Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: 6CJIv45OMHfNTKEaCHKrcIgyJtEh+s4YNpsXY7YFBbM=
Subject key identifier: A5:F7:5D:7A:6A:A0:D4:11:C2:F6:B4:21:61:E9:DE:55:9D:3B:B2:C6
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019D389BE56776B79BDF55688A57F27EE338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 0489
Signing time: Sun 29 Mar 2026 08:00:34 +0000
Manifest this update: Sun 29 Mar 2026 08:00:34 +0000
Manifest next update: Mon 30 Mar 2026 08:00:34 +0000
Files and hashes: 1: 1-BDF7EdL9hLHZ4qCs6jAWm3n8G8.roa (hash: 3HI3L0u1gTr2C+yxlBAEamd5L6jvpyumi2g5XXRKy/k=)
2: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: 5T0XPnYZ6d7UIeJGcR58M55gTcL7jWnnR4CURyviufc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e5:67:76:b7:9b:df:55:68:8a:57:f2:7e:e3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Mar 29 08:00:34 2026 GMT
Not After : Mar 30 08:00:34 2026 GMT
Subject: CN=a5f75d7a6aa0d411c2f6b42161e9de559d3bb2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ff:df:3a:22:54:bc:b6:d8:dd:e2:6c:f9:d5:
d3:2b:e0:36:30:29:2d:c1:17:4e:d7:58:59:4a:ee:
d9:25:b4:3a:99:d0:60:f1:8b:61:08:97:d3:57:4b:
a9:44:69:61:22:60:67:5a:4e:bc:31:25:96:3b:16:
4b:d3:b6:ac:f0:5f:94:c3:f2:3f:aa:24:67:d3:ab:
52:64:4e:51:a1:9d:38:43:92:ef:ce:ac:62:3e:d7:
50:33:b3:fa:54:51:78:7c:0c:78:09:b7:37:cd:fc:
a6:7d:5c:5d:32:76:56:f0:5b:19:38:b1:de:c8:4e:
d4:ac:99:08:e2:eb:a7:86:40:fb:8e:b8:fe:e9:78:
f9:b4:48:d3:b6:c8:fa:bd:16:0c:c0:1a:90:c2:b9:
75:12:eb:bb:07:36:fd:83:33:77:b7:b7:3a:1a:f0:
9b:98:db:9c:cb:d4:98:ca:16:6d:0a:ee:c1:e2:c0:
d2:df:8e:ba:bb:a4:af:c0:f4:b7:22:6c:30:a7:f5:
03:67:30:9c:f8:ad:d9:a9:03:76:8e:45:0d:e0:69:
2c:ac:9f:e7:4d:45:68:50:7e:85:eb:91:ec:5d:79:
d2:b6:32:62:6c:e4:54:dd:6c:9e:62:4c:a3:94:8f:
5d:9b:03:3b:a3:8c:70:46:13:7f:b1:1d:16:6c:5d:
fb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F7:5D:7A:6A:A0:D4:11:C2:F6:B4:21:61:E9:DE:55:9D:3B:B2:C6
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:39:fd:63:5c:e1:e6:e0:03:67:15:b9:c0:d9:30:a4:cf:18:
94:75:2a:70:ac:a6:76:1e:6e:7f:a4:22:ce:ff:85:7f:95:e2:
86:93:84:27:5d:76:d4:ad:74:fb:19:6f:db:b3:a0:f1:b1:99:
89:74:31:52:92:cf:16:b1:2c:fb:42:6a:a7:d3:04:04:e7:85:
93:72:01:78:2d:d1:31:b1:9f:57:ec:85:3e:29:ca:94:ae:5d:
e6:99:29:28:1b:16:3b:f3:86:8f:da:f9:9a:a8:0f:4b:ea:4f:
94:9a:09:eb:04:10:1c:dd:91:c1:6b:10:20:6f:46:fb:5e:bb:
f2:1f:b3:22:fa:f3:fd:8d:f3:f7:da:19:13:4b:51:c1:ea:5e:
20:9d:f4:8b:7c:c8:c3:c5:6c:70:39:d7:37:77:d9:ea:5d:43:
82:f0:15:1e:e8:ef:32:c9:44:9c:0d:cd:f3:51:65:ea:a3:af:
c6:9f:b4:12:d8:c1:36:b0:31:41:2b:b3:8c:e5:99:63:25:99:
82:ae:5f:5a:46:e5:88:a6:ca:a6:1a:30:5c:ff:8f:a8:42:96:
9c:a5:65:2f:ec:95:82:57:fb:a3:62:1a:f0:aa:ec:d6:f6:0f:
d4:f4:2a:09:89:f1:00:68:00:6f:2f:76:e8:92:d7:a0:b4:47:
04:6f:58:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:32 2026 by rpki-client