Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: 0CIAafCPsLcYWNTAob072PT6HpFEQed2fBbTRm1FxGc=
Subject key identifier: 9F:55:E9:47:FE:87:E2:C9:45:92:05:DD:8D:1A:FA:ED:F0:D0:B3:EB
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 019E300590CE394B9B63D000E04E33BB6720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 0740
Signing time: Sat 16 May 2026 09:02:11 +0000
Manifest this update: Sat 16 May 2026 09:02:11 +0000
Manifest next update: Sun 17 May 2026 09:02:11 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: YVytXpzzgiCkrONOgCGeYx1enGL70c+Zj0Wt79txh0Q=)
2: Lljg_xH1KTEyF8YtQpFDhU2fq9M.roa (hash: G0j8nubF5nQiwgPwwabVEZQZZTMIJxsI563KIITxMI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:90:ce:39:4b:9b:63:d0:00:e0:4e:33:bb:67:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: May 16 09:02:11 2026 GMT
Not After : May 17 09:02:11 2026 GMT
Subject: CN=9f55e947fe87e2c9459205dd8d1afaedf0d0b3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c4:8e:fe:ef:e0:05:56:f1:d4:5c:58:c9:58:
0e:dc:7f:1a:8d:73:fb:88:65:5e:a9:42:0c:a1:02:
85:67:51:f7:4f:43:9c:ef:9c:46:98:a8:95:c9:d2:
a7:43:57:1a:29:da:6b:bf:45:63:64:89:94:86:2a:
ee:f5:f2:3e:93:37:43:c0:b6:eb:a0:7d:50:eb:dc:
1e:c8:4e:60:99:85:68:c9:e5:22:3b:1e:f4:35:dd:
69:62:9b:63:e1:9e:87:7c:1d:55:8e:cd:20:c6:a9:
9a:5f:e2:c7:48:8a:9c:d9:47:3b:0f:df:73:fb:8b:
2a:67:d2:d0:74:84:f4:74:92:a4:65:f8:92:bd:ee:
c0:37:f0:38:07:93:ee:14:e3:ac:80:f9:e9:7d:59:
a8:01:48:74:3f:c2:97:c7:98:b1:1e:a3:d4:f2:6e:
d3:d5:ad:ab:e7:a2:48:69:f1:2f:d9:e1:17:3c:03:
b3:52:63:2e:99:bf:72:08:4b:bf:b7:de:4e:c6:3b:
ff:a0:03:03:21:e2:b5:bc:b1:24:55:24:3a:e2:04:
5a:d5:a5:db:e8:d6:bf:1d:38:15:97:e0:8a:ce:99:
e4:8e:f7:d5:2c:9a:c2:43:16:8e:54:43:e0:36:05:
42:78:92:51:93:ed:32:0a:62:b6:a3:d4:58:37:92:
dc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:55:E9:47:FE:87:E2:C9:45:92:05:DD:8D:1A:FA:ED:F0:D0:B3:EB
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:64:19:23:89:e9:19:fa:a6:31:13:9c:cc:4c:c0:46:63:76:
8d:cf:38:1e:df:b2:f0:7b:1d:60:9e:09:99:82:c4:f1:b9:c3:
6d:7f:f5:0b:f2:97:a3:08:a7:9e:a3:ee:af:40:c7:69:70:5e:
86:8f:dd:15:63:b8:b3:98:67:6c:67:f9:81:84:d0:a7:b4:fe:
4b:2c:46:3c:4a:6e:c4:7c:41:5f:ad:26:66:f8:f2:82:60:60:
e7:59:c8:1d:4f:f8:6e:77:ba:82:55:d2:ad:80:a5:79:58:53:
d4:85:5b:5e:d1:f0:04:e2:8e:ba:03:de:d8:6f:44:74:41:6f:
36:dc:77:f8:14:54:a8:ad:10:10:dd:50:c7:6c:09:64:97:b6:
a7:a2:eb:47:70:29:53:1b:96:ac:39:f2:99:c5:bf:58:fc:a7:
59:30:29:05:c5:86:06:54:05:f0:51:ed:20:04:8b:00:45:da:
5d:80:50:d0:a6:27:fc:5d:72:af:5b:dc:00:d1:14:9c:8a:05:
f6:82:ac:16:8d:1f:7e:cb:7d:98:9e:60:1b:37:03:56:d9:f6:
4f:15:23:42:f4:35:e2:01:1f:28:0c:e6:1f:fe:d4:42:c9:2e:
73:d8:c3:3e:72:15:c6:2a:be:95:6b:74:f0:e7:77:b5:10:17:
ff:38:1e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:24 2026 by rpki-client