Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json)
Hash identifier: 8I4wsN3OXkdCqNbRKIQ5AgGEFKUTAj+4LgSptq1RYs0=
Subject key identifier: 20:5B:7E:84:1C:14:E2:99:BE:0B:72:9B:CA:CA:F5:75:A7:9A:00:07
Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Certificate serial: 019D3A1C5CC3143E1603B58E4AE8F94A859B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
Manifest number: 0D61
Signing time: Sun 29 Mar 2026 15:00:30 +0000
Manifest this update: Sun 29 Mar 2026 15:00:30 +0000
Manifest next update: Mon 30 Mar 2026 15:00:30 +0000
Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: VolvOQpFQPdHEFgfyUakvtEoIcGpZahxuMmyexkhnIY=)
2: xhDUoIsJaJCqOA6VTkyeMee_Z9s.roa (hash: bDCv1HCZJO4EbMKAw0lf46zS80bqNn1qKkmrw6hFSH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:5c:c3:14:3e:16:03:b5:8e:4a:e8:f9:4a:85:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Validity
Not Before: Mar 29 15:00:30 2026 GMT
Not After : Mar 30 15:00:30 2026 GMT
Subject: CN=205b7e841c14e299be0b729bcacaf575a79a0007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8b:26:0c:48:44:2e:09:b3:f2:83:fa:5d:b9:
f6:0a:8c:c3:24:e4:2c:3f:97:88:57:19:28:bf:f4:
be:dd:e7:d1:25:11:16:a1:d4:3d:0e:cf:9e:89:03:
8f:1a:26:f3:73:35:b6:26:f8:e7:ab:8c:9e:3d:f6:
d7:16:ec:73:b2:82:6b:ce:39:fb:47:ad:2d:08:d1:
76:a0:df:5e:ec:f2:66:2f:99:11:94:fd:67:3e:cf:
86:9f:4c:02:d7:9d:c8:bb:ff:9e:71:db:86:e2:c3:
fb:af:45:86:4c:74:e3:13:85:c0:85:75:92:67:d3:
d4:5c:0a:29:9a:f2:7d:25:1a:43:c1:6b:9c:92:7e:
53:3b:73:93:2d:d4:67:ce:a8:64:b2:0f:ae:04:61:
c3:28:1a:56:73:9d:57:93:95:f2:26:c2:b6:8c:b0:
55:23:60:dc:a3:f8:19:2e:07:5a:73:a6:19:6e:72:
71:3f:df:d2:90:4c:71:3c:a3:49:53:5f:c1:c9:20:
2f:74:5a:49:eb:45:30:4f:fa:1c:b1:32:ca:7d:e2:
8f:72:cd:0b:73:8e:0d:5e:10:a5:a6:69:46:5b:10:
28:33:36:71:a1:9f:04:ce:30:2d:1b:5e:df:a0:81:
1d:ad:14:52:dc:49:e3:f0:7a:f9:19:32:a8:8a:6b:
23:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5B:7E:84:1C:14:E2:99:BE:0B:72:9B:CA:CA:F5:75:A7:9A:00:07
X509v3 Authority Key Identifier:
keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:3b:71:ac:9d:a0:60:44:df:0a:c4:6f:1f:e8:b6:53:80:db:
3a:4c:ae:58:56:95:44:95:e3:35:8e:3f:64:3b:b3:e3:07:d2:
40:44:fd:c2:5a:e5:b4:00:3d:46:37:cb:e8:2d:d4:5c:b2:10:
12:a3:28:bb:97:90:a5:06:bd:1c:31:18:eb:68:d6:0b:95:2e:
de:82:26:9e:38:82:1d:94:74:f7:18:8d:df:8c:5a:c2:ec:5b:
04:81:1b:25:0f:91:33:49:ad:01:c5:8a:af:a7:3a:af:0a:9a:
f7:07:e0:1d:b0:f5:ea:1a:ad:6e:73:e3:5e:39:43:22:77:ef:
31:23:9c:7e:92:a6:cd:e0:8f:d1:1a:08:53:70:42:34:52:b5:
73:40:d3:7f:6a:b1:28:97:29:e6:74:af:a8:23:00:f1:1c:a2:
25:c4:02:64:8f:a4:ff:1b:58:1d:93:cb:be:52:85:e7:3a:ef:
04:6e:bb:05:eb:c2:59:53:6d:39:20:7e:3b:96:00:4a:f9:12:
98:75:5c:02:8b:c1:53:b5:a0:2f:06:bb:99:b6:5b:f5:a5:10:
52:93:7b:63:19:93:37:76:ad:2a:e6:b4:f6:83:ee:a6:a4:d8:
2a:6f:28:27:e2:c4:39:a2:b8:52:fa:7d:f6:9d:77:3c:36:03:
ab:fb:ad:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:55 2026 by rpki-client