Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: Iq4lDxogWTOFdqZRI0mbtaxEu2j7SPrZe3LEnArRfXU=
Subject key identifier: A0:D6:93:40:58:45:50:83:F5:A0:75:8F:85:43:A7:8C:83:C3:81:CF
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019E1EA3520BA631C739A9C1EDA5F93CAAA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0FA0
Signing time: Wed 13 May 2026 00:01:20 +0000
Manifest this update: Wed 13 May 2026 00:01:20 +0000
Manifest next update: Thu 14 May 2026 00:01:20 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: Ii/+6EWyDp0sfM2Vi28mfXsqHv1dilWiHdCdvsf7Xvk=)
2: TgwXo42orCf9sT1fT8jrPa56jeU.roa (hash: GfcY69aJuiib4Ntp1/VS83/ai4i4eQHgc9DzBgB534U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:52:0b:a6:31:c7:39:a9:c1:ed:a5:f9:3c:aa:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: May 13 00:01:20 2026 GMT
Not After : May 14 00:01:20 2026 GMT
Subject: CN=a0d6934058455083f5a0758f8543a78c83c381cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:11:f8:18:0b:f6:4e:ca:89:fc:5b:93:58:c3:
3e:3e:80:53:66:c1:57:fe:24:f0:5b:ed:2c:9a:e3:
0e:d5:29:4c:ab:bb:1e:b7:f8:9a:db:f9:00:f9:a7:
c5:b5:d5:9b:a7:4f:43:11:dd:8f:2e:e7:7a:6b:84:
ad:71:63:70:47:10:7e:2c:d7:04:03:7f:76:28:e9:
da:11:bb:b9:60:37:51:de:81:71:e8:6c:36:c8:eb:
07:b0:0e:cd:d4:79:4e:be:1a:00:c8:0e:df:2b:04:
1b:45:47:98:5a:4b:5b:22:f7:59:78:6b:4b:d7:31:
78:18:d6:33:f8:bb:4a:16:ed:70:45:f0:1a:da:bc:
d9:d5:db:12:b5:10:8e:77:e6:44:fe:f4:8b:9c:38:
c5:f1:82:5b:3b:5d:dd:fd:c1:08:0e:54:dc:8f:b4:
c7:f7:f0:ad:55:c7:4e:a8:c9:7e:fe:3c:c2:6b:b8:
0e:69:7a:1a:2f:fe:b1:ac:b8:0b:87:ef:2e:cc:e8:
49:c6:f3:6d:9c:6b:79:d2:a3:82:ae:34:cc:7e:2b:
2b:72:69:d3:79:44:0e:08:65:c6:e9:a7:30:08:b9:
73:9a:b5:6b:c5:d4:61:fe:5e:da:0d:a4:81:52:26:
78:c9:d4:56:6f:9a:80:8a:08:16:3d:1a:6b:4b:c2:
e5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D6:93:40:58:45:50:83:F5:A0:75:8F:85:43:A7:8C:83:C3:81:CF
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f0:ca:e1:56:a4:91:95:08:a4:e4:54:8f:cb:03:f5:80:59:
64:7b:2c:e7:2e:21:74:41:a8:c5:78:49:24:e0:4f:b7:00:2b:
8a:c0:d4:3e:3e:69:fc:23:39:45:4b:73:a5:05:18:9e:05:df:
38:bc:43:5d:92:cd:89:c5:67:87:26:c9:1d:f4:d4:5d:d2:35:
f0:1c:7d:14:53:8e:96:59:cb:28:d8:22:15:8b:8b:90:38:e9:
9c:c8:d8:7c:15:2c:5a:5c:33:80:03:41:ae:f4:df:8d:73:8e:
56:74:28:67:4c:ec:d0:d0:c4:c2:33:44:1d:52:4c:9e:12:34:
df:bf:58:4b:e5:21:eb:5e:79:a3:a0:ce:95:0e:56:82:9c:95:
ac:b9:b8:39:82:98:8d:e2:64:d4:34:20:a7:b3:be:40:4b:9b:
d1:2a:86:1a:2e:ce:56:f1:45:04:58:cd:8b:34:f5:d6:48:7e:
81:23:d6:04:d5:7d:65:0c:8e:2d:69:40:d3:91:ab:41:e9:80:
9d:68:94:85:0f:9b:22:a8:44:bc:50:f0:c7:03:74:ab:f0:ce:
99:b2:a5:8a:01:09:22:9d:27:e2:dc:43:78:32:c7:8f:58:8f:
06:40:dc:57:4c:b4:e2:f0:a3:78:54:c5:6b:da:f7:e4:dc:e7:
20:c1:09:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:01:06 2026 by rpki-client