Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: MZ9gPL6bIHoi61q2K/c/A2rAVGkEaMnRSjoQ06WSr88=
Subject key identifier: 8C:42:11:93:70:97:AC:15:F3:E6:EB:6A:CF:36:8C:7C:48:72:E2:C8
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019D273AD9AB9A9AA331F244D6DF6238021B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 0480
Signing time: Wed 25 Mar 2026 23:01:01 +0000
Manifest this update: Wed 25 Mar 2026 23:01:01 +0000
Manifest next update: Thu 26 Mar 2026 23:01:01 +0000
Files and hashes: 1: 1-BDF7EdL9hLHZ4qCs6jAWm3n8G8.roa (hash: 3HI3L0u1gTr2C+yxlBAEamd5L6jvpyumi2g5XXRKy/k=)
2: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: uWvD+C5+K5x6eXkqjzSAMVDF862TnteNjVuqXQznH1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:d9:ab:9a:9a:a3:31:f2:44:d6:df:62:38:02:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Mar 25 23:01:01 2026 GMT
Not After : Mar 26 23:01:01 2026 GMT
Subject: CN=8c4211937097ac15f3e6eb6acf368c7c4872e2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6e:2b:1e:aa:f1:1a:2f:6f:5f:50:c8:fe:ac:
b4:65:de:da:f5:de:e7:df:8e:d3:c7:2a:99:a8:03:
68:9a:23:92:30:6a:ab:9a:09:95:7b:77:95:01:81:
21:fe:0f:af:a6:2d:db:b5:6b:b4:13:92:25:71:00:
3c:7a:fa:31:eb:57:ad:27:ef:e6:73:b6:87:b1:36:
03:3c:bd:e4:73:5b:a0:5c:b6:ad:a6:b3:1b:47:ed:
18:e3:14:6c:03:c7:00:a9:c3:7a:ca:1f:1c:ee:a5:
10:da:10:12:5d:98:fd:81:5b:14:ed:fe:e2:8a:00:
fd:51:64:87:05:32:57:d5:b1:c6:31:c0:91:67:7c:
e0:0b:87:94:49:1c:dc:43:2e:05:93:ed:d2:13:a6:
1c:32:e8:ad:d6:af:e4:6e:c4:53:6d:ea:45:d8:90:
fe:f2:ad:34:73:1a:91:05:ec:e0:df:12:4c:1c:8b:
1a:62:8c:45:d7:3d:c2:29:ce:1c:4a:d4:d2:61:2b:
bd:92:f9:7d:9c:5a:1c:37:f5:28:9e:4b:e7:74:24:
7a:b3:8d:3f:48:30:68:4b:e8:4b:46:cd:2c:1f:3e:
b3:ce:4d:53:9c:12:46:46:3b:7e:f1:bd:0e:dd:bc:
d5:bf:b8:17:bb:04:09:09:0f:41:ec:28:78:16:c6:
da:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:42:11:93:70:97:AC:15:F3:E6:EB:6A:CF:36:8C:7C:48:72:E2:C8
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:7b:fc:73:ab:21:73:e5:a8:7e:49:8e:1e:80:ff:a1:ba:07:
67:fb:ef:34:b7:eb:f1:83:8a:62:57:7d:f2:67:f9:81:d4:cc:
3e:01:6e:82:fc:2f:6d:43:e3:d0:12:58:1a:79:4d:01:97:ec:
06:1c:37:18:65:ac:8d:c9:07:55:7e:e3:d6:27:2d:21:d0:b0:
c1:e8:a0:e6:c4:95:e9:2c:ed:c7:56:56:6a:ad:bb:6e:15:d7:
ec:8b:8e:bc:5c:ef:61:4b:57:50:3b:e1:4e:d5:af:dd:d5:64:
97:9c:4d:0c:f8:db:f8:f3:17:1d:f0:f8:e5:a1:5c:f8:aa:64:
86:97:05:35:f8:bb:6e:42:6a:f2:a3:f1:2c:6e:62:ce:dd:2c:
56:f5:ba:97:88:c3:d9:f1:d7:e4:bd:75:32:20:49:25:72:df:
16:31:95:f6:ea:91:dc:41:2c:91:1f:ad:3d:d6:55:37:91:13:
f1:9c:3a:5b:09:01:15:a7:99:2d:9e:ae:c6:2a:42:a7:13:2e:
79:09:35:d1:34:0c:36:ca:19:fb:15:50:ed:19:1b:e0:ad:1e:
3b:d8:c9:89:ea:a0:7c:7b:d6:47:2c:02:bf:f0:f6:bc:e6:c7:
db:64:4a:ee:d0:d1:dc:9b:c4:a7:9a:65:06:3a:c7:b9:5c:1a:
6a:94:10:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:19:02 2026 by rpki-client