Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json)
Hash identifier: S3+JPdxWLBERPwt/ZiKHNRmDsZMtZLZeQGDJ0c/XUU4=
Subject key identifier: EF:41:6E:84:10:7F:13:21:12:79:47:C0:F1:1D:8F:F0:7E:7F:AE:90
Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Certificate serial: 019E314E5F79628EE8296385295A23210AEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
Manifest number: 0DE1
Signing time: Sat 16 May 2026 15:01:20 +0000
Manifest this update: Sat 16 May 2026 15:01:20 +0000
Manifest next update: Sun 17 May 2026 15:01:20 +0000
Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: 7EkAIhKk9VKFU0MkJKSve8Cb1VClA0SnKfvmBNJ+GAE=)
2: xhDUoIsJaJCqOA6VTkyeMee_Z9s.roa (hash: bDCv1HCZJO4EbMKAw0lf46zS80bqNn1qKkmrw6hFSH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:5f:79:62:8e:e8:29:63:85:29:5a:23:21:0a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Validity
Not Before: May 16 15:01:20 2026 GMT
Not After : May 17 15:01:20 2026 GMT
Subject: CN=ef416e84107f1321127947c0f11d8ff07e7fae90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:ac:14:e6:df:f8:17:78:a6:d0:b6:ad:91:
10:9f:81:4d:9e:5f:e6:dd:a6:de:2c:f5:c6:ac:a3:
c0:dc:de:72:04:70:ac:b7:8b:29:75:c4:46:c4:d5:
16:18:3e:07:23:20:21:24:67:30:7a:90:37:8a:13:
90:49:8f:cd:f7:f4:1f:c8:b5:65:aa:25:9a:49:ac:
86:eb:a7:79:ef:d8:ee:7d:ae:56:14:d9:f0:53:92:
f1:40:1d:85:67:71:cb:58:8b:b5:0b:8b:7c:89:39:
4c:e1:a1:18:c2:2a:19:81:d8:b5:1d:82:3f:8e:34:
a6:97:9c:8f:6f:c9:d6:8b:1d:b9:d6:f8:37:54:23:
3a:a6:1f:87:4a:72:32:32:eb:3b:ec:2e:86:0e:6d:
60:aa:e6:31:e2:6a:3d:be:e7:12:25:68:6e:33:0e:
76:6d:bf:b6:4c:7e:b6:5d:fe:86:27:ab:a8:3a:20:
c7:53:3b:64:c8:73:7f:b7:89:88:11:8f:7d:97:d2:
c5:7f:3e:fc:3f:0b:27:09:65:26:35:0e:ed:1d:95:
f4:fb:29:77:ed:8a:27:9d:93:aa:ab:97:ba:17:fa:
be:06:62:d1:bf:44:4f:2c:17:5f:37:bb:6f:73:b1:
dc:42:02:f6:62:6f:bf:c5:28:81:6b:11:f1:63:13:
2a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:41:6E:84:10:7F:13:21:12:79:47:C0:F1:1D:8F:F0:7E:7F:AE:90
X509v3 Authority Key Identifier:
keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:5f:8b:76:56:72:27:97:6c:63:97:0b:0e:40:0d:f6:99:8f:
68:27:dc:76:7c:35:c9:f7:18:d5:d6:b6:5b:58:e5:e6:d0:a9:
f9:61:0c:8e:d0:de:02:c3:6b:fb:ba:f8:af:4e:83:ff:a4:e1:
a6:47:ff:17:b6:16:95:58:6f:ce:91:fd:e9:77:8d:81:5f:68:
95:11:56:83:de:6b:c3:bf:0b:0e:ed:23:46:6e:30:f7:ad:43:
a8:bb:a1:cf:93:df:35:8a:37:e2:9a:77:fe:28:66:3e:d8:56:
9e:6c:a3:04:86:2b:2a:d5:f7:ef:87:68:76:52:55:34:2b:b6:
78:e3:78:68:0c:38:77:67:2e:d2:fc:c3:71:95:a2:09:4f:d7:
0f:eb:3e:76:10:d8:22:e1:c6:4c:32:e9:33:70:03:8a:0a:6c:
fc:1e:20:bc:dc:06:fd:d4:a8:8a:31:58:36:41:96:93:66:db:
45:10:fd:51:9e:87:2f:58:bb:58:b7:01:aa:77:2a:b6:ab:78:
9c:96:7c:39:47:c7:a6:da:a3:71:2e:fc:0a:ce:d7:51:2d:4f:
0a:58:3a:f7:36:8a:15:ef:2f:4a:73:5e:38:52:73:c3:33:c6:
9b:6c:06:ec:48:f1:61:30:8a:4a:23:7b:84:b1:e4:f6:02:2a:
2a:7d:01:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:38:25 2026 by rpki-client