Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
File: 9OQPA5eaP05K052pg7Z7p-YhXA0.mft (raw, json)
Hash identifier: a+lf+chw+Faz7InI6Mi/dCDrDSnnzLUltR2WrETVBss=
Subject key identifier: 6D:87:30:34:D9:70:26:9F:BD:A4:88:FC:B1:1F:94:44:B1:1D:E7:41
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 019F178BB855785FB84FE514D6ED89288D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 08:01:00 +0000
Manifest this update: Tue 30 Jun 2026 08:01:00 +0000
Manifest next update: Wed 01 Jul 2026 08:01:00 +0000
Files and hashes: 1: 9OQPA5eaP05K052pg7Z7p-YhXA0.crl (hash: MlEi/v1TmkYpr38tX0dcTes/XII6D+7p0wdyr0Jdnt0=)
2: FXnznPhn55vYjBoYQttg28E4IK0.roa (hash: Dl0FXZLA3s/7+Hd8tk5PaoTmm8/8008Q5/BvoslwSfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:b8:55:78:5f:b8:4f:e5:14:d6:ed:89:28:8d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: Jun 30 08:01:00 2026 GMT
Not After : Jul 1 08:01:00 2026 GMT
Subject: CN=6d873034d970269fbda488fcb11f9444b11de741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f3:38:b1:f2:fe:24:bd:33:09:54:c6:76:47:
79:29:9a:7e:c5:42:70:e3:de:f7:48:f7:9b:6c:58:
fe:db:9f:a2:2d:9e:7d:8d:c1:c4:36:b1:fa:b3:34:
be:c0:42:7a:d7:d0:57:1c:24:8e:7d:7b:40:5b:4b:
32:f5:24:e6:69:b5:b9:17:fd:f6:07:37:91:ca:c4:
78:82:98:d6:56:64:c9:38:2e:c4:77:27:fb:df:69:
1c:dd:80:07:5d:d0:5b:b1:c5:03:67:e0:78:ef:92:
55:44:62:b9:b0:be:3c:95:7b:db:82:a3:40:6d:ba:
88:b2:a5:c9:6b:36:64:a5:aa:ca:a0:60:8a:87:56:
5f:50:35:fc:ef:8c:b8:79:0c:4a:03:cb:ba:df:39:
8d:5d:0a:3f:da:b1:7a:59:20:cd:d0:93:30:8a:58:
e0:f4:81:64:b7:ef:ca:a9:b6:29:f7:b6:2b:52:89:
57:31:87:a9:fd:b9:c3:43:f6:79:56:c2:d7:75:b7:
13:36:5b:71:13:5f:c4:14:9a:d2:bf:0c:85:dc:66:
eb:d4:9d:09:ec:3f:6f:58:68:26:12:c0:07:da:de:
3f:a7:7e:a5:98:2e:36:d3:55:0b:ba:15:9b:e7:15:
86:c8:ce:a2:c4:ab:23:60:85:0a:15:f9:e6:36:2a:
05:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:87:30:34:D9:70:26:9F:BD:A4:88:FC:B1:1F:94:44:B1:1D:E7:41
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:f1:97:6b:36:74:b4:fb:74:29:ff:78:df:84:09:c3:d5:6d:
75:df:72:b2:1b:e2:9c:38:57:cc:c6:01:9b:c7:61:9c:23:f7:
21:d9:73:82:b4:f8:ad:88:51:03:d3:59:9f:6a:22:6f:3c:ef:
96:4e:8b:1c:75:17:b9:8c:07:07:fc:49:ee:6e:25:53:ad:f6:
9b:44:a2:2d:0a:7e:da:13:d6:d0:ba:e7:de:f2:bc:e5:b5:61:
2e:0d:2c:44:92:c7:26:f4:25:bb:96:63:0a:9f:84:ab:96:bd:
68:bc:04:a8:0c:48:66:69:be:d4:b0:1f:bc:a8:3f:1e:d1:a8:
0f:50:aa:8c:00:a6:7d:9e:92:92:5b:4e:c6:3e:a7:2f:7a:c6:
f8:29:fe:72:23:56:7e:ba:0e:b9:a6:63:f3:ec:4e:7c:9e:15:
dc:ae:39:d7:5e:55:b9:58:d1:8e:3e:7c:9c:78:60:6e:d0:f6:
ad:16:b5:f8:6c:86:15:ba:38:cf:ba:d4:37:6e:70:8c:dd:c4:
44:ba:a9:c0:cc:de:b9:44:68:9a:9e:23:9a:4e:c2:ee:a1:59:
b5:a8:24:ed:00:8b:99:41:ae:5d:6e:51:4d:72:b7:67:6e:83:
d1:44:4a:36:e0:48:d1:e4:ae:a0:c6:2a:1e:6e:03:81:4d:91:
68:21:3a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:51 2026 by rpki-client