Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: 7eJ+eIpGMfFR2qRjeLSDiThGd6Y3zDAWU9Wnz8GasWY=
Subject key identifier: 16:49:04:91:92:29:92:39:0B:76:B0:A7:E8:A5:EA:99:69:8F:13:5E
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 019D37BFFE950840E9A5506BE17E5679D035
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:22 +0000
Manifest this update: Sun 29 Mar 2026 04:00:22 +0000
Manifest next update: Mon 30 Mar 2026 04:00:22 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: pIJ4/zaZhPNuE6FFugMp52hUnF+ivv4zAU8xZxSSXGo=)
2: J6H8JSFuxVzFOSwqeVn8vTsfdVE.roa (hash: vYs9Iafl6ODvzqSPTNj74leQVCe3/0UGQl7TxkQZF/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:fe:95:08:40:e9:a5:50:6b:e1:7e:56:79:d0:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Mar 29 04:00:22 2026 GMT
Not After : Mar 30 04:00:22 2026 GMT
Subject: CN=16490491922992390b76b0a7e8a5ea99698f135e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:04:c7:cc:84:2c:05:a1:13:98:59:1b:2a:
e7:5a:48:7a:bf:d6:31:05:be:7d:61:1b:29:25:93:
41:7c:3b:6f:1e:09:ff:c2:71:ba:1f:2d:71:6f:76:
1b:6f:a8:3a:5a:7d:70:8a:a8:3a:07:cf:5f:99:51:
6a:67:5a:e2:75:b9:16:e2:7a:a8:9d:60:c2:7e:bb:
0e:27:6d:6b:22:a2:a3:e3:f5:28:c2:f6:b7:f6:ff:
90:fe:ac:c4:03:ae:12:bb:b8:e0:45:a0:b9:9f:87:
c3:a9:26:c5:83:49:a0:df:81:da:0d:b8:12:af:7f:
ea:2b:c8:ef:d0:d8:00:3d:43:5a:64:23:c0:4f:21:
70:1f:ba:7c:3e:36:66:da:72:44:4c:92:90:9d:ff:
d3:42:f8:bb:d0:52:30:48:1d:a0:99:38:0c:f3:4e:
37:69:42:d6:50:2f:62:8c:69:63:f6:35:f4:66:28:
09:31:a6:2c:23:1a:d4:52:e3:1a:46:3a:41:77:21:
15:34:9a:08:44:2b:66:40:57:3d:6e:7e:81:93:0b:
19:2d:5b:8a:a4:5b:e9:e0:be:c1:87:c6:e4:0c:21:
f2:3b:ef:ae:39:40:6a:84:72:1f:b2:cf:74:90:d2:
2a:1b:89:93:89:fb:70:76:fb:5b:cc:84:ee:d3:eb:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:49:04:91:92:29:92:39:0B:76:B0:A7:E8:A5:EA:99:69:8F:13:5E
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:84:3d:7b:bf:de:fa:10:cf:06:c0:53:0d:91:a7:56:f1:59:
e6:c7:d1:ac:ec:c7:b7:eb:c1:b5:e5:07:02:f9:e0:16:f0:12:
e2:db:1b:fe:0b:51:93:03:fe:d9:a9:63:7d:5a:5d:74:da:d6:
38:f5:92:d0:48:95:a8:8f:d9:be:39:6b:83:98:55:95:5d:86:
14:cc:b8:04:ef:74:51:6f:ff:56:8f:55:9f:78:c7:90:12:23:
0b:e8:b3:c3:ca:ba:3f:03:a6:50:90:f9:2c:93:b1:3c:ff:c6:
0e:2e:00:fc:dd:d0:07:47:c5:01:9d:14:e3:9f:c6:fe:59:35:
44:cd:a7:cd:c3:70:7c:cc:9d:73:96:0c:89:3d:cf:28:64:15:
5a:fd:ee:95:05:2d:0e:27:3b:16:76:53:33:54:aa:17:71:96:
6f:a8:e2:0a:5e:2c:91:13:bd:3f:3b:8e:36:fc:32:b5:65:e4:
47:52:bf:d5:6a:77:8e:74:78:d6:51:fd:57:ca:80:5a:e6:10:
35:90:1c:72:cf:1a:49:7d:ec:d9:bf:3a:8c:7d:ae:e8:55:69:
bf:e7:b4:09:bc:35:8c:98:8b:e3:09:ec:62:c5:ed:44:43:93:
66:9a:05:56:e5:c2:7f:0f:40:04:d0:bc:63:62:f0:c4:04:d4:
ac:a9:f8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:16 2026 by rpki-client