473
GmRmPESPGoO+cg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:43 2026 by rpki-client