Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
File: 9rkcLAjwDWdj0unmosRCETDz3b0.mft (raw, json)
Hash identifier: nltBqur0DCZKAsI8OTHbxPeuLdrDeCTASvhKDOWBmnA=
Subject key identifier: 5B:90:1B:05:0F:24:B2:80:ED:6A:2B:7D:80:DD:E8:89:E4:2A:A8:EF
Authority key identifier: F6:B9:1C:2C:08:F0:0D:67:63:D2:E9:E6:A2:C4:42:11:30:F3:DD:BD
Certificate issuer: /CN=f6b91c2c08f00d6763d2e9e6a2c4421130f3ddbd
Certificate serial: 019D389C3594B76839743606530BF988DCAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
Manifest number: 053D
Signing time: Sun 29 Mar 2026 08:00:54 +0000
Manifest this update: Sun 29 Mar 2026 08:00:54 +0000
Manifest next update: Mon 30 Mar 2026 08:00:54 +0000
Files and hashes: 1: 9rkcLAjwDWdj0unmosRCETDz3b0.crl (hash: 8amQkSUwBsQCil/n+zTlALbbPwtHOwgg8Pj5h14HQiI=)
2: O9gvHkG2h2zO-WbCdSfRap-erlk.roa (hash: oEpItWYo36cnFY6gqJseSt67WlSCENpXs7wywbBecHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:35:94:b7:68:39:74:36:06:53:0b:f9:88:dc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6b91c2c08f00d6763d2e9e6a2c4421130f3ddbd
Validity
Not Before: Mar 29 08:00:54 2026 GMT
Not After : Mar 30 08:00:54 2026 GMT
Subject: CN=5b901b050f24b280ed6a2b7d80dde889e42aa8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:39:9a:a4:ad:f9:d6:e8:36:d4:4f:d0:bc:8c:
dc:5b:5d:ba:57:b7:d8:9e:24:83:d0:7d:a7:76:b4:
94:ab:4f:2e:99:48:3e:7d:b8:ce:2c:25:c1:90:86:
1a:fe:f3:14:27:4c:89:40:89:94:6d:d5:2e:80:74:
b6:2c:ff:1b:be:0e:86:08:be:b2:d3:74:88:c9:70:
08:f3:fd:dc:ca:3f:3b:91:e2:73:5f:6f:d9:ca:77:
8c:da:96:99:1c:37:07:bf:00:3e:96:bf:90:8f:8e:
10:53:39:21:c4:e5:ca:a3:28:10:a3:9d:c8:bb:f2:
1f:00:34:59:ba:0c:2e:55:4d:44:80:e4:1d:e0:b7:
32:26:94:54:d3:d7:ab:6e:52:c8:a1:a1:f4:bf:f0:
e6:5b:dc:4d:65:42:db:a1:d4:10:d6:80:e8:4a:21:
80:eb:e1:73:6a:8b:18:d4:37:af:f4:2d:b4:dc:9b:
12:55:e2:cc:f0:66:8d:26:b2:76:1f:6d:9f:5d:64:
96:bb:25:4b:34:3c:87:96:f0:5b:74:ef:43:9b:59:
1f:20:21:d9:9f:5f:0a:f1:e4:49:35:3e:1f:93:29:
8f:d5:c4:b3:da:1f:fb:f6:10:d8:fc:14:6e:5c:9a:
a1:c1:0d:6a:ce:29:2c:67:dc:88:ee:dd:c3:c7:38:
19:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:90:1B:05:0F:24:B2:80:ED:6A:2B:7D:80:DD:E8:89:E4:2A:A8:EF
X509v3 Authority Key Identifier:
keyid:F6:B9:1C:2C:08:F0:0D:67:63:D2:E9:E6:A2:C4:42:11:30:F3:DD:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:34:79:84:0f:5c:80:24:1b:8f:99:67:1f:52:50:9c:c5:c8:
1f:d5:9c:15:cb:18:9d:7a:71:ad:a1:06:fb:eb:61:76:c7:c2:
e5:5b:aa:72:56:c6:bc:26:3f:44:07:08:3f:a3:10:6e:50:31:
09:43:03:29:d7:18:36:ae:08:55:6b:74:fb:05:35:a0:34:05:
34:a3:17:74:5d:25:db:61:a5:6b:d5:a2:bf:4a:bf:42:07:78:
fc:8b:0a:0c:d8:48:71:14:23:d5:1d:46:3c:a2:d1:d0:26:19:
74:d4:b6:dc:a8:af:74:75:6a:61:10:34:33:e8:ba:c1:8d:e7:
b1:b5:6d:10:df:89:6d:ea:ab:6d:e3:b7:b5:08:38:c2:f7:b4:
a6:a5:8e:3a:b6:e2:1b:11:d6:4d:ce:c4:47:21:24:fe:77:c3:
bb:1e:c7:1b:13:9c:f7:ea:c2:4f:cc:09:45:8c:13:24:9b:a8:
e4:3d:c0:22:75:fb:e8:81:d0:cd:79:ae:24:97:f0:74:03:9c:
f9:7e:bb:4f:7e:f0:bd:e2:7e:1f:b2:39:ec:57:f4:ce:6c:f4:
a7:cf:e3:5d:d9:3e:75:67:26:eb:d9:98:7c:c0:fd:7b:6d:e2:
42:92:38:5e:00:04:75:2a:61:89:96:f4:0e:6b:e2:a6:0a:dc:
0b:2b:3e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:40 2026 by rpki-client