Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
File: A9yMYjke_dTdGORoGeF3gAKpoYc.mft (raw, json)
Hash identifier: 0ZbGwv8oMhIGNOa2SfuhBGpuxweZivsKTzFu0s9W/qU=
Subject key identifier: DD:91:E5:03:0D:DB:22:37:17:A6:E9:0D:98:F5:5B:8E:B3:B2:18:08
Authority key identifier: 03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
Certificate issuer: /CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Certificate serial: 019DA89E960F1807A86AE41733AA2C3C66A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
Manifest number: 0689
Signing time: Mon 20 Apr 2026 02:00:58 +0000
Manifest this update: Mon 20 Apr 2026 02:00:58 +0000
Manifest next update: Tue 21 Apr 2026 02:00:58 +0000
Files and hashes: 1: 1-eoC_GN2YbYe4XqCQ3dQUDWLMGU.roa (hash: CCW99WT+qJ1fktgS1Nv1Xts5RljXDXbC1tmqj4HW2vI=)
2: A9yMYjke_dTdGORoGeF3gAKpoYc.crl (hash: AwqHF2g8ZNZP7KLSkTwdbok96Hjw8sL5GQGP2cnvJvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 02:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a8:9e:96:0f:18:07:a8:6a:e4:17:33:aa:2c:3c:66:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Validity
Not Before: Apr 20 02:00:58 2026 GMT
Not After : Apr 21 02:00:58 2026 GMT
Subject: CN=dd91e5030ddb223717a6e90d98f55b8eb3b21808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:be:ae:9f:f8:9d:50:f5:8e:1a:e6:d4:13:0d:
43:66:f0:9d:24:d1:5b:ce:97:49:fb:97:ad:62:ce:
6e:6c:ed:f5:5e:58:4d:ed:0e:50:34:b8:6b:1f:3b:
dc:8b:bd:c0:1c:c7:32:53:44:54:f3:11:a0:0c:9c:
72:6c:e3:cd:11:c3:6c:cb:41:62:c8:1c:e5:f7:74:
a8:b5:2e:85:7a:c3:3c:8c:24:43:15:e5:61:d6:09:
65:a7:c3:e6:46:0f:bc:e5:68:39:30:96:18:94:7c:
65:a9:f9:89:bb:61:38:87:39:48:1f:32:35:05:fd:
e0:81:e9:0b:0d:6c:61:3e:18:1f:e8:8f:32:13:1c:
03:f7:ca:f9:fe:2c:4c:32:6b:a0:4c:f3:38:f7:34:
9e:3a:30:1d:71:1a:ee:14:27:3d:17:d4:ff:39:b4:
f4:78:5f:f8:62:72:9e:b9:1c:c1:d0:63:5a:e4:34:
6a:e3:92:aa:ad:f5:b8:df:77:d8:e9:03:f8:07:a2:
72:e6:86:a9:0f:62:65:c5:80:99:85:ef:1c:a6:5c:
32:3b:b1:4d:4b:d1:06:08:2c:a1:a5:fe:7e:0b:0d:
e7:7c:77:bc:0b:2e:01:85:b5:d6:e2:e2:f8:e1:8e:
a6:c2:66:58:3a:67:a1:d2:69:28:fb:3d:69:8f:40:
b8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:91:E5:03:0D:DB:22:37:17:A6:E9:0D:98:F5:5B:8E:B3:B2:18:08
X509v3 Authority Key Identifier:
keyid:03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:a8:05:20:27:7a:72:e7:43:48:1e:73:60:4b:3e:36:54:86:
ce:2d:d4:b0:db:46:f3:36:f1:80:94:19:3d:88:f8:a2:45:de:
0d:a9:7a:17:d0:14:3f:60:98:8d:b7:18:5f:77:2d:2b:04:57:
b5:7a:f5:fb:b0:02:3a:a7:98:3e:e8:57:fa:35:ce:68:77:0d:
79:4c:86:e9:25:e1:ad:09:9b:e2:1b:98:70:10:86:b4:42:8c:
f8:c3:54:df:f0:ef:aa:94:02:b2:1c:0b:68:33:59:4d:58:e8:
30:e6:fe:44:67:68:cb:08:60:78:d3:66:e4:0e:43:d7:3c:5b:
4b:b3:35:9b:1c:c5:2f:18:62:13:1b:5c:df:d6:9f:62:12:7d:
61:ef:08:81:9c:74:30:d7:b4:11:88:fa:b9:a1:4d:66:e3:1d:
99:e5:79:e6:79:cc:ee:c2:e4:2b:8a:3f:3f:21:fc:cd:f8:29:
66:0c:5e:cf:88:65:9e:25:69:b1:f7:6c:02:7e:e3:74:91:d1:
c6:3d:88:ff:e5:c7:ba:2c:c3:29:ad:46:c4:1e:c1:bc:d6:51:
5f:9b:d8:67:a5:87:95:97:8f:6a:77:ab:ef:30:23:27:18:2d:
4b:54:f3:0d:1a:33:a6:74:30:25:58:d5:73:72:da:8c:67:e2:
03:35:13:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 09:39:13 2026 by rpki-client