Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json)
Hash identifier: WIrETfw4iRS+T5DY7zzIYiBdYmVu1kKb3m52c3e+L9k=
Subject key identifier: 8D:DE:D2:E0:8A:46:F9:4A:6A:1F:A2:BC:9B:CD:19:05:A9:B4:94:9B
Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Certificate serial: 019E314E596722DB125D8AF7B7CCF9454866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
Manifest number: 1201
Signing time: Sat 16 May 2026 15:01:18 +0000
Manifest this update: Sat 16 May 2026 15:01:18 +0000
Manifest next update: Sun 17 May 2026 15:01:18 +0000
Files and hashes: 1: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: dldKdK7aaNa44OW2BCQfRU1ipirbvXZ8gsRecmMHuJc=)
2: lKVJdRF0hE9bPtqV3XlzvhT3Iqs.roa (hash: GeIEq9ieMXhGCkHBVtks0M5q4Jm8CcNNhR3YdczhVxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:59:67:22:db:12:5d:8a:f7:b7:cc:f9:45:48:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Validity
Not Before: May 16 15:01:18 2026 GMT
Not After : May 17 15:01:18 2026 GMT
Subject: CN=8dded2e08a46f94a6a1fa2bc9bcd1905a9b4949b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:71:66:01:87:70:e9:76:a5:87:2a:57:ef:6a:
1d:81:26:4b:94:35:d9:f1:23:b3:6f:47:25:8c:b1:
8e:df:4a:8b:cc:db:24:05:6f:d2:7e:ff:5e:fa:42:
52:a9:c6:c1:fd:78:55:bf:be:da:f3:6e:a4:a3:71:
9b:c0:90:3b:ba:83:f0:7f:d2:a8:ca:e9:dc:eb:68:
12:f7:a3:22:4c:c9:81:36:af:64:04:af:db:c2:6f:
ca:01:8f:7c:ef:d4:57:54:a1:2f:12:97:61:c1:50:
f8:e0:26:58:4f:d4:7c:c3:5b:42:47:f9:5e:a1:ee:
c4:5c:42:e5:dc:1b:cc:59:d8:31:42:a5:4d:7a:e7:
4e:ca:80:ee:da:cc:73:10:cc:f8:8e:94:63:8f:f1:
0f:7e:c6:50:4e:33:03:67:8a:7b:9c:2d:63:e2:15:
57:d3:79:f9:1b:fa:55:8f:09:f6:11:61:68:29:de:
d8:15:ae:5e:af:e2:62:a7:69:eb:53:b3:20:f5:42:
90:cf:94:60:ed:ea:22:ea:11:dc:51:7b:77:45:46:
44:0e:11:ec:30:c2:66:9b:2f:83:a7:f0:0c:c9:4f:
e3:62:a5:bc:0d:22:0f:f3:7d:84:81:fd:10:8e:3f:
6b:ec:4b:ae:ba:4f:c9:5e:af:49:f0:f5:80:83:c2:
c8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DE:D2:E0:8A:46:F9:4A:6A:1F:A2:BC:9B:CD:19:05:A9:B4:94:9B
X509v3 Authority Key Identifier:
keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:6a:7e:67:4b:c7:26:43:4e:ed:a1:68:d4:2d:af:6a:20:99:
7e:d1:17:7d:07:df:03:74:5e:71:89:a3:7a:66:76:7d:e5:82:
0a:5e:2e:bb:8f:44:10:fa:30:0a:cd:f4:86:31:3e:a4:21:01:
87:29:df:ad:b9:02:49:54:1e:97:11:01:6d:bd:eb:8a:48:39:
cb:d9:9a:b2:d1:21:53:40:4d:0e:01:16:e8:55:c2:6b:9c:6f:
a6:94:f6:94:15:a1:66:af:e2:cf:ba:98:17:2f:3b:77:08:d9:
98:d3:91:ae:db:5e:fd:ed:dc:9a:2e:43:5e:c8:d7:ab:7d:1a:
17:ad:4e:d1:89:3a:b2:f7:63:d1:79:e5:58:ba:ab:39:54:4a:
11:c1:cf:47:d8:c9:d3:e7:dd:a6:86:59:de:82:9a:45:48:aa:
9c:5e:ee:cf:53:14:a5:f8:ea:c9:df:6b:e9:0b:2a:ca:d2:26:
11:a3:4e:ff:55:bc:68:01:38:22:86:d0:71:4a:74:2c:58:27:
5f:79:b0:79:3a:72:4d:a6:74:d5:9b:63:51:0e:81:83:d3:2e:
bf:b6:5c:40:2f:71:87:cb:e0:95:b7:8f:d6:30:6f:73:ab:0c:
62:20:41:3a:50:b7:7b:da:f1:e1:2c:d1:5c:93:da:a9:3e:53:
58:f6:5a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:14:26 2026 by rpki-client