Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
File: d9Vhc4owymkonMhFMN5d73SjqYI.mft (raw, json)
Hash identifier: TzH7+sITmcrh7avUj9iFkexYvvYclVP9ZTFa4Xgzi/w=
Subject key identifier: 47:2E:F8:51:7F:8C:6D:55:BD:8F:8C:A6:03:C1:49:8C:B1:03:AD:3C
Authority key identifier: 77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
Certificate issuer: /CN=77d561738a30ca69289cc84530de5def74a3a982
Certificate serial: 019DCF06E4E91A3C6B6F5E8E8BF57E8856E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
Manifest number: B6
Signing time: Mon 27 Apr 2026 13:00:28 +0000
Manifest this update: Mon 27 Apr 2026 13:00:28 +0000
Manifest next update: Tue 28 Apr 2026 13:00:28 +0000
Files and hashes: 1: d9Vhc4owymkonMhFMN5d73SjqYI.crl (hash: oOTWtyG8KYUBnZ91COIlaWOj6lQcX7dqwcBfakICHdM=)
2: wBGjgdfu_nLRR4DjOBdo0PtKJMM.roa (hash: PPK9ixZ6Q7KuFLEJo2Wk9bDSxb6ZvTbGERhmOzUiZuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 13:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:06:e4:e9:1a:3c:6b:6f:5e:8e:8b:f5:7e:88:56:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d561738a30ca69289cc84530de5def74a3a982
Validity
Not Before: Apr 27 13:00:28 2026 GMT
Not After : Apr 28 13:00:28 2026 GMT
Subject: CN=472ef8517f8c6d55bd8f8ca603c1498cb103ad3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:c2:5f:18:6c:5b:42:47:f2:e2:83:92:d7:
e9:cd:d6:aa:cf:d3:29:44:15:17:72:79:42:5f:d1:
f9:71:14:af:e7:2b:80:62:9d:f8:a2:b1:b5:97:a5:
85:e0:c4:6e:4a:4f:6c:9a:a1:2e:fa:3f:75:c9:27:
8e:5f:e7:54:94:66:52:2b:17:52:7b:e7:0c:04:77:
a1:82:b1:93:c4:75:15:d6:72:18:b9:88:c6:0e:bc:
1e:58:79:ab:54:ea:b9:63:21:e8:45:e2:c5:99:94:
69:c1:fa:85:60:a2:1d:b8:f6:b4:ed:8e:1d:e0:81:
4b:d5:23:7c:bf:17:ed:33:13:35:ea:19:6c:ad:58:
d2:fb:7a:af:1f:d2:99:86:99:b2:36:00:80:71:c9:
2a:a1:bf:9a:82:2d:3a:a8:97:ae:5f:3a:71:65:39:
fe:d1:e1:cb:05:67:7a:14:a8:c5:10:5f:3d:e2:d4:
26:d8:5b:e8:fc:1b:72:ec:f0:00:d2:32:81:11:e7:
9b:af:2b:3b:dd:bf:6c:96:71:b0:e6:02:35:4c:e4:
b6:a0:c9:b6:73:ea:fc:9a:d2:b4:01:51:43:58:e0:
a7:24:3b:c0:b7:33:3c:84:33:ae:1a:5b:1b:e5:90:
0d:df:a8:c8:98:5a:39:f5:61:aa:1d:b2:20:d5:1e:
f7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2E:F8:51:7F:8C:6D:55:BD:8F:8C:A6:03:C1:49:8C:B1:03:AD:3C
X509v3 Authority Key Identifier:
keyid:77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:b9:56:92:91:57:af:e1:5f:f2:c2:89:79:af:53:c9:38:a3:
40:ee:a6:a2:60:3e:12:15:d1:f8:61:0e:0f:39:4f:9a:2b:d0:
76:a9:0b:f9:3e:d3:cd:87:78:73:d0:3c:28:1b:25:50:8a:b6:
6f:35:d8:3f:f8:79:04:a4:59:eb:83:d3:22:43:5d:3c:42:99:
84:24:e2:fc:d7:33:25:dc:d3:52:98:ac:02:34:f6:a3:8e:be:
1e:24:a3:c7:09:0e:57:04:57:9c:36:db:32:ad:b3:c3:98:03:
2c:d7:4d:9f:bb:cf:11:46:98:f5:89:2e:07:33:7c:8b:50:9c:
1a:89:af:81:77:fd:8e:66:d9:ab:e4:27:c0:b3:7f:22:94:20:
96:ae:d2:a9:93:13:f9:c2:00:0f:f0:59:93:26:b0:35:23:6c:
b0:2a:42:4c:69:2c:9e:5b:35:ca:d8:52:2c:48:d4:3e:2b:5d:
c5:82:5f:b4:3a:c9:7e:57:39:ac:86:b8:14:63:d7:62:5c:d3:
ee:0d:00:c1:f4:54:04:37:58:13:67:e6:5d:41:09:59:62:97:
51:83:55:87:7d:71:6d:95:7e:b6:ea:9f:58:f8:0c:30:d6:5c:
a7:75:6f:ed:d2:d2:fd:26:02:0b:ae:64:11:b3:09:ba:e7:92:
ef:c6:25:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 23:08:31 2026 by rpki-client