Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
File: m1GT2EOvGT4kh1aGZzyViW6uNJc.mft (raw, json)
Hash identifier: Y2BUlLT/3LjZIbXsKVVK4M7ZtVCt32Xp1ZyuWx1cCJo=
Subject key identifier: 99:1B:C4:F3:8C:F7:47:16:25:D6:98:13:1E:4E:F8:38:25:BF:B3:14
Authority key identifier: 9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
Certificate issuer: /CN=9b5193d843af193e24875686673c95896eae3497
Certificate serial: 019D389BF0417D6C13C9C8D57DB21156C181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
Manifest number: 0C9D
Signing time: Sun 29 Mar 2026 08:00:36 +0000
Manifest this update: Sun 29 Mar 2026 08:00:36 +0000
Manifest next update: Mon 30 Mar 2026 08:00:36 +0000
Files and hashes: 1: m1GT2EOvGT4kh1aGZzyViW6uNJc.crl (hash: qtsSg1Wtxl4l+zh1+VkbTFznHZIkFwBF+qp3TEakWDY=)
2: yf4fsCLIG2l9cGmJeTOIIc51YeU.roa (hash: UF4YxdCOV/UBjXOSABiqqWZqo/WkePyMELF0t7EktlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f0:41:7d:6c:13:c9:c8:d5:7d:b2:11:56:c1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5193d843af193e24875686673c95896eae3497
Validity
Not Before: Mar 29 08:00:36 2026 GMT
Not After : Mar 30 08:00:36 2026 GMT
Subject: CN=991bc4f38cf7471625d698131e4ef83825bfb314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d5:d7:a4:be:c5:3d:fe:20:20:fe:be:e1:54:
7d:c4:78:15:df:87:6e:c8:36:88:e3:b9:b4:35:6f:
e3:cf:2b:f7:86:12:40:30:89:8b:20:d3:ae:21:49:
f9:23:fc:5f:54:d9:f9:f6:a6:44:42:16:5a:fd:6d:
c9:88:a2:3d:5b:1b:c6:e1:9e:69:9f:91:94:c8:56:
56:92:ec:9a:f2:25:90:77:66:29:81:f4:0e:84:01:
36:30:95:89:a1:1a:6c:f7:92:2f:bd:b7:a5:f8:ee:
42:e5:17:f3:6f:16:f2:c3:9f:7f:c4:63:2d:88:8b:
0c:80:7e:d1:5a:7b:fe:5d:82:6b:94:03:f9:28:03:
37:18:d2:b6:cd:a1:7b:8d:0e:63:b0:46:22:35:2e:
56:35:95:11:43:df:db:32:94:bc:61:cc:37:cb:d2:
1e:6d:34:a4:15:78:ce:6f:45:91:ff:90:2b:88:c4:
88:59:13:9d:ea:04:c7:ff:7b:eb:c9:ba:f8:8a:4c:
e9:f0:3b:47:b5:2f:e5:97:2f:0f:85:9c:24:71:a1:
5a:cb:89:ce:95:fe:b4:3d:13:76:eb:80:34:c6:25:
ce:c7:e0:42:06:64:75:81:0c:bc:30:90:fb:ee:fb:
19:5b:88:4e:ba:e7:f6:01:1f:2c:57:94:dc:68:97:
28:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1B:C4:F3:8C:F7:47:16:25:D6:98:13:1E:4E:F8:38:25:BF:B3:14
X509v3 Authority Key Identifier:
keyid:9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:f8:33:a9:6a:c8:b6:90:74:66:07:1d:3e:3a:2f:5e:f1:fd:
5c:42:85:30:fe:d4:2c:a5:00:4a:5f:d2:65:37:64:84:39:d2:
f6:45:58:d9:e5:d7:7f:cc:cd:c8:f1:88:f5:51:a9:39:e1:cb:
d2:27:60:11:1d:a0:14:b2:a8:31:ad:32:c4:5c:d5:ee:f5:d0:
c0:8e:3b:b1:a1:f4:0f:76:69:9c:7b:b1:0d:13:00:f7:6a:23:
cf:20:61:c8:5c:2c:03:13:26:12:c2:00:b1:c1:8e:52:89:66:
1e:a1:0e:9a:2c:7c:1b:88:bb:4a:fa:ec:ff:01:46:9d:88:e3:
29:b6:52:d5:2c:ea:18:59:33:b3:b9:53:47:72:8e:3d:c3:7c:
a2:15:59:68:bc:74:32:b9:d6:3a:78:2f:2f:55:3a:3d:30:31:
23:6b:b2:33:6d:da:84:20:76:e2:05:b5:7e:75:56:f3:41:44:
4b:bc:af:8c:8f:e1:91:63:41:bd:fa:40:96:96:c5:6d:8b:91:
a3:79:36:f3:c5:00:0c:0d:7d:12:a7:de:28:c9:52:9c:32:27:
a9:3b:86:be:b0:b3:d3:39:3d:22:66:9b:d4:e0:f4:d2:2d:50:
0d:58:65:a6:8b:43:98:9d:dc:8f:46:59:b1:e9:a6:b2:de:a5:
22:4a:76:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:44 2026 by rpki-client