Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: aPj+ztdlRGexMzrnRwUBc8mjDS2q0umkBXp/Lg0Ruqc=
Subject key identifier: 9F:F1:F7:43:AC:FF:5B:7E:24:F8:96:49:37:BD:0F:1D:60:D6:3D:F8
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019E31BBE012B6655B396A026483FA4CB0EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0DC4
Signing time: Sat 16 May 2026 17:00:56 +0000
Manifest this update: Sat 16 May 2026 17:00:56 +0000
Manifest next update: Sun 17 May 2026 17:00:56 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: XmKRzsI38140tvrXLY/Y9rArFEQ/CD/etFvV02/QJbc=)
2: ptikDTRhjTNxZI8dkI54eJbGFTA.roa (hash: 3SdSmJMo+FOvr1IMdnku5tDe7K6GsQTnPIBl17tgA08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:bb:e0:12:b6:65:5b:39:6a:02:64:83:fa:4c:b0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: May 16 17:00:56 2026 GMT
Not After : May 17 17:00:56 2026 GMT
Subject: CN=9ff1f743acff5b7e24f8964937bd0f1d60d63df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e1:06:dc:6f:9d:17:eb:14:b2:28:ec:0b:c9:
83:26:99:e3:ae:38:75:72:7d:77:e3:64:cb:12:6a:
62:8c:12:01:3a:8d:29:46:a5:8a:e6:10:08:c6:e9:
97:ec:a6:73:03:e5:49:48:e2:9e:eb:11:f1:de:ce:
0b:36:5e:00:b5:bf:be:4d:c5:1b:77:d4:8d:8a:81:
4d:af:f5:d9:67:f8:3d:a7:c7:85:4d:e4:c1:44:ee:
4d:03:51:38:06:3f:8b:74:86:4c:87:00:2e:d6:ad:
06:81:ce:4b:f4:d3:bb:51:a9:0b:4f:0b:e8:3e:cf:
c9:5a:73:53:35:24:80:d7:05:61:e7:cc:82:0f:fb:
9b:2a:29:25:41:9a:93:e6:8f:28:e7:c4:ec:5f:23:
1e:c7:56:a0:ec:e4:9d:4a:8c:fb:4e:ea:b6:61:bc:
e0:f1:a9:b4:94:30:09:33:e3:31:4d:47:18:cc:89:
4d:2e:4a:07:26:65:d7:b4:68:b1:5b:f2:8c:47:bc:
0c:a1:80:0c:ea:38:bc:60:0e:db:12:4a:db:04:d4:
e4:3e:12:b1:58:bd:f9:6e:dd:7f:2f:19:d6:f1:58:
91:a9:e8:14:1e:01:e0:ae:b9:2e:b3:e7:29:c5:73:
b9:07:da:60:1a:14:25:09:de:51:8e:11:40:45:5f:
04:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F1:F7:43:AC:FF:5B:7E:24:F8:96:49:37:BD:0F:1D:60:D6:3D:F8
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:98:e6:03:ce:b7:28:27:ff:e4:a5:dc:3b:fa:03:1c:7f:20:
fb:9d:94:30:a5:38:01:61:a7:ea:56:6c:6b:8b:28:b6:55:95:
58:e7:b1:74:49:c3:fa:c3:1c:25:54:9b:a8:8c:66:b1:fa:12:
a3:34:00:aa:71:68:0d:22:1e:ef:16:06:99:39:b7:1d:e2:c5:
c4:8b:17:fe:e1:c6:99:66:a4:f9:ac:5e:89:2e:3a:ea:b7:fa:
84:3c:ea:41:4b:26:fa:06:8f:44:d7:67:4a:3f:c2:9f:98:bf:
d1:09:cc:f1:65:09:a8:11:d7:2b:7b:5d:df:15:af:8a:a7:dd:
b8:e7:1e:50:0d:89:c7:f2:eb:06:1d:47:53:ca:b2:da:85:92:
a3:31:75:f2:ac:2f:50:35:6e:69:4d:12:5a:d3:aa:e7:1e:4c:
7c:ad:b8:21:7e:d8:1b:7c:51:0e:d6:a4:43:c8:4f:32:82:7c:
1a:a1:20:7a:14:4e:99:b7:35:e2:aa:47:52:f1:96:dd:8d:50:
ba:bc:10:f0:47:cd:09:4a:54:0b:4e:27:c8:1d:57:8c:45:6c:
02:e1:35:b0:65:d7:35:70:93:6c:81:36:73:62:00:e1:72:73:
79:eb:e4:98:79:34:39:35:81:65:c2:09:c0:d2:5c:d3:b1:e5:
43:6e:8a:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xu+AStmVbOWoCZIP6TLDsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZGI3MWY2OTE5YjBlZjk4ZWVmYzk5NjQ5MjhhODc1MTAy
MzZhMDMwHhcNMjYwNTE2MTcwMDU2WhcNMjYwNTE3MTcwMDU2WjAzMTEwLwYDVQQD
Eyg5ZmYxZjc0M2FjZmY1YjdlMjRmODk2NDkzN2JkMGYxZDYwZDYzZGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeEG3G+dF+sUsijsC8mDJpnjrjh1
cn1342TLEmpijBIBOo0pRqWK5hAIxumX7KZzA+VJSOKe6xHx3s4LNl4Atb++TcUb
d9SNioFNr/XZZ/g9p8eFTeTBRO5NA1E4Bj+LdIZMhwAu1q0Ggc5L9NO7UakLTwvo
Ps/JWnNTNSSA1wVh58yCD/ubKiklQZqT5o8o58TsXyMex1ag7OSdSoz7Tuq2Ybzg
8am0lDAJM+MxTUcYzIlNLkoHJmXXtGixW/KMR7wMoYAM6ji8YA7bEkrbBNTkPhKx
WL35bt1/LxnW8ViRqegUHgHgrrkus+cpxXO5B9pgGhQlCd5RjhFARV8EHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ/x90Os/1t+JPiWSTe9Dx1g1j34MB8GA1UdIwQY
MBaAFIfbcfaRmw75ju/JlkkoqHUQI2oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODIt
OTA0YTA4MDMxYTlmLzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODItOTA0YTA4MDMxYTlm
LzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5jmA863
KCf/5KXcO/oDHH8g+52UMKU4AWGn6lZsa4sotlWVWOexdEnD+sMcJVSbqIxmsfoS
ozQAqnFoDSIe7xYGmTm3HeLFxIsX/uHGmWak+axeiS466rf6hDzqQUsm+gaPRNdn
Sj/Cn5i/0QnM8WUJqBHXK3td3xWviqfduOceUA2Jx/LrBh1HU8qy2oWSozF18qwv
UDVuaU0SWtOq5x5MfK24IX7YG3xRDtakQ8hPMoJ8GqEgehROmbc14qpHUvGW3Y1Q
urwQ8EfNCUpUC04nyB1XjEVsAuE1sGXXNXCTbIE2c2IA4XJzeevkmHk0OTWBZcIJ
wNJc07HlQ26KMQ==
-----END CERTIFICATE-----
Generated at Sat May 16 20:19:48 2026 by rpki-client