Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
File: 9OQPA5eaP05K052pg7Z7p-YhXA0.mft (raw, json)
Hash identifier: RifcS+etjkWLXJJkZzhnoHfgFVNpb8eh0wdFa2Z3aQU=
Subject key identifier: 35:54:58:E4:AD:F0:7A:D8:D7:C1:22:DC:AB:49:39:75:43:16:AF:BA
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 019E2FCDF3C531E227C4916998CCFD0239B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 08:01:26 +0000
Manifest this update: Sat 16 May 2026 08:01:26 +0000
Manifest next update: Sun 17 May 2026 08:01:26 +0000
Files and hashes: 1: 9OQPA5eaP05K052pg7Z7p-YhXA0.crl (hash: jFiLopXyOglyhsYV6ruZrNImz4+JtMzQyKTqshWbL28=)
2: FXnznPhn55vYjBoYQttg28E4IK0.roa (hash: Dl0FXZLA3s/7+Hd8tk5PaoTmm8/8008Q5/BvoslwSfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:f3:c5:31:e2:27:c4:91:69:98:cc:fd:02:39:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: May 16 08:01:26 2026 GMT
Not After : May 17 08:01:26 2026 GMT
Subject: CN=355458e4adf07ad8d7c122dcab4939754316afba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1c:5c:cb:22:d1:d2:aa:a7:00:be:7d:96:3c:
a0:fe:38:b6:d1:cb:dd:21:24:09:b2:21:4b:a2:6f:
8b:f1:f6:7e:33:0e:6c:f0:18:cc:49:a2:d4:a9:a7:
34:d6:d6:b2:f6:a9:75:2b:e7:86:7d:f6:42:e9:7d:
a7:cb:f8:07:53:3f:fb:da:59:95:77:47:0d:3e:2a:
99:74:62:37:55:cf:b5:23:4a:48:30:fa:83:ce:0f:
3d:bc:44:15:39:1f:2e:3d:da:33:21:92:79:a8:35:
95:3b:d7:54:d7:c1:96:c7:f6:b2:99:f6:3c:0d:50:
c8:d3:aa:4f:a7:c6:1e:2e:92:91:6b:02:15:dd:f9:
d5:0b:19:5f:4a:19:24:e4:55:b3:66:6c:b8:64:b5:
8c:ea:b9:74:fa:e4:95:22:d2:4f:8e:12:7d:6f:b9:
ec:bb:4a:0c:3a:57:89:71:71:8d:97:f1:67:fb:5a:
36:c4:9e:cb:9a:4d:80:e5:c1:a5:ad:b5:5b:cb:6d:
d9:21:43:a8:41:f2:67:a7:fd:e5:ee:35:1f:f6:0c:
25:7d:2b:32:44:71:a3:f2:b0:19:cb:15:66:4b:7a:
9e:f2:4c:ce:0a:e3:d2:69:32:c6:fa:90:b7:ce:49:
94:10:4f:25:a1:17:a5:cc:79:37:8f:36:4a:a7:1f:
d7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:54:58:E4:AD:F0:7A:D8:D7:C1:22:DC:AB:49:39:75:43:16:AF:BA
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e8:68:94:22:62:22:b6:91:ff:66:77:7c:a6:0e:1c:08:1f:
a0:a6:42:6e:91:66:4d:18:19:c6:c5:45:a8:98:2e:91:e8:26:
c5:68:98:b0:dc:3e:06:b7:8a:b4:4d:54:dd:0e:b9:87:20:ec:
24:b1:53:fc:ac:c7:84:7f:18:16:f2:96:25:c3:dc:74:27:2b:
a1:20:ab:5e:08:94:f8:95:af:a5:6d:f4:5f:c2:6c:b5:d1:63:
da:a9:e6:f8:57:65:6a:e2:90:ee:46:88:b3:25:7b:20:1e:4c:
23:2b:da:ad:4a:65:6b:89:1c:5b:74:24:c3:e5:39:58:31:74:
22:ff:1f:8c:2b:57:5b:f8:b9:8b:83:e4:eb:fe:b7:ef:05:1b:
eb:66:17:a5:5d:ca:b6:6b:0b:fd:c1:c4:cd:4f:6b:fe:f0:b7:
5d:a1:95:29:1f:a1:4b:4a:0a:cf:67:4b:48:c7:c3:a8:59:3b:
ff:02:09:6f:50:fe:2a:ad:45:63:fa:29:17:bb:f9:ae:7f:73:
a2:b4:e9:7a:46:66:b2:8f:f2:43:99:62:2c:13:d8:2b:97:1e:
f0:1d:dd:46:45:9e:a9:1b:31:29:4f:ef:8b:c1:b9:a3:a2:e7:
f8:c8:c2:49:d0:d1:89:fc:03:88:95:fb:fa:73:a4:42:3f:55:
26:05:0f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:32 2026 by rpki-client