Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
File: r9I8xVrurzN-23Pq4ltZCXoneEw.mft (raw, json)
Hash identifier: 83EQlX92aSdg9+wBKHlWgiusAf0+YzlRKjf71O/Dt8Y=
Subject key identifier: 12:8F:6A:30:8E:D7:AE:15:8E:CB:3D:E6:3C:24:F3:A8:47:03:FE:5D
Authority key identifier: AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
Certificate issuer: /CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Certificate serial: 019D38D3BABD96D8B594497200FB5F3A50F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 09:01:33 +0000
Manifest this update: Sun 29 Mar 2026 09:01:33 +0000
Manifest next update: Mon 30 Mar 2026 09:01:33 +0000
Files and hashes: 1: EgkLrTbqfCqKtc1_HO_4N3RqgDA.roa (hash: hSie2Ig7NXZ8GW1BlGvPkiht1lHg7Q/uBsfmB2XjW4k=)
2: r9I8xVrurzN-23Pq4ltZCXoneEw.crl (hash: En1R0pYYCMdYpSefwR9tdN3cNdKu6kw8RAL7HLctHT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:ba:bd:96:d8:b5:94:49:72:00:fb:5f:3a:50:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Validity
Not Before: Mar 29 09:01:33 2026 GMT
Not After : Mar 30 09:01:33 2026 GMT
Subject: CN=128f6a308ed7ae158ecb3de63c24f3a84703fe5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8a:40:31:7c:30:6a:11:15:5d:4e:78:1f:32:
82:86:c2:af:52:aa:3c:11:16:1d:8b:fc:2d:3e:92:
84:9f:46:71:00:0a:1b:d4:bc:7c:44:d8:0a:76:40:
59:80:9f:35:0c:74:16:62:77:aa:9a:3f:bd:a9:e6:
86:ec:b4:45:2d:2d:2e:9f:fd:ea:eb:38:53:23:38:
f5:08:fb:63:a4:5a:66:c3:9f:a0:72:f0:34:37:07:
d9:c1:f2:ca:22:b8:7d:58:af:53:57:14:73:59:ce:
09:25:da:6a:fb:87:06:44:2d:6d:af:0e:c8:0f:97:
f2:98:09:e2:2c:a2:8c:35:76:94:b9:ef:f4:7b:2f:
21:23:66:a2:1f:53:e4:e6:a1:a0:9d:be:d2:7b:11:
e7:ec:2a:06:2d:87:3b:a7:7e:36:6d:e2:72:78:ef:
85:f8:17:2a:96:c6:9e:c5:00:16:96:e3:18:0f:5b:
0d:6b:c8:a1:57:67:d7:d5:a7:45:81:8e:02:2f:6d:
18:87:4c:90:ce:28:b2:b0:79:cd:ac:f5:31:c5:1f:
30:5d:2f:f6:81:19:a2:99:cf:44:cb:d0:a9:46:bf:
ac:68:46:7e:20:28:67:08:9a:63:bf:3a:47:b8:c5:
1d:2e:6a:bf:ef:ba:b7:28:cc:55:e1:a3:88:58:92:
3f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8F:6A:30:8E:D7:AE:15:8E:CB:3D:E6:3C:24:F3:A8:47:03:FE:5D
X509v3 Authority Key Identifier:
keyid:AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:12:13:aa:ee:c9:2d:df:98:e1:81:4d:9c:7e:14:10:92:5f:
65:e5:b1:b5:f2:bd:3b:ef:df:35:b7:14:0c:94:16:b3:9f:10:
6e:40:c4:df:f9:27:ab:39:d5:dc:2b:95:71:dd:98:33:41:0a:
ea:47:5d:95:c4:ac:46:2f:20:a6:e7:02:fd:5a:df:9c:53:62:
be:c6:e9:2a:0c:28:0b:03:01:17:6b:ca:42:3f:9e:b3:2b:72:
cf:cc:0e:4c:c6:ee:dd:20:a3:92:eb:a2:c5:f5:33:91:b4:77:
47:96:06:f5:37:4a:25:09:ff:65:55:36:25:40:c2:e8:90:c5:
c8:9f:2c:7b:32:2e:1d:28:ff:17:50:a1:55:77:8a:2d:b2:78:
93:2a:f4:ec:d1:25:6a:7f:1e:a9:98:57:e6:ef:8e:14:91:05:
4b:e4:16:08:18:2c:43:78:ec:78:53:e0:8a:23:fa:31:be:d1:
9a:b3:29:e3:fe:2b:d7:58:1a:fa:67:79:1d:b2:28:55:a6:50:
fe:a4:ba:f3:f1:b9:86:09:58:47:4a:0b:ba:e6:46:75:7f:e1:
8e:33:aa:0b:8d:22:31:14:3a:c1:fa:2b:8c:45:e8:8e:6d:be:
72:20:ed:80:a1:76:9c:eb:8d:f5:07:1e:32:6a:f7:3d:7b:89:
7c:13:9e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:02 2026 by rpki-client