Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: 7JWlTfZR6RNoNqWxGHASduEy06H7acyGWQyKUMXKzKM=
Subject key identifier: 6E:10:01:03:8B:8A:2D:03:7D:8E:F8:56:3B:9D:D4:62:EF:A7:DF:6C
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 019F189EBB9DC800DEDF3091C7DD51B2A1E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 13:01:23 +0000
Manifest this update: Tue 30 Jun 2026 13:01:23 +0000
Manifest next update: Wed 01 Jul 2026 13:01:23 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: TiPh4lbc3blgZBmuX2tsHYApbxEgfGm0jh80I/no7Ug=)
2: J6H8JSFuxVzFOSwqeVn8vTsfdVE.roa (hash: vYs9Iafl6ODvzqSPTNj74leQVCe3/0UGQl7TxkQZF/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:bb:9d:c8:00:de:df:30:91:c7:dd:51:b2:a1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Jun 30 13:01:23 2026 GMT
Not After : Jul 1 13:01:23 2026 GMT
Subject: CN=6e1001038b8a2d037d8ef8563b9dd462efa7df6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:5d:cf:74:91:55:9a:47:a9:61:f8:49:c8:
83:45:56:5c:a7:99:1a:20:65:f8:08:a6:14:f2:55:
d9:52:a3:60:7f:f4:a9:b8:06:1d:98:b2:a8:6e:d4:
5c:a8:9c:38:e1:f4:1e:58:1d:78:20:ff:d7:0f:bc:
a3:7d:e3:c0:ec:34:0e:3e:32:df:a1:e0:7a:87:da:
6c:71:9f:21:72:fc:13:6c:af:d6:65:2b:52:c0:11:
58:3f:ce:71:8d:46:c8:a3:19:7e:11:72:5b:3c:11:
fe:d3:14:6d:4b:7b:af:3f:65:3a:72:89:b7:25:0d:
71:e2:27:78:04:32:42:f2:8a:18:b7:e7:7a:50:69:
55:d1:ae:21:34:3d:2d:23:97:a0:71:6d:9b:5c:61:
7d:a3:6c:07:57:5b:b5:1d:bc:0a:e4:98:40:f6:f1:
2b:01:67:3f:6a:c5:65:ff:95:84:9f:ba:35:d2:b0:
41:c1:2f:58:40:ad:ae:18:b8:9d:f4:a2:74:8b:a7:
df:ac:04:59:9c:3a:53:d8:9a:92:3d:a2:12:d7:0e:
85:be:d6:b7:7b:90:a0:67:43:72:71:72:9c:e2:77:
77:de:79:3d:7d:86:5c:fd:03:94:c3:de:a4:54:c2:
ad:c9:c0:b1:76:61:b8:2f:08:8f:eb:36:cc:1a:e6:
64:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:10:01:03:8B:8A:2D:03:7D:8E:F8:56:3B:9D:D4:62:EF:A7:DF:6C
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:6d:4d:32:d6:14:10:8b:a2:21:96:08:8a:14:a9:3b:f8:60:
f3:56:04:e6:6b:fe:b0:28:cb:2b:15:b1:20:63:f0:a7:c7:2a:
a2:4c:cf:dd:61:8e:45:02:f3:2e:cf:fe:8c:50:5f:8b:7f:15:
c7:bb:47:fc:ad:0a:cb:de:1b:d8:0d:d5:31:d8:9c:c7:9e:2d:
81:92:ed:20:a3:85:02:e1:dd:7b:53:04:40:ce:73:65:ca:d1:
d3:8c:58:ad:59:a7:4f:c0:2c:3a:e1:39:50:90:44:4f:ea:61:
66:05:4b:ca:87:fb:09:b2:fc:d6:a5:c9:ac:40:40:42:74:b6:
15:1b:6e:05:cf:fb:47:1d:93:8c:d5:d0:e3:e0:0c:9b:46:24:
c6:79:6e:e5:66:10:ef:94:c3:4b:f8:83:67:e0:4e:d8:ec:0c:
30:15:7a:d7:73:c4:d0:75:19:06:08:89:81:bb:7f:d2:9a:81:
74:5d:f3:46:d5:f9:94:d9:f6:e4:73:97:66:c9:b5:19:93:ad:
4e:a7:4e:1b:fb:33:d8:ac:11:37:6c:5e:74:e0:b8:bd:bd:c1:
00:9d:14:cc:e4:1c:49:a7:8a:8d:cd:cf:f4:e2:d3:3b:fe:7a:
b1:f5:2d:8f:41:de:36:2b:a9:81:26:53:9a:a3:26:53:d3:83:
50:ce:db:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:17:29 2026 by rpki-client