Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: hU3d2yvVzH0ImUzKrM/vDPzIcKhxzf96bf4S9+VI+xs=
Subject key identifier: ED:34:3D:B7:8F:41:E8:55:B6:FC:2A:F5:47:34:09:8A:62:F0:B9:95
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019D39AE95B17E7CA4A66B23184699409181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 13:00:35 +0000
Manifest this update: Sun 29 Mar 2026 13:00:35 +0000
Manifest next update: Mon 30 Mar 2026 13:00:35 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: 7n8OiNydbt610gW282zS4PfmaRhYOgmvp5rODqFRxwQ=)
2: L3FElQgN_OK9ME85XjkPB5d4njo.roa (hash: 7fKQw9/kLDh7zT4p1MB3dQg/LI4nczVMbuMgYO277J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:95:b1:7e:7c:a4:a6:6b:23:18:46:99:40:91:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Mar 29 13:00:35 2026 GMT
Not After : Mar 30 13:00:35 2026 GMT
Subject: CN=ed343db78f41e855b6fc2af54734098a62f0b995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ba:c8:20:37:2d:cb:65:6e:cb:26:6f:ce:b3:
fc:33:07:d3:25:04:a5:5f:34:d1:18:d2:ee:6d:51:
7d:81:1c:e8:88:51:fd:ca:6c:9a:b7:da:93:5e:7c:
c8:12:b1:e5:1c:bc:3b:7c:d6:85:40:39:dd:09:7d:
86:2b:f5:5f:ce:04:c9:6e:35:43:46:9c:46:74:a0:
91:1a:b7:4f:a8:2e:82:85:1a:90:b4:c2:73:3e:20:
a6:ff:2a:0b:d9:83:55:8e:67:ab:9c:fb:6b:d1:d5:
1f:a9:4e:d1:bf:e8:97:f1:f5:9b:78:d9:65:03:2c:
6d:b3:93:6e:2c:c2:eb:98:bd:16:f9:1b:77:5c:94:
8d:31:d2:59:fe:ed:88:6b:73:d8:70:57:5d:77:a4:
2c:bb:15:32:4b:ff:98:d5:f2:c7:b5:fc:57:7e:f5:
b0:62:8d:32:c6:16:00:88:34:76:e5:36:1a:44:85:
2a:28:77:82:3c:9a:b6:21:e2:df:93:10:ee:4d:a5:
fb:d3:11:23:39:f5:68:29:ed:ef:1b:87:f6:61:4f:
c7:33:6d:be:92:3f:89:8f:73:7b:3f:c1:8e:67:7a:
9a:af:08:23:71:08:c3:ac:a5:b6:54:2c:93:87:94:
68:49:66:5b:44:d3:9c:72:4d:eb:15:15:d5:66:1e:
51:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:34:3D:B7:8F:41:E8:55:B6:FC:2A:F5:47:34:09:8A:62:F0:B9:95
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3b:71:60:37:2b:71:a3:73:03:33:81:3b:54:56:fb:d3:ee:
2a:5f:04:5c:b7:67:41:47:ee:3c:95:c6:c1:20:c5:31:8c:de:
92:cb:c8:1f:c5:8d:c3:bb:82:5a:e3:83:9f:49:cc:e5:2d:4a:
55:e6:07:d5:c5:98:0e:dc:e6:d9:10:f2:b0:5c:b4:76:80:37:
9a:7d:d8:fc:ee:bb:3b:2e:53:70:c9:6b:1f:fe:ed:c8:33:07:
b3:9e:e5:73:74:c1:d1:d9:dd:48:a7:32:9a:a5:17:92:b4:d5:
e1:0d:3f:0b:14:24:8d:23:9e:76:00:68:63:ec:bc:29:e2:c9:
dd:1a:04:22:88:48:cb:94:c2:74:91:e4:ae:0a:c5:6f:d8:44:
ec:cb:eb:b1:95:ab:14:a4:8b:c6:7a:ae:4a:ec:5e:55:9c:c8:
0f:75:40:db:83:d8:b1:51:f6:d3:31:c3:e9:3d:32:8f:e0:62:
03:ca:e3:33:e2:88:0f:62:88:99:e5:68:c3:6b:ef:a8:01:78:
e2:3b:17:ca:17:7a:e9:13:bd:08:25:70:60:44:1d:ea:a4:f5:
46:9e:4e:fd:d3:8a:d6:47:01:f9:7f:7e:e4:f1:d7:c0:2e:90:
c7:54:a3:2b:33:34:2d:54:1e:a2:0f:1c:4d:b3:f0:59:a2:a8:
00:ca:f1:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rpWxfnykpmsjGEaZQJGBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2
MDQ2ODkwHhcNMjYwMzI5MTMwMDM1WhcNMjYwMzMwMTMwMDM1WjAzMTEwLwYDVQQD
EyhlZDM0M2RiNzhmNDFlODU1YjZmYzJhZjU0NzM0MDk4YTYyZjBiOTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9rrIIDcty2VuyyZvzrP8MwfTJQSl
XzTRGNLubVF9gRzoiFH9ymyat9qTXnzIErHlHLw7fNaFQDndCX2GK/VfzgTJbjVD
RpxGdKCRGrdPqC6ChRqQtMJzPiCm/yoL2YNVjmernPtr0dUfqU7Rv+iX8fWbeNll
Ayxts5NuLMLrmL0W+Rt3XJSNMdJZ/u2Ia3PYcFddd6QsuxUyS/+Y1fLHtfxXfvWw
Yo0yxhYAiDR25TYaRIUqKHeCPJq2IeLfkxDuTaX70xEjOfVoKe3vG4f2YU/HM22+
kj+Jj3N7P8GOZ3qarwgjcQjDrKW2VCyTh5RoSWZbRNOcck3rFRXVZh5R9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO00PbePQehVtvwq9Uc0CYpi8LmVMB8GA1UdIwQY
MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt
Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm
LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTtxYDcr
caNzAzOBO1RW+9PuKl8EXLdnQUfuPJXGwSDFMYzeksvIH8WNw7uCWuODn0nM5S1K
VeYH1cWYDtzm2RDysFy0doA3mn3Y/O67Oy5TcMlrH/7tyDMHs57lc3TB0dndSKcy
mqUXkrTV4Q0/CxQkjSOedgBoY+y8KeLJ3RoEIohIy5TCdJHkrgrFb9hE7MvrsZWr
FKSLxnquSuxeVZzID3VA24PYsVH20zHD6T0yj+BiA8rjM+KID2KImeVow2vvqAF4
4jsXyhd66RO9CCVwYEQd6qT1Rp5O/dOK1kcB+X9+5PHXwC6Qx1SjKzM0LVQeog8c
TbPwWaKoAMrxcw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:11:18 2026 by rpki-client