Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
File: 9YQK34T7C3WOuopaE1qYA5Pov3M.mft (raw, json)
Hash identifier: IL4oPOlq06f0W+mjj3twPFETGQrTx9/gCzhINPl3Fqg=
Subject key identifier: FA:65:D7:9D:94:7B:3E:AC:0A:F7:14:CD:3F:57:2D:92:1D:30:3B:A0
Authority key identifier: F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
Certificate issuer: /CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Certificate serial: 019D3909F11008E2BB4FB5B91816BCE0FD03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
Manifest number: 043B
Signing time: Sun 29 Mar 2026 10:00:45 +0000
Manifest this update: Sun 29 Mar 2026 10:00:45 +0000
Manifest next update: Mon 30 Mar 2026 10:00:45 +0000
Files and hashes: 1: 9YQK34T7C3WOuopaE1qYA5Pov3M.crl (hash: yyM88w/i9EQPTQxUmaBbrXg2oWPsbZnN+ZokHLbcFD4=)
2: drA-qEeuOhXaBIliMFDyRwjzUIs.roa (hash: LRSsWiFp5H7cghjLHXgtjNhMqPss6jgTVs0oIRjr8vo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:f1:10:08:e2:bb:4f:b5:b9:18:16:bc:e0:fd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Validity
Not Before: Mar 29 10:00:45 2026 GMT
Not After : Mar 30 10:00:45 2026 GMT
Subject: CN=fa65d79d947b3eac0af714cd3f572d921d303ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5c:31:54:6d:25:e2:80:12:e8:13:d8:0f:55:
db:a9:89:8c:ee:6d:50:28:95:e7:ab:84:b5:72:bf:
41:f2:ca:35:e1:4d:a5:38:1a:72:fc:d9:d7:2d:a3:
91:a1:29:47:80:ef:e0:b2:ee:72:4c:56:28:5f:21:
c7:6a:1e:65:91:06:be:ec:35:0e:1d:58:ba:2e:5c:
2f:54:43:5c:2b:8c:02:21:bf:48:65:4e:aa:d5:ac:
6d:26:c5:e0:f8:74:da:68:1b:92:5f:97:18:40:72:
a3:6f:d8:e4:d5:2d:35:9c:b0:a4:93:b6:b7:76:1b:
cd:66:8b:7c:6c:04:ef:46:d7:c5:27:07:03:73:76:
e9:3b:1e:d6:ce:05:f8:b1:47:73:5b:cd:ae:0b:69:
10:cb:ee:a7:00:51:f3:ea:b2:60:ec:b7:e0:e0:ee:
ed:68:d3:f7:b4:b6:d2:8b:67:0d:28:c2:38:ba:6a:
6a:81:1a:1c:6f:f8:ed:4a:a5:33:b7:71:4a:71:55:
d9:d3:ac:ec:63:ff:39:9f:c6:78:34:74:eb:d0:ed:
a6:13:1a:f2:b0:58:30:12:35:38:72:de:06:e4:56:
04:7b:03:21:f0:af:24:9f:27:6f:b3:64:72:37:bf:
1a:8c:cb:0d:36:cd:b8:e3:16:fd:1c:03:9b:11:44:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:65:D7:9D:94:7B:3E:AC:0A:F7:14:CD:3F:57:2D:92:1D:30:3B:A0
X509v3 Authority Key Identifier:
keyid:F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f3:ee:bf:83:7f:db:4c:49:b6:95:8c:fc:a5:91:22:cc:ea:
b3:c8:be:8e:40:5b:aa:09:0b:77:bb:ec:2a:9c:4f:9d:20:97:
9d:71:f6:bd:05:95:a3:0e:59:d8:6f:9c:e4:d4:56:fd:c9:4c:
87:27:f5:bd:3d:90:0b:63:19:a8:34:79:5f:0f:6b:be:3f:0d:
7b:f6:eb:e6:f4:f3:28:4c:bf:42:44:95:44:6a:e7:b1:e4:7f:
9d:ab:87:a4:c0:c0:9e:4c:c1:c4:d8:e9:f8:1b:c4:19:d6:2f:
ff:2d:6c:e3:b2:ad:3d:6a:1d:5e:b6:c3:b0:ab:1f:0e:01:61:
ab:8d:db:f5:2d:f9:47:f8:6a:2a:8c:d0:73:71:c0:42:5f:1b:
59:f6:97:ee:32:db:b3:ab:3b:fc:cf:9a:f3:ef:8f:3c:99:a1:
f0:6a:03:43:66:00:fd:1e:72:74:0a:6a:e0:b5:3d:28:6e:fb:
1e:39:10:1d:ce:ac:2c:13:ec:9d:15:a3:ce:a1:b7:94:df:0c:
62:3b:b6:79:c7:c2:71:83:a8:5a:de:b5:ce:c9:06:d4:b0:49:
f7:d0:3d:a4:2f:72:70:1e:a3:da:8a:6b:b2:84:e8:2b:03:ba:
09:7b:b0:87:95:a8:03:4b:60:18:78:ca:5c:f3:96:dd:6f:ec:
d6:10:83:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:38 2026 by rpki-client