Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json)
Hash identifier: XQh9pkcT6keu1hkUkN9Po0WzrOBDU1ri71tig4Fb4Fo=
Subject key identifier: B5:F1:A2:67:08:B9:EE:AA:E8:EB:92:89:D1:4F:82:E5:20:67:C4:1E
Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Certificate serial: 019D382E66F570F0A82055D37EB353583513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
Manifest number: 1180
Signing time: Sun 29 Mar 2026 06:00:58 +0000
Manifest this update: Sun 29 Mar 2026 06:00:58 +0000
Manifest next update: Mon 30 Mar 2026 06:00:58 +0000
Files and hashes: 1: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: QGFB4plzRtGIxs/FwX557VagouKtgdUKVkU0lDRHhbY=)
2: lKVJdRF0hE9bPtqV3XlzvhT3Iqs.roa (hash: GeIEq9ieMXhGCkHBVtks0M5q4Jm8CcNNhR3YdczhVxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:66:f5:70:f0:a8:20:55:d3:7e:b3:53:58:35:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Validity
Not Before: Mar 29 06:00:58 2026 GMT
Not After : Mar 30 06:00:58 2026 GMT
Subject: CN=b5f1a26708b9eeaae8eb9289d14f82e52067c41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f4:7c:9b:01:a4:c8:8a:60:c8:04:42:34:41:
3a:c1:23:49:b4:73:a3:5c:3f:91:89:f1:d4:8a:98:
97:cb:ff:f5:ce:a6:fb:d7:fe:1d:ef:0a:cb:e8:95:
cf:e5:46:f2:9d:17:83:32:4a:23:6d:22:1f:34:7f:
a8:56:9e:0a:98:c1:3a:8a:df:89:d8:1e:a8:b0:65:
4f:20:55:ad:d4:21:15:fd:15:ff:3d:17:75:b5:8e:
85:a7:e5:74:8e:d7:0e:e5:7b:d1:c4:d9:5b:12:f2:
66:dd:5b:4e:f8:17:ee:35:32:c2:da:5a:29:b9:ba:
82:40:e2:1d:45:58:c6:4e:2b:e1:90:ae:73:61:55:
df:4c:ca:87:a7:db:e2:03:87:12:1e:db:f5:f0:e5:
c2:9c:d9:18:50:cc:c9:f1:c6:28:a0:8b:67:3b:b5:
49:15:a9:94:6b:23:32:30:7f:7d:4a:51:7a:50:45:
06:bb:bf:4c:cb:f7:0c:c6:0a:5b:4f:bd:7d:fe:dd:
81:53:e5:ec:11:9d:bc:1c:4d:91:5e:26:89:d3:ae:
cc:57:2c:25:8e:71:54:2c:4a:aa:0e:69:52:bf:fb:
30:0b:e4:12:e2:71:c9:1a:22:21:81:22:14:91:76:
3f:e7:b8:04:59:be:10:7f:3b:fe:d2:8d:4b:2d:78:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F1:A2:67:08:B9:EE:AA:E8:EB:92:89:D1:4F:82:E5:20:67:C4:1E
X509v3 Authority Key Identifier:
keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:5e:01:04:a9:55:e6:70:c1:fd:f3:86:ce:17:fe:fd:4e:d2:
da:72:87:22:f3:18:de:db:bc:ab:72:cf:c4:5f:e7:5c:60:2b:
c4:e5:e2:72:17:4c:25:69:d8:74:6f:a4:9f:27:27:3d:03:78:
95:52:96:04:63:26:b7:e6:38:84:92:c4:41:2a:19:63:c8:3c:
0c:fa:74:61:a9:3d:d0:f0:92:0e:78:89:94:47:58:5b:9c:0e:
2c:9a:92:83:73:2b:73:e3:fe:8f:6a:de:30:78:19:43:4a:e7:
35:5a:24:5c:48:2c:ad:04:65:22:a1:1d:69:51:8b:54:ca:df:
3a:bb:d5:20:a7:37:f4:b3:3e:68:01:bb:63:c5:e8:8f:d6:0b:
6c:a0:a9:9a:41:86:5b:b9:3b:ad:8e:a9:73:68:7e:e2:72:93:
88:cc:b0:a1:f2:0c:3f:5f:1b:7c:c6:6a:97:f3:cc:63:22:74:
08:47:61:48:8a:47:de:43:78:62:d4:14:5f:89:82:e6:89:ce:
48:bb:31:40:b0:33:c9:cc:1a:f6:c2:c0:4e:00:d8:c2:ac:fe:
38:c8:1a:54:d2:22:4d:90:32:da:58:b0:d6:42:86:9b:38:f0:
f7:7f:10:a6:32:15:89:bf:9e:57:b3:93:1e:d0:c7:73:b2:5b:
0d:8b:34:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:05 2026 by rpki-client