Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
File: rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft (raw, json)
Hash identifier: 2ZHX7y9TAdlPWJkVIk0nk16BoBe2Rlpbgd5YoU0hDXE=
Subject key identifier: 82:85:21:8B:AA:9D:35:9F:67:7D:9D:39:CF:54:3C:20:BE:41:D2:B6
Authority key identifier: AC:8B:77:1E:25:7B:AF:27:DD:A1:0A:08:AB:58:B2:6C:F8:F7:5E:09
Certificate issuer: /CN=ac8b771e257baf27dda10a08ab58b26cf8f75e09
Certificate serial: 019E31F38EBDFA57E94E22F805BF39DA9AB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
Manifest number: 9E
Signing time: Sat 16 May 2026 18:01:45 +0000
Manifest this update: Sat 16 May 2026 18:01:45 +0000
Manifest next update: Sun 17 May 2026 18:01:45 +0000
Files and hashes: 1: rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl (hash: tfki+xy+WIIU0GOjJ6+q20VXg/WKutyAXMYUSJ1g0Rk=)
2: rcclP2fW2M9d6FzhFGpcIug6Slw.roa (hash: Ah4o3LwYLB7WSaBBzcrCq3rn0s5Unn57tKa0V6nN2u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 18:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:8e:bd:fa:57:e9:4e:22:f8:05:bf:39:da:9a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8b771e257baf27dda10a08ab58b26cf8f75e09
Validity
Not Before: May 16 18:01:45 2026 GMT
Not After : May 17 18:01:45 2026 GMT
Subject: CN=8285218baa9d359f677d9d39cf543c20be41d2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:1b:4c:2e:39:b1:43:31:59:c4:3e:74:d6:
69:a6:99:57:9b:35:14:e9:fd:52:f3:81:55:bd:05:
7d:a6:79:f8:75:78:91:d3:25:c5:40:a0:c5:2e:66:
5d:1c:83:61:62:0d:c3:1e:68:5b:0c:08:29:04:5e:
6c:61:82:de:99:07:3b:30:de:e7:dd:d8:f5:70:52:
89:d9:59:a3:ce:1b:ec:db:88:ff:0a:ff:8f:d9:ea:
88:fe:ba:a0:03:a7:20:df:3a:1a:f1:60:a3:d5:38:
66:1b:fa:2a:c8:f4:db:bd:a2:07:eb:34:5d:7b:0c:
9c:a0:1f:e4:5b:4c:90:d7:36:a4:88:18:2e:3d:d6:
41:3c:52:a5:c7:35:4d:1f:48:5a:68:a4:cd:2e:48:
11:9a:2c:ee:b9:c8:c5:0c:33:5b:06:f4:f5:5d:91:
c3:ef:59:14:78:86:cc:b6:51:cd:4e:c5:cd:fe:72:
d8:b1:57:1f:2b:78:6c:8b:06:08:62:4a:74:5b:c9:
b9:49:27:54:6d:bc:c3:9f:65:f8:b0:d6:91:9e:f2:
fd:3e:91:dd:b2:d9:19:29:30:9a:06:3e:64:68:11:
98:e7:6e:8b:b0:d2:e4:49:2e:83:47:87:3a:96:ef:
1a:41:a7:df:cd:d5:1b:bc:77:89:7a:ac:37:82:c2:
c7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:85:21:8B:AA:9D:35:9F:67:7D:9D:39:CF:54:3C:20:BE:41:D2:B6
X509v3 Authority Key Identifier:
keyid:AC:8B:77:1E:25:7B:AF:27:DD:A1:0A:08:AB:58:B2:6C:F8:F7:5E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIt3HiV7ryfdoQoIq1iybPj3Xgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/bd680c-4a50-4f52-98f8-4bae62896c4f/1/rIt3HiV7ryfdoQoIq1iybPj3Xgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:5d:92:e8:40:08:0a:dd:29:54:1f:98:a8:9c:ce:a2:21:b2:
22:27:d4:39:54:fc:e6:8b:3f:40:28:25:df:28:db:08:39:b2:
72:1a:2e:ac:a2:6b:e0:45:37:79:e2:62:fb:b0:3e:49:a3:f9:
5c:59:e8:c1:7e:58:5b:64:58:e8:4e:5e:7a:32:06:eb:a4:bc:
ac:0c:33:05:a1:81:07:b0:7e:ea:38:f0:da:00:d9:ba:39:86:
0a:1e:60:1a:b8:f6:96:b9:48:1e:c7:13:28:b0:a5:83:bc:ca:
db:be:e6:07:14:00:98:9c:66:69:82:89:b0:d6:1f:57:9b:d9:
1d:21:2f:69:cd:ac:04:16:e2:f3:44:b4:c1:82:91:34:21:6a:
4f:e1:77:cf:88:e0:d9:36:ac:0f:9b:9f:fc:23:77:b7:0d:0d:
a1:54:2a:f9:e4:9e:5b:45:3a:8a:9c:54:fc:5f:4b:8c:fc:a2:
cd:8d:a2:c4:33:87:b9:57:f8:28:9c:b5:1d:30:63:82:df:7f:
b5:4f:aa:d5:8f:fa:d2:78:a7:5a:60:09:32:09:b5:35:fd:ea:
73:0a:0f:ca:81:27:d2:71:21:0f:88:93:41:10:ec:36:fd:d8:
3f:1d:97:a6:44:33:c3:27:ca:22:a6:3b:ab:d4:71:12:f0:d8:
a8:73:70:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 01:08:35 2026 by rpki-client