Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json)
Hash identifier: eq4qSzOgiEkpai38iO5qi2k+zzcQgJLGgXcOC5Aejvo=
Subject key identifier: 40:F8:34:85:64:A6:66:E7:B7:5A:B3:BE:90:3B:3D:C7:17:EE:77:10
Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Certificate serial: 019EAA1C59357133F8B0CF05C3AECC0A1B02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
Manifest number: 194D
Signing time: Tue 09 Jun 2026 02:00:44 +0000
Manifest this update: Tue 09 Jun 2026 02:00:44 +0000
Manifest next update: Wed 10 Jun 2026 02:00:44 +0000
Files and hashes: 1: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: PfHoE4+2Fnrj66B8b8t91LDi5og5xvlz1ECSxAmM+Xw=)
2: oNy7iyROhmf7k1QXS1fyOykVhms.roa (hash: 7ICki/NejOefHux3d5CNCzujTTJwY1H52uKM23OBmV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:aa:1c:59:35:71:33:f8:b0:cf:05:c3:ae:cc:0a:1b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Validity
Not Before: Jun 9 02:00:44 2026 GMT
Not After : Jun 10 02:00:44 2026 GMT
Subject: CN=40f8348564a666e7b75ab3be903b3dc717ee7710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:db:d5:15:75:5d:84:a3:2a:d1:34:b2:f7:cf:
fa:20:58:b6:4f:e4:c4:5a:38:52:f5:3a:c3:a2:90:
73:8a:ab:14:de:42:7e:e7:13:c7:83:db:dd:f8:1e:
d8:81:0a:12:4d:88:65:31:b3:7b:af:8e:52:8c:9a:
5d:8d:1b:60:11:56:f0:58:ad:bb:83:83:a2:fc:57:
24:44:14:92:28:8b:b6:2b:0e:49:68:2e:4d:ac:e1:
7f:66:b1:29:9a:db:cf:ab:50:a3:7a:d1:db:40:4e:
da:7c:41:f8:6f:80:eb:63:77:56:f6:a2:56:47:51:
6c:83:7f:c1:14:b4:82:c3:b1:29:9c:60:27:64:fe:
5e:8a:58:4c:e9:00:80:c3:7c:cf:93:6d:6b:b9:2c:
82:3f:6f:e2:42:10:b5:67:f9:e1:98:17:e6:73:3c:
b5:85:26:64:3e:8a:c6:79:38:52:54:84:30:24:84:
ff:e2:f1:93:37:3b:e3:c5:f8:18:a5:54:fe:e3:1d:
f4:eb:dd:5b:a1:3d:28:6d:82:30:5e:ab:13:59:84:
a5:3d:ea:4e:29:3c:ea:25:89:3c:e4:29:3d:a0:36:
a0:dd:ec:e5:a0:fd:60:3b:19:40:2e:44:cc:0c:e0:
f5:2b:9e:d0:1a:cf:5e:5e:e4:04:5f:4e:e1:9f:f9:
d6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F8:34:85:64:A6:66:E7:B7:5A:B3:BE:90:3B:3D:C7:17:EE:77:10
X509v3 Authority Key Identifier:
keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:fb:6a:58:a6:b1:fa:4a:0d:c1:cb:2e:d8:a2:4c:a7:89:75:
58:21:45:9e:c0:7f:08:4a:9d:07:94:34:c6:d7:3c:42:d1:be:
0e:6e:8c:fe:f3:f8:87:8e:2e:fc:a4:46:c4:b5:9d:72:00:39:
c6:57:92:55:39:4d:ca:98:0a:bf:44:73:85:77:e3:42:69:94:
fe:7d:48:7a:ff:c3:da:2d:e2:77:bf:51:90:12:c6:34:60:79:
f3:57:41:e3:21:21:53:a8:f6:3e:1d:2a:fe:d7:b5:b3:aa:dd:
48:4c:72:cc:d1:59:24:c9:fe:d1:de:b7:19:0c:4f:a8:18:56:
0c:21:42:f2:d1:49:99:1e:ee:ee:de:50:9e:98:23:71:7c:f1:
a2:a1:5c:40:50:f6:55:91:2f:ae:d1:60:20:ce:43:d8:65:09:
16:9b:10:16:f9:fb:85:68:de:b0:77:0d:89:3f:67:fc:63:8c:
e6:8f:29:fa:88:36:e4:ee:9d:2d:36:26:f4:58:a7:04:de:67:
5e:a9:2a:a6:08:73:32:3a:58:2c:88:d6:cb:68:f1:9c:41:64:
cb:b0:7a:a7:17:68:08:14:b3:11:b1:22:a9:0d:4f:a1:4d:fb:
4b:62:14:5a:43:ae:c9:66:23:2d:97:94:52:8b:13:e7:ff:ad:
95:a5:59:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6qHFk1cTP4sM8Fw67MChsCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliZGEzNDE0MTM3MTI5ZmEzOGE2YzYxYzQ5NmFiOGI2MTQw
OWNlMDIwHhcNMjYwNjA5MDIwMDQ0WhcNMjYwNjEwMDIwMDQ0WjAzMTEwLwYDVQQD
Eyg0MGY4MzQ4NTY0YTY2NmU3Yjc1YWIzYmU5MDNiM2RjNzE3ZWU3NzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdvVFXVdhKMq0TSy98/6IFi2T+TE
WjhS9TrDopBziqsU3kJ+5xPHg9vd+B7YgQoSTYhlMbN7r45SjJpdjRtgEVbwWK27
g4Oi/FckRBSSKIu2Kw5JaC5NrOF/ZrEpmtvPq1CjetHbQE7afEH4b4DrY3dW9qJW
R1Fsg3/BFLSCw7EpnGAnZP5eilhM6QCAw3zPk21ruSyCP2/iQhC1Z/nhmBfmczy1
hSZkPorGeThSVIQwJIT/4vGTNzvjxfgYpVT+4x30691boT0obYIwXqsTWYSlPepO
KTzqJYk85Ck9oDag3ezloP1gOxlALkTMDOD1K57QGs9eXuQEX07hn/nWNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFED4NIVkpmbnt1qzvpA7PccX7ncQMB8GA1UdIwQY
MBaAFJvaNBQTcSn6OKbGHElquLYUCc4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUt
MTZkM2NkMzUyZjJlLzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUtMTZkM2NkMzUyZjJl
LzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApftqWKax
+koNwcsu2KJMp4l1WCFFnsB/CEqdB5Q0xtc8QtG+Dm6M/vP4h44u/KRGxLWdcgA5
xleSVTlNypgKv0RzhXfjQmmU/n1Iev/D2i3id79RkBLGNGB581dB4yEhU6j2Ph0q
/te1s6rdSExyzNFZJMn+0d63GQxPqBhWDCFC8tFJmR7u7t5QnpgjcXzxoqFcQFD2
VZEvrtFgIM5D2GUJFpsQFvn7hWjesHcNiT9n/GOM5o8p+og25O6dLTYm9FinBN5n
XqkqpghzMjpYLIjWy2jxnEFky7B6pxdoCBSzEbEiqQ1PoU37S2IUWkOuyWYjLZeU
UosT5/+tlaVZNw==
-----END CERTIFICATE-----
Generated at Tue Jun 9 04:45:49 2026 by rpki-client