Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: ZIGDQFoTCDr6EfeGiTZSBCanE2rzrCBCeMkfzsspHRs=
Subject key identifier: 2B:36:14:4C:47:9E:0E:E5:19:0B:62:26:5D:43:8B:AF:81:74:EB:81
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019E2FCDC5082AB1407372C5F77A796CF60C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 0509
Signing time: Sat 16 May 2026 08:01:14 +0000
Manifest this update: Sat 16 May 2026 08:01:14 +0000
Manifest next update: Sun 17 May 2026 08:01:14 +0000
Files and hashes: 1: 1-BDF7EdL9hLHZ4qCs6jAWm3n8G8.roa (hash: 3HI3L0u1gTr2C+yxlBAEamd5L6jvpyumi2g5XXRKy/k=)
2: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: /Y1Qo7fGRAjgwZl/aUKq1klbW4TJcJ5n+E/9VVQ4Nuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:c5:08:2a:b1:40:73:72:c5:f7:7a:79:6c:f6:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: May 16 08:01:14 2026 GMT
Not After : May 17 08:01:14 2026 GMT
Subject: CN=2b36144c479e0ee5190b62265d438baf8174eb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1d:6e:4f:66:44:d8:85:d8:7e:07:bc:bc:06:
5c:f6:5c:14:52:43:dc:33:37:1a:bc:9c:ab:ef:46:
10:b1:cf:17:01:19:8f:d6:fa:d3:c1:6e:ad:01:98:
04:34:31:af:56:b1:6e:5c:6c:27:db:00:8b:7a:07:
e4:bf:7c:2f:cd:0e:1b:ac:12:a6:76:5f:74:55:26:
56:dc:bd:66:fb:0e:f5:f6:8d:b5:d2:60:ca:22:5b:
38:b7:8b:ee:7e:e6:33:f5:8b:7d:5c:1b:d0:ad:91:
bb:46:d2:98:8d:4c:cd:b9:eb:8f:87:f5:b6:3f:a6:
e3:7b:e5:fd:9d:68:03:39:9d:6a:33:dd:16:2f:c5:
f8:7d:27:a9:7c:6f:58:6a:25:60:84:d9:1f:36:b2:
aa:a0:84:4a:6a:23:3b:94:86:08:10:7e:e2:8b:bf:
ca:e2:d4:b9:ca:67:b6:4f:12:f3:ab:4d:a8:7a:b1:
85:78:5f:c1:53:19:08:2f:50:af:20:81:a6:5f:77:
49:21:da:99:bc:77:e0:65:2e:6a:87:b5:9f:bd:b0:
bf:91:ba:ac:cd:2b:b8:99:12:5c:e9:28:2f:3e:db:
ca:d6:82:66:04:b3:4d:f8:4c:b1:0a:f3:80:d0:1a:
84:23:25:56:8c:d4:37:ad:13:0f:94:22:4f:ab:7f:
8e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:36:14:4C:47:9E:0E:E5:19:0B:62:26:5D:43:8B:AF:81:74:EB:81
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:d5:1a:4c:c4:d5:e8:4c:ba:d3:b5:0f:bb:57:29:b8:1a:ab:
c5:54:38:9c:11:2d:76:52:5e:97:a9:30:f9:08:3e:f2:21:5c:
b7:f0:64:09:7c:52:92:9b:3e:90:5d:c3:85:f6:6e:be:1c:c9:
52:09:b8:fd:ef:c2:8e:56:e8:15:61:d3:1a:41:25:26:8d:f1:
3f:a1:46:7e:a0:7e:3b:52:dc:f3:43:6c:3f:0b:bd:f6:f0:23:
ff:4a:45:d6:5d:71:16:92:3f:f0:e8:84:1f:01:52:7d:6a:d3:
0c:50:42:80:e6:25:c1:c2:7b:7e:56:5f:38:bb:3d:ac:e8:2d:
8f:b0:b5:81:f0:a7:e8:e9:c6:6f:2f:0c:a1:1a:d5:00:0a:05:
96:a0:bc:b3:31:50:69:63:da:a7:e4:b4:64:2a:04:f9:b1:a5:
25:4f:ce:4e:96:b2:7c:83:e7:0c:78:b5:42:68:b9:ba:45:9d:
22:e0:9e:a7:59:43:be:9d:76:63:26:3b:79:d1:1b:a4:4c:0c:
3b:6c:ae:f4:d7:e9:94:f6:ce:aa:ff:51:b6:c2:bd:af:bf:4a:
0a:26:b7:21:7e:7f:d3:2f:0c:2b:34:6e:9d:fa:c9:cf:a6:df:
f7:3e:e9:0c:94:9b:82:b0:42:58:60:31:7d:9c:fc:fd:59:d0:
71:73:4d:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vzcUIKrFAc3LF93p5bPYMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhMmY2NzFmMTA4MzRkYWU0OGVhOGQ5ODczNDJjMzc1Y2Fi
MzMxNmQwHhcNMjYwNTE2MDgwMTE0WhcNMjYwNTE3MDgwMTE0WjAzMTEwLwYDVQQD
EygyYjM2MTQ0YzQ3OWUwZWU1MTkwYjYyMjY1ZDQzOGJhZjgxNzRlYjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2R1uT2ZE2IXYfge8vAZc9lwUUkPc
MzcavJyr70YQsc8XARmP1vrTwW6tAZgENDGvVrFuXGwn2wCLegfkv3wvzQ4brBKm
dl90VSZW3L1m+w719o210mDKIls4t4vufuYz9Yt9XBvQrZG7RtKYjUzNueuPh/W2
P6bje+X9nWgDOZ1qM90WL8X4fSepfG9YaiVghNkfNrKqoIRKaiM7lIYIEH7ii7/K
4tS5yme2TxLzq02oerGFeF/BUxkIL1CvIIGmX3dJIdqZvHfgZS5qh7WfvbC/kbqs
zSu4mRJc6SgvPtvK1oJmBLNN+EyxCvOA0BqEIyVWjNQ3rRMPlCJPq3+OkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCs2FExHng7lGQtiJl1Di6+BdOuBMB8GA1UdIwQY
MBaAFOovZx8Qg02uSOqNmHNCw3XKszFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMt
MWM0MjBmMDU1NzlmLzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8xMGJhNzMtYWViYy00NzcxLWEzYWMtMWM0MjBmMDU1Nzlm
LzEvNmk5bkh4Q0RUYTVJNm8yWWMwTERkY3F6TVcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr9UaTMTV
6Ey607UPu1cpuBqrxVQ4nBEtdlJel6kw+Qg+8iFct/BkCXxSkps+kF3DhfZuvhzJ
Ugm4/e/CjlboFWHTGkElJo3xP6FGfqB+O1Lc80NsPwu99vAj/0pF1l1xFpI/8OiE
HwFSfWrTDFBCgOYlwcJ7flZfOLs9rOgtj7C1gfCn6OnGby8MoRrVAAoFlqC8szFQ
aWPap+S0ZCoE+bGlJU/OTpayfIPnDHi1Qmi5ukWdIuCep1lDvp12YyY7edEbpEwM
O2yu9NfplPbOqv9RtsK9r79KCia3IX5/0y8MKzRunfrJz6bf9z7pDJSbgrBCWGAx
fZz8/VnQcXNN9A==
-----END CERTIFICATE-----
Generated at Sat May 16 18:40:31 2026 by rpki-client