Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: wnFAm2Y28NXtp6KvcDgoQewHGWloXuQxgesCxfZWnFE=
Subject key identifier: DA:7C:47:21:1F:3F:A6:3A:1B:68:F5:5E:C6:29:72:E1:D6:26:D4:AC
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019E30E0CCA7DA1D775BA22242BB92D2BBF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 13:01:39 +0000
Manifest this update: Sat 16 May 2026 13:01:39 +0000
Manifest next update: Sun 17 May 2026 13:01:39 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: wUd6DJcgKHagfpz7ajgMBFKr79Iwwkpb0FysK1aAOQA=)
2: L3FElQgN_OK9ME85XjkPB5d4njo.roa (hash: 7fKQw9/kLDh7zT4p1MB3dQg/LI4nczVMbuMgYO277J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:cc:a7:da:1d:77:5b:a2:22:42:bb:92:d2:bb:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: May 16 13:01:39 2026 GMT
Not After : May 17 13:01:39 2026 GMT
Subject: CN=da7c47211f3fa63a1b68f55ec62972e1d626d4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:24:16:6b:01:f3:ab:4b:a6:0f:93:21:09:9b:
be:1e:64:18:50:fd:ee:a3:71:74:99:8e:b2:81:fe:
19:6b:72:56:14:ff:63:78:b8:bb:90:91:fb:0d:cb:
5d:b8:2e:b5:dd:92:69:d7:5d:f0:7a:9f:07:31:68:
12:8e:b9:99:2b:55:7f:f9:19:d7:ca:8f:e2:ec:64:
3c:1a:91:86:9e:93:2a:3d:9a:05:13:38:47:3d:a5:
a9:38:f3:97:5e:a9:a4:8c:ed:e9:42:8e:61:7f:e3:
6e:25:24:0a:32:27:0c:3d:f7:c3:1f:a5:44:e2:39:
10:ed:62:79:f7:96:28:68:83:79:ac:71:35:ad:33:
ed:5d:0d:7e:0e:f5:f4:7d:36:f9:77:2f:25:89:e6:
31:0f:a2:66:b3:ec:f0:8e:61:25:a4:61:bf:10:29:
75:22:47:45:b1:e1:24:c2:cf:6a:86:c5:bd:68:c3:
d1:c0:94:0d:5e:de:66:51:17:87:79:72:97:1a:2d:
7d:d7:0c:f8:fb:cc:43:76:f6:9a:d5:75:4a:88:28:
01:1f:e2:fd:a2:ca:35:e2:34:3b:bc:76:65:98:11:
86:d7:71:b8:9f:84:37:9b:f7:65:4a:6f:7c:77:f5:
00:7f:91:12:a9:c5:6c:81:e4:af:1e:34:a0:be:4b:
54:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7C:47:21:1F:3F:A6:3A:1B:68:F5:5E:C6:29:72:E1:D6:26:D4:AC
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:33:0a:0c:94:77:05:a4:24:57:f4:72:f1:55:e7:dc:b5:72:
75:a5:c0:28:31:26:09:71:df:0c:b1:eb:9d:c9:23:d3:9a:1b:
1d:5a:17:54:9a:be:5e:01:0f:08:90:7c:81:f7:ec:c1:be:44:
18:77:da:9a:46:ec:6f:82:16:12:b0:ae:ed:dc:b0:00:b6:57:
f2:c5:f0:1c:e4:b2:78:f5:86:ab:12:84:dd:8a:9e:4a:66:50:
91:19:9a:63:31:2a:33:08:b7:c4:11:2a:c7:26:30:86:f4:82:
16:3a:24:6e:f1:50:4f:3c:ce:5f:99:f5:a9:76:81:9c:23:d4:
da:da:7b:91:2a:08:47:e4:b5:7b:ee:7c:15:b0:ca:12:e5:c5:
54:f1:63:b8:f6:e7:fe:db:7a:dd:8b:3b:88:e0:10:ac:18:d4:
95:9b:18:72:9c:96:6a:d0:ae:18:68:bd:73:27:f6:39:26:f7:
d9:1c:61:4e:99:73:d4:fa:e9:55:b0:11:a8:fe:cd:1b:b4:bb:
a1:58:5d:ce:f5:33:b6:b5:eb:b8:2b:88:0b:49:fb:0b:42:5a:
fa:42:30:1f:5b:ec:48:3e:84:1f:ed:52:90:39:19:83:93:be:
33:57:04:9e:f8:37:81:35:ed:86:68:4a:23:c7:fe:6b:1b:11:
26:2f:3c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:41 2026 by rpki-client