Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
File: T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft (raw, json)
Hash identifier: 88xNrzZTTxRPr0YONmI/CnRBWSa9ErYws9WFyN8LldI=
Subject key identifier: 90:5C:9B:68:F8:92:B7:70:8F:54:96:4F:20:B2:94:D8:B0:A1:02:7A
Authority key identifier: 4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
Certificate issuer: /CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Certificate serial: 019D38D3383967374C98888CCD7AE9867CD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
Manifest number: 09D9
Signing time: Sun 29 Mar 2026 09:00:59 +0000
Manifest this update: Sun 29 Mar 2026 09:00:59 +0000
Manifest next update: Mon 30 Mar 2026 09:00:59 +0000
Files and hashes: 1: T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl (hash: FFs1y+LXJtIP162d6kaKU83ehfSUTs+Fj8hF8B2PptE=)
2: jqFl-7_gLpulPBCBNUBkTagrN3g.roa (hash: 7OT128HVnPG3xzUxRNuL4t2bFGILvHb7kyCtTCl4GV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:38:39:67:37:4c:98:88:8c:cd:7a:e9:86:7c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Validity
Not Before: Mar 29 09:00:59 2026 GMT
Not After : Mar 30 09:00:59 2026 GMT
Subject: CN=905c9b68f892b7708f54964f20b294d8b0a1027a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:40:75:4a:ed:0c:c3:9c:59:d0:13:3d:6c:
cd:5b:3f:68:2f:4e:fa:14:46:c0:b4:f5:19:90:68:
67:6d:4e:5c:bc:ee:83:7f:0d:c5:b2:d9:d1:60:a8:
a8:90:da:5e:bd:70:71:d2:40:d4:72:d9:2f:59:67:
31:d6:2d:6b:a2:68:32:b1:ed:2e:1c:c7:4c:69:96:
f4:aa:49:19:38:ac:8f:63:0f:8b:c4:60:1c:d7:06:
aa:3d:30:82:93:e5:52:d6:20:6d:1c:6b:f0:58:da:
cc:b7:aa:8b:57:e1:b3:5d:b0:6b:11:69:d9:ec:45:
f9:1b:25:ae:ef:bc:31:45:35:de:f0:be:d4:38:cc:
40:fc:93:df:6f:fb:b3:30:18:ef:0f:6c:86:3c:56:
d5:ee:e6:aa:54:9b:56:f6:88:44:a6:e3:f9:04:ac:
99:e6:10:04:cf:73:2e:e9:11:f4:be:0e:8f:6e:10:
3e:1e:cc:3f:f4:60:39:50:65:4b:ff:e1:39:04:47:
b4:6f:64:bd:ff:c1:2c:f1:9f:4b:10:1c:51:0e:48:
34:ce:d1:08:48:b9:b0:50:06:d8:ab:93:22:48:ed:
52:49:5f:d1:b3:ac:76:8d:45:7d:21:ca:0b:ad:31:
60:b5:f2:4d:0f:86:94:36:b0:bc:73:f5:26:59:da:
70:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5C:9B:68:F8:92:B7:70:8F:54:96:4F:20:B2:94:D8:B0:A1:02:7A
X509v3 Authority Key Identifier:
keyid:4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:39:df:aa:58:07:9a:58:be:be:0f:2c:91:f3:39:56:cf:ed:
fa:9d:23:74:e7:aa:cf:38:88:b2:c9:f7:59:ee:c6:28:ae:94:
27:22:f5:f0:78:be:93:73:50:17:80:2a:24:2e:eb:93:b3:24:
7b:cc:00:3d:1b:50:a4:8b:a5:f0:ac:52:14:b5:07:bb:1f:0f:
7c:5e:45:ce:65:ba:c0:03:39:28:ad:1f:61:e5:89:6a:2d:0e:
7e:1d:d2:fa:11:44:50:17:0b:b6:26:d0:f6:80:69:85:89:ec:
8d:00:77:4e:15:42:f6:58:7a:28:11:21:aa:69:80:19:43:d2:
7a:04:d1:5f:54:fe:da:7c:9a:f1:fc:27:da:9b:7d:2e:f6:fb:
36:61:25:30:36:de:25:17:0c:df:57:bd:e9:ca:9b:ba:c6:fa:
ab:f6:78:3c:f8:80:79:dd:55:3b:37:e2:23:98:84:21:a3:76:
a1:34:c9:27:e6:69:52:6d:95:c6:31:86:dc:89:76:68:d2:15:
a3:9b:fd:e5:a1:c6:81:8c:46:f1:66:45:a0:db:41:92:d6:5d:
66:88:24:e3:d7:f7:51:e2:5d:5e:9a:cf:4b:c3:ff:f8:81:45:
c0:c6:44:48:9b:38:3a:b6:6e:92:8b:7e:ea:dc:36:2d:10:68:
9a:e7:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:18 2026 by rpki-client