Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft
File: pL9-XCjULmcUGeYsMmBJ5cedSOA.mft (raw, json)
Hash identifier: f2mbfkIFQzeQfG0n96yQIjCfK7BJ6SMpURADoxQwdfQ=
Subject key identifier: 67:67:12:C4:78:8C:F6:3C:ED:0C:78:92:D6:22:71:CA:BC:FC:9F:6A
Authority key identifier: A4:BF:7E:5C:28:D4:2E:67:14:19:E6:2C:32:60:49:E5:C7:9D:48:E0
Certificate issuer: /CN=a4bf7e5c28d42e671419e62c326049e5c79d48e0
Certificate serial: 019D37F74F3EA5DD479CA53FE7922C51A897
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft
Manifest number: 0297
Signing time: Sun 29 Mar 2026 05:00:47 +0000
Manifest this update: Sun 29 Mar 2026 05:00:47 +0000
Manifest next update: Mon 30 Mar 2026 05:00:47 +0000
Files and hashes: 1: pL9-XCjULmcUGeYsMmBJ5cedSOA.crl (hash: gBuTmasU2mXhG9QJkud+/9pxhC71IKZvWiUbjkL7/3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:4f:3e:a5:dd:47:9c:a5:3f:e7:92:2c:51:a8:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4bf7e5c28d42e671419e62c326049e5c79d48e0
Validity
Not Before: Mar 29 05:00:47 2026 GMT
Not After : Mar 30 05:00:47 2026 GMT
Subject: CN=676712c4788cf63ced0c7892d62271cabcfc9f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5f:f5:90:c8:8e:86:2c:94:30:4a:3f:6f:cc:
1a:8c:8a:10:46:c3:24:89:fc:6c:0b:1b:0a:b4:64:
ec:7f:ee:d9:e7:5f:42:64:a7:46:71:f5:f6:e7:7f:
33:ad:b6:53:f4:87:a6:59:03:82:82:45:3b:e3:7d:
85:b9:2b:53:d2:3f:15:98:43:97:4c:fb:67:46:7d:
8e:cc:a7:50:f3:f1:58:9f:39:7a:fc:c4:98:49:0d:
af:27:77:cc:51:25:59:97:59:f4:b6:87:54:57:26:
0a:69:e3:fc:77:b2:df:7b:02:ef:81:ad:1e:be:97:
46:42:b4:1f:29:76:be:ce:d0:e2:13:64:10:30:df:
66:b6:89:87:a9:97:e3:61:05:a5:30:47:39:34:ee:
d4:2d:26:23:d0:f4:0d:24:2d:8e:69:2f:73:42:77:
ec:9c:00:96:c6:23:5e:dc:ac:ef:33:3d:51:31:ed:
88:83:31:39:da:20:40:13:db:41:c4:43:3e:39:4d:
c9:87:c2:37:9f:89:a6:c1:5d:80:31:97:15:d2:c9:
26:b9:aa:25:14:5f:07:0e:91:c2:a1:cf:10:aa:90:
a1:03:55:5e:f3:a2:aa:d9:47:e1:bb:71:4e:d9:25:
ee:6d:6a:be:33:1e:47:9f:3a:c1:4c:8c:ba:b9:c8:
81:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:67:12:C4:78:8C:F6:3C:ED:0C:78:92:D6:22:71:CA:BC:FC:9F:6A
X509v3 Authority Key Identifier:
keyid:A4:BF:7E:5C:28:D4:2E:67:14:19:E6:2C:32:60:49:E5:C7:9D:48:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:e3:3b:4c:43:cf:f4:bc:c2:37:0c:29:a1:e6:c8:70:69:a3:
ec:b3:63:41:7d:85:96:91:7c:c1:de:74:89:d3:bc:4f:22:b8:
0f:d3:ef:5f:58:31:88:6a:6b:c8:41:2b:da:43:70:c5:d0:04:
7d:08:55:e0:40:b7:db:e8:03:13:40:6b:f6:af:f9:cc:e8:a9:
df:11:6f:07:b9:60:17:37:8c:96:89:75:33:6c:01:1c:93:3f:
94:e8:2d:f9:3b:d2:f6:51:a2:5c:f7:a7:d4:47:8b:db:b2:7d:
18:57:02:85:1c:94:ef:e1:02:df:ca:b9:a2:e7:e6:5d:fb:7b:
fa:2b:f0:33:32:1d:1b:c0:ba:80:a8:46:12:0c:79:fb:5e:7e:
15:e0:82:70:62:a1:08:18:fa:fb:99:57:87:89:6d:22:33:fb:
aa:ab:63:e6:22:2c:32:75:0f:3d:4e:10:5d:fb:80:e1:04:cc:
c8:2e:b8:18:81:97:87:ba:8a:95:23:5a:58:da:bf:6c:71:66:
4f:45:14:3b:11:83:5f:46:8e:52:30:a5:d9:02:aa:9d:91:5c:
98:b9:7e:02:91:ba:86:9f:25:4b:0b:6e:c8:02:56:e6:7d:e5:
d6:41:a3:9d:99:17:c2:11:5d:f1:b9:da:3a:bd:ee:d8:88:b2:
dd:62:c0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:16 2026 by rpki-client