Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
File: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft (raw, json)
Hash identifier: ffo1z/P7jsRIbIzefY+7NnAngr1qVmXTvEkifbAA9dE=
Subject key identifier: 4E:7D:01:59:AF:A4:B6:D2:B5:91:86:55:5C:72:CD:9B:A0:C7:FF:DF
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 019F190C5A327B6016D441FBA585B39B5947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
Manifest number: 19A3
Signing time: Tue 30 Jun 2026 15:01:07 +0000
Manifest this update: Tue 30 Jun 2026 15:01:07 +0000
Manifest next update: Wed 01 Jul 2026 15:01:07 +0000
Files and hashes: 1: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl (hash: 5vBCwaGjjxFa3rEhAUcp+n3kkBjAHDkmX9UbA/zNUPY=)
2: lc3C3wc32zcnHrU1F3n1Adhu2_g.roa (hash: 799Y5VOF1laQ/F9V5y2xMZ9oXgKkk02hVDbVY//MZDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:5a:32:7b:60:16:d4:41:fb:a5:85:b3:9b:59:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Jun 30 15:01:07 2026 GMT
Not After : Jul 1 15:01:07 2026 GMT
Subject: CN=4e7d0159afa4b6d2b59186555c72cd9ba0c7ffdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:17:84:ac:24:3b:ca:89:b6:22:e7:49:78:
15:21:f3:49:ad:d6:2f:cc:39:0c:0d:a4:c0:5a:29:
43:39:86:b9:d7:af:8f:ed:de:a2:28:73:e2:bb:80:
82:4d:c7:12:b5:67:d1:a5:5d:99:61:8d:5c:10:ef:
b8:e7:b8:d1:72:99:d2:55:06:c5:2f:ce:0f:2a:7f:
c4:72:34:ea:c9:43:75:11:d2:02:33:83:56:70:75:
32:46:c3:c7:f1:20:b4:ae:2f:fc:6c:94:29:26:3d:
92:cc:5f:a6:30:58:f7:8b:be:93:94:06:a1:2f:30:
f4:59:9e:c9:05:1d:12:15:cd:39:c8:6e:56:48:f7:
16:10:67:f5:fd:54:ae:85:09:c3:a8:82:af:39:cd:
9b:c5:14:06:40:6f:42:5a:ef:d1:71:9e:37:8a:23:
a1:22:2a:16:18:f8:33:78:71:bb:a4:81:9d:65:7e:
15:8e:1c:17:c9:1d:a9:ea:aa:c7:d6:81:61:ea:22:
c7:a9:94:1b:c2:96:4d:96:dc:24:1b:f2:7b:8d:4e:
10:8c:01:3c:15:28:36:6e:fb:71:c9:82:18:ae:ef:
06:85:2c:65:98:58:49:89:e4:99:6a:fc:6e:f8:c2:
3f:ff:c9:1d:c9:c8:2d:68:b8:9b:1f:cb:dc:00:b9:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7D:01:59:AF:A4:B6:D2:B5:91:86:55:5C:72:CD:9B:A0:C7:FF:DF
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:c5:98:37:1a:ea:3b:56:af:a3:8f:95:59:45:cc:8b:68:c5:
6e:93:51:89:0e:d6:9e:44:5f:33:9a:d1:f9:55:12:b0:5a:0a:
19:6e:bf:d3:01:6b:24:7a:7d:52:06:b9:53:f6:63:62:f3:cb:
5b:a0:63:b6:54:00:71:1e:42:4c:68:97:27:1d:ad:88:eb:2a:
da:99:eb:4e:1a:cb:f6:ce:71:f3:08:b2:2b:c1:24:0a:d0:7b:
d3:5d:d9:67:63:c0:d0:4d:7e:d6:1b:ca:c9:a1:d1:2c:84:37:
3f:1c:27:e1:90:25:7e:ef:69:20:c5:a9:46:22:73:f5:ff:89:
dd:a5:a7:be:53:ed:b7:64:34:f4:b9:ef:6d:15:29:15:1b:93:
5c:90:f5:e9:19:af:a5:c7:ba:a2:9a:f4:c1:af:7d:72:72:c2:
ff:8c:5b:be:cb:b3:73:b8:ca:dc:8c:04:3e:8a:6b:13:ee:c0:
a3:34:d5:6d:9d:70:49:ec:e5:7e:69:51:fe:25:a3:ef:ca:1c:
80:5a:eb:ce:d7:c7:ff:6f:c1:17:b1:d9:ca:57:d9:d4:87:a6:
30:19:2c:84:8e:b5:27:7a:97:67:1b:3c:fb:ef:d1:6e:ec:95:
42:01:15:88:50:c5:26:50:c2:eb:ec:32:fc:41:c7:b5:e8:2d:
2c:6e:25:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:32:42 2026 by rpki-client