Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
File: 9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft (raw, json)
Hash identifier: CG/RGaXjb7QB+Y4nyN70Xe2gcdeIUcfGgKncCrj4FNk=
Subject key identifier: 51:EA:89:69:A8:5D:30:96:52:86:B4:33:3A:1C:A2:73:D4:37:2A:71
Authority key identifier: F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4
Certificate issuer: /CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
Certificate serial: 019D270452E79D2DAC810F499A3EBAE2E6E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
Manifest number: 0431
Signing time: Wed 25 Mar 2026 22:01:27 +0000
Manifest this update: Wed 25 Mar 2026 22:01:27 +0000
Manifest next update: Thu 26 Mar 2026 22:01:27 +0000
Files and hashes: 1: 9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl (hash: SGqt/U5wGIeHx4UsWdObtRFEMpV2e+OUMThAgEmvGKY=)
2: JXm4LWXIpBMGqgHbvgoYihKzBVk.roa (hash: 5kQxFCRpZBFMUqQXhqZK+G8qNHh71Y8GlKTBlJe50XE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:52:e7:9d:2d:ac:81:0f:49:9a:3e:ba:e2:e6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
Validity
Not Before: Mar 25 22:01:27 2026 GMT
Not After : Mar 26 22:01:27 2026 GMT
Subject: CN=51ea8969a85d30965286b4333a1ca273d4372a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ea:53:67:2e:49:96:c3:87:6a:85:a1:c6:86:
4f:50:35:72:33:68:82:e2:0b:ab:65:15:aa:cd:4c:
16:0c:bd:8d:96:42:07:06:97:d6:55:12:79:73:4c:
51:01:e2:e4:02:85:f9:05:f6:85:80:2c:06:b7:15:
ac:38:ae:bd:f3:36:3b:de:cc:1b:de:2a:e6:18:b6:
86:e7:a7:30:a0:1d:0a:db:47:1e:42:83:81:2b:4b:
14:d1:a3:34:56:a7:89:d7:41:dc:2c:50:08:22:70:
bd:38:b5:8b:49:1f:ce:b7:1c:14:ae:c6:1e:74:64:
c4:0b:a9:f4:39:fc:66:a0:48:24:53:64:2e:08:24:
61:39:c8:ac:62:b9:b5:11:bf:01:bd:fc:e9:5d:41:
86:db:07:e3:21:b1:6c:ea:18:e9:63:7a:11:47:bc:
8e:80:7f:fc:ad:12:6b:21:b6:48:5f:7a:55:6d:26:
a1:21:e5:85:ae:96:cd:55:21:c6:a7:11:31:bf:9b:
36:d6:f7:68:f0:e0:7c:4c:1d:ae:b4:2a:54:c1:9b:
d5:4a:78:4e:48:8c:96:02:ee:ce:e0:95:07:9b:04:
17:02:d8:0a:ca:8c:c1:e4:33:2a:b2:37:93:49:58:
f3:3f:cd:69:06:fe:05:eb:50:55:4f:4e:64:ce:5a:
e2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EA:89:69:A8:5D:30:96:52:86:B4:33:3A:1C:A2:73:D4:37:2A:71
X509v3 Authority Key Identifier:
keyid:F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:02:c1:b7:19:fd:cb:5b:90:98:81:25:30:e4:a6:0e:ed:36:
96:e5:11:81:05:68:6c:b3:83:c6:a6:f6:ce:27:c1:8c:7d:2b:
d6:6f:42:83:7c:e7:7e:a5:6a:85:c4:8c:05:0e:a5:49:74:d0:
21:70:9a:ef:e8:2a:7c:a6:65:b9:f0:51:87:c1:76:12:7d:f4:
a6:b0:e4:64:e6:e2:a2:30:d6:36:c4:a8:92:fc:ed:32:88:ef:
02:f5:7b:59:15:85:cf:47:7d:ac:56:11:6c:02:ae:b0:d2:2d:
0d:59:08:1a:30:a5:12:af:d5:cf:ef:51:b6:da:ca:5a:56:40:
15:d3:d3:d1:b0:8d:73:2c:73:d9:e6:cc:68:67:55:7d:f1:9a:
2f:65:13:c4:de:d6:d0:f7:bd:72:76:bb:a4:d2:2c:de:a3:9d:
bb:28:9d:7c:7d:72:0b:eb:71:4b:e1:2e:d0:50:b6:ce:9c:f9:
38:c0:79:78:d7:a9:a9:ca:44:58:28:59:a2:6f:fe:8f:12:ce:
dc:58:1d:37:71:9b:3f:23:8d:e5:48:64:85:57:e2:46:e9:7d:
a7:ec:dd:4f:7b:a9:e6:c1:76:4d:d4:e3:0e:32:57:d4:b2:71:
f8:9c:0e:43:07:11:46:65:d8:ce:46:89:a2:49:e7:a1:69:3a:
1e:64:55:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:05:17 2026 by rpki-client