Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
File: R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft (raw, json)
Hash identifier: C/ilx2S0YOACixCTAQKi8ifk+4tmP9e2yx3ZecimToA=
Subject key identifier: F9:07:0D:AD:8A:23:75:AB:90:EB:AE:0C:D2:93:DE:33:DD:43:0E:CA
Authority key identifier: 47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
Certificate issuer: /CN=47e5d333dad9d62d5328d12578a31def42af8f34
Certificate serial: 019DCFABB1877A24907604B706C541D2E9EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
Manifest number: 0B5E
Signing time: Mon 27 Apr 2026 16:00:28 +0000
Manifest this update: Mon 27 Apr 2026 16:00:28 +0000
Manifest next update: Tue 28 Apr 2026 16:00:28 +0000
Files and hashes: 1: R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl (hash: 6ZM+8vZsel9uxTNSgnmhV7iqUgBDjj1LYxc7kr9PagI=)
2: lDMKh21Wt4FbbKS1OgeKAWJLOUA.roa (hash: 3L7WTrIU7aPDIrcLzqUSb6E2nzrLgIJ/FaZM9uhhyxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 16:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ab:b1:87:7a:24:90:76:04:b7:06:c5:41:d2:e9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e5d333dad9d62d5328d12578a31def42af8f34
Validity
Not Before: Apr 27 16:00:28 2026 GMT
Not After : Apr 28 16:00:28 2026 GMT
Subject: CN=f9070dad8a2375ab90ebae0cd293de33dd430eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:14:70:41:5d:73:50:07:42:0f:61:36:6f:06:
01:af:c1:9d:c3:89:27:5c:c8:56:1f:4a:d0:c1:1e:
b3:7c:12:1c:dd:c9:17:e2:27:3d:7a:72:3f:b3:95:
09:73:e6:31:97:13:4a:0d:4d:2b:59:77:33:31:20:
12:e8:ab:6e:35:79:8a:7b:7a:c7:d5:9e:c6:4e:ef:
22:48:c1:80:7b:2d:f7:94:c0:9b:82:ee:05:83:22:
d2:2b:18:28:6c:0e:7a:6e:8b:a1:e7:0a:32:37:f0:
12:93:4d:ab:8d:c1:20:a3:2b:2c:24:2f:fc:23:8b:
c9:b8:ac:ab:2e:29:9b:6a:97:c3:e0:af:ef:d9:cd:
ce:3d:01:15:89:08:9c:64:e9:9e:cd:ac:ee:64:e1:
c1:f1:2b:b9:27:eb:e5:c7:17:34:de:1c:a3:56:52:
7f:1b:bf:66:f3:a5:1e:64:5b:75:eb:28:c9:a6:2e:
77:e1:c7:d1:e6:1a:29:43:8c:88:eb:e7:dd:76:87:
2b:d8:48:9d:4c:90:c5:9a:a5:a3:2d:be:fc:ca:32:
10:4c:14:04:6f:ac:13:4a:dc:43:cd:f1:d0:ee:be:
32:72:a1:f2:aa:07:c3:44:9a:27:cd:fa:33:bb:ec:
10:5a:af:b3:77:4c:98:81:f5:0b:ec:92:b2:1e:f9:
ff:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:07:0D:AD:8A:23:75:AB:90:EB:AE:0C:D2:93:DE:33:DD:43:0E:CA
X509v3 Authority Key Identifier:
keyid:47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:59:08:88:8d:7a:ba:17:0e:00:47:a7:c9:cc:3c:5c:0e:c5:
a2:58:a5:1f:38:71:42:da:35:b9:50:e1:d4:87:80:62:46:0b:
7d:fb:94:97:47:03:4e:7f:06:6c:35:b0:4c:2c:81:0b:7b:5c:
6e:d5:8f:f6:f7:50:fb:8e:95:a9:e2:22:ed:5e:43:a3:1f:c5:
7d:29:09:3b:b3:e9:4c:cc:b0:e5:70:7f:ea:49:47:1c:8f:07:
b4:a8:e3:d1:fe:f5:eb:80:f2:05:95:c1:9d:71:1b:e4:b4:e0:
3c:b2:de:1d:c5:e6:7a:5c:09:7f:33:53:4c:63:32:b7:15:dd:
f4:d4:13:65:b4:b0:08:5a:bd:04:4a:b3:e5:47:02:72:70:8d:
fb:7a:59:0f:cb:9a:75:7b:2c:9f:d4:ed:b3:56:d8:f9:0c:22:
cb:63:ed:7d:4b:56:30:75:77:ec:cc:69:a5:35:20:a3:25:84:
06:13:25:fa:15:3d:64:4d:14:85:12:78:96:c0:e3:a1:71:ba:
39:de:c5:b4:8a:65:9f:2e:52:f8:3c:ac:76:a9:fe:1e:ab:2c:
c6:3b:2a:c3:fd:18:e3:a5:a0:d6:78:7b:a1:80:19:bb:d8:c0:
89:4d:a5:ba:fa:56:c3:94:8b:17:9e:ae:f5:21:12:15:cb:ca:
d4:a6:f5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 00:31:51 2026 by rpki-client