Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: ooysqvufEhp5IjsLdu5IWecUbzgA4SKhGu4mzMzq3Mk=
Subject key identifier: 72:E7:6A:EE:C4:65:1D:6B:8C:C1:2D:A4:F1:9F:4B:AB:34:A7:58:8A
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019D2771E12E629589CF122E7E3E5870FF3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0F20
Signing time: Thu 26 Mar 2026 00:01:07 +0000
Manifest this update: Thu 26 Mar 2026 00:01:07 +0000
Manifest next update: Fri 27 Mar 2026 00:01:07 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: w6JppIZWbh9QlNtd/V1djmW9JLayxAWeJEznZidRx38=)
2: TgwXo42orCf9sT1fT8jrPa56jeU.roa (hash: GfcY69aJuiib4Ntp1/VS83/ai4i4eQHgc9DzBgB534U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:e1:2e:62:95:89:cf:12:2e:7e:3e:58:70:ff:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Mar 26 00:01:07 2026 GMT
Not After : Mar 27 00:01:07 2026 GMT
Subject: CN=72e76aeec4651d6b8cc12da4f19f4bab34a7588a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:19:e9:42:e2:f5:3d:98:6b:b2:d6:1e:18:
23:fd:58:72:a2:9d:8d:c4:86:9f:85:71:24:b7:2d:
b4:86:a9:94:35:34:27:a0:41:51:9b:02:08:19:fd:
f9:4f:30:3e:05:81:3b:52:c5:f1:38:7b:a6:40:d5:
c7:4a:2e:93:36:f4:35:73:48:0c:a2:27:b2:d2:aa:
7f:6e:57:22:98:5e:cd:38:b4:5f:16:ea:1d:d2:61:
49:99:ef:08:43:21:b8:2f:c1:1e:73:aa:6b:04:63:
3c:b5:48:5e:9d:cc:97:28:82:19:bc:fe:1f:7a:c7:
10:7f:b5:07:a5:6b:1e:be:13:06:0a:57:1b:35:c7:
71:8e:19:6f:17:2c:b7:f7:39:23:56:71:25:2e:13:
f1:9e:5f:13:cb:fd:1e:da:89:b1:70:b7:32:1a:e0:
72:07:5e:7e:fc:b1:2f:ab:1e:72:f3:c9:70:7f:d6:
6f:b0:ea:cc:a2:c4:1c:24:4e:c6:67:ae:99:0f:f3:
54:64:2c:92:a2:1b:52:9e:b4:ff:bc:f5:e8:5d:ed:
cd:84:f7:a3:fa:a0:bf:4b:10:77:d8:14:1b:52:55:
92:52:2a:75:b9:04:b6:15:a1:17:e9:b0:0e:af:67:
f6:88:17:c4:bd:49:8e:ad:62:0e:2c:67:f3:59:72:
fa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E7:6A:EE:C4:65:1D:6B:8C:C1:2D:A4:F1:9F:4B:AB:34:A7:58:8A
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:2e:9d:d5:cc:c0:f9:b6:b2:1b:4e:ef:bd:a1:78:6d:07:74:
0f:69:72:22:c2:dc:cb:36:08:f0:a6:f6:f2:56:31:0e:67:31:
c5:fb:be:8c:e3:9a:72:de:51:7d:5a:46:8e:4d:1d:ab:f7:d9:
e1:69:4e:32:6e:35:de:6b:08:fd:77:14:9d:60:c5:3c:a2:c9:
0d:df:0c:65:ca:0c:6f:49:7e:d3:91:60:79:c0:7c:24:0c:58:
a9:f7:8a:88:d0:b6:ad:ae:b8:c7:ca:fe:12:56:de:ea:c6:25:
1d:69:4c:28:c1:da:fc:05:29:a6:0c:00:c2:32:d6:e3:02:f1:
f5:2c:eb:ba:c6:5b:94:62:b1:f9:71:82:46:c0:44:4e:fd:20:
b4:cb:c7:0b:15:74:56:2d:41:d7:6d:6f:54:63:33:c8:c9:e7:
d9:f3:99:50:47:58:b2:90:98:35:c0:f8:79:f9:c5:55:66:a2:
e0:1c:14:23:4a:74:2a:e0:89:e9:6d:a0:13:6d:ec:b7:26:d4:
6a:1b:62:34:59:5a:30:0d:94:6f:62:ad:95:2a:d0:e5:c1:d5:
08:a8:d0:ab:10:00:f0:dc:49:b4:a0:07:e1:ab:2e:7f:b6:f8:
5b:f6:45:a3:ba:25:37:d7:9a:ea:3e:41:a2:32:a0:50:b9:9b:
57:20:33:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:50:18 2026 by rpki-client