Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
File: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft (raw, json)
Hash identifier: JbnuvB4N1vYxFnxw+Xmvf2Yw6/eldypwjmClvR0tByo=
Subject key identifier: DB:29:06:5C:88:18:B4:21:AD:75:1F:BA:54:0B:1F:25:0F:55:D4:99
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 019D3A8AD5EC0FDDD369F466F16080540082
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
Manifest number: 18AA
Signing time: Sun 29 Mar 2026 17:01:10 +0000
Manifest this update: Sun 29 Mar 2026 17:01:10 +0000
Manifest next update: Mon 30 Mar 2026 17:01:10 +0000
Files and hashes: 1: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl (hash: 75dJy1WzLAsV7j9YS+P6m7oUluDAYdZErM9TKQCmx7c=)
2: Q3-sU-GYPpAGQxcQjINmgHQ1wSE.roa (hash: rYj0bj0I+s315HlLhZKfLrpr9fkPJ+X9pfvhpS9BAws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8a:d5:ec:0f:dd:d3:69:f4:66:f1:60:80:54:00:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Mar 29 17:01:10 2026 GMT
Not After : Mar 30 17:01:10 2026 GMT
Subject: CN=db29065c8818b421ad751fba540b1f250f55d499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:93:48:74:16:a5:0d:4d:83:77:84:df:23:68:
f9:8e:8c:8c:ca:be:06:a4:e3:ef:2c:64:b0:8a:6a:
1c:d3:ca:a4:e8:75:a2:98:ed:a0:d9:97:81:44:02:
e9:3d:e8:83:46:73:ec:00:4b:96:2a:59:d3:a7:a3:
60:16:2a:9b:33:45:51:51:20:43:13:45:de:27:ee:
ab:a9:ec:9a:28:7c:a8:0d:99:98:70:dc:e3:e5:98:
3e:28:76:92:b0:33:bb:f2:c2:15:39:6d:a8:12:4b:
95:d4:fc:b4:99:ea:9b:81:5b:22:33:87:79:ab:35:
68:63:90:d6:1c:1e:61:01:a1:6a:93:75:50:ab:69:
0b:90:38:b1:89:7b:02:04:ae:62:90:ac:4b:59:4a:
02:34:65:fe:a3:a4:c5:1d:60:20:fd:fb:56:cb:5c:
3a:ba:a4:33:17:c1:48:8b:68:71:d6:9d:f4:3b:b6:
8b:cd:7a:57:63:7b:9f:c2:33:15:d4:75:36:8f:2c:
24:77:af:67:82:58:b7:a1:44:5c:d2:d9:70:d1:1f:
06:de:ce:e0:08:1c:4a:52:d9:6c:b8:a3:c3:9c:6c:
e6:e0:74:ad:07:a8:e4:37:69:37:83:7b:0d:27:10:
54:47:6d:03:1c:e7:84:9c:6d:65:5f:80:a2:cc:16:
cc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:29:06:5C:88:18:B4:21:AD:75:1F:BA:54:0B:1F:25:0F:55:D4:99
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:09:8f:be:e3:18:5c:1c:c9:49:7f:11:53:32:19:8c:36:6c:
12:0b:43:59:18:9b:c5:09:c8:06:4e:78:2e:bf:d9:b4:7d:f6:
97:da:ca:45:65:7d:1a:24:f8:9f:c2:65:51:e5:a6:25:16:fe:
26:a6:33:57:84:89:43:89:2c:cf:10:d5:96:8d:39:fe:8b:28:
27:ad:cc:17:d4:0b:bf:ed:31:f1:37:f7:98:80:b2:ee:bd:a3:
3c:fa:9e:4c:68:9e:da:7d:40:f1:5f:c9:23:98:c2:69:45:37:
a5:89:ba:98:57:29:38:0c:32:a6:ac:68:6c:db:7c:90:20:64:
1c:53:a7:c0:2e:74:0a:b3:2b:95:45:b2:9c:64:18:1e:28:77:
b4:07:a3:27:be:e2:a8:cd:b7:18:53:53:e7:6c:a1:e2:98:f9:
78:ff:8c:43:80:76:67:1a:47:24:9e:d6:38:26:62:2a:8b:c7:
52:c0:ad:f1:d5:ae:7a:ab:09:91:8f:a7:a9:d3:c5:86:d9:12:
dd:6a:a5:55:17:bb:d5:2e:ab:fd:25:8c:5d:bd:6e:45:4c:ae:
c7:79:14:fe:0c:68:cb:52:86:71:43:45:5c:fb:9c:1e:ba:61:
24:d0:51:9d:51:75:b1:1a:05:43:76:e3:bc:09:d4:74:97:83:
db:35:5f:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06itXsD93TafRm8WCAVACCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0M2JmOTA4MDhhZTdlY2EwNjNmNzQ2YThmMWQ4ODg2NTcz
NGM4YTMwHhcNMjYwMzI5MTcwMTEwWhcNMjYwMzMwMTcwMTEwWjAzMTEwLwYDVQQD
EyhkYjI5MDY1Yzg4MThiNDIxYWQ3NTFmYmE1NDBiMWYyNTBmNTVkNDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pNIdBalDU2Dd4TfI2j5joyMyr4G
pOPvLGSwimoc08qk6HWimO2g2ZeBRALpPeiDRnPsAEuWKlnTp6NgFiqbM0VRUSBD
E0XeJ+6rqeyaKHyoDZmYcNzj5Zg+KHaSsDO78sIVOW2oEkuV1Py0meqbgVsiM4d5
qzVoY5DWHB5hAaFqk3VQq2kLkDixiXsCBK5ikKxLWUoCNGX+o6TFHWAg/ftWy1w6
uqQzF8FIi2hx1p30O7aLzXpXY3ufwjMV1HU2jywkd69ngli3oURc0tlw0R8G3s7g
CBxKUtlsuKPDnGzm4HStB6jkN2k3g3sNJxBUR20DHOeEnG1lX4CizBbMwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNspBlyIGLQhrXUfulQLHyUPVdSZMB8GA1UdIwQY
MBaAFPQ7+QgIrn7KBj90ao8diIZXNMijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAt
Mzg5MTk1YzRmMDdiLzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAtMzg5MTk1YzRmMDdi
LzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgmPvuMY
XBzJSX8RUzIZjDZsEgtDWRibxQnIBk54Lr/ZtH32l9rKRWV9GiT4n8JlUeWmJRb+
JqYzV4SJQ4kszxDVlo05/osoJ63MF9QLv+0x8Tf3mICy7r2jPPqeTGie2n1A8V/J
I5jCaUU3pYm6mFcpOAwypqxobNt8kCBkHFOnwC50CrMrlUWynGQYHih3tAejJ77i
qM23GFNT52yh4pj5eP+MQ4B2ZxpHJJ7WOCZiKovHUsCt8dWueqsJkY+nqdPFhtkS
3WqlVRe71S6r/SWMXb1uRUyux3kU/gxoy1KGcUNFXPucHrphJNBRnVF1sRoFQ3bj
vAnUdJeD2zVfOw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:29:08 2026 by rpki-client