Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: VxT+NINTjd7BJyYdVH1b/KMGsE3qH6yT2YCq/cKDkZU=
Subject key identifier: 2D:5F:C5:23:53:A4:7E:7E:91:F4:DA:D3:70:E5:6C:5B:CE:6D:CB:AC
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019D284DB5E08371132E27C5AB9665E23244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 04:01:14 +0000
Manifest this update: Thu 26 Mar 2026 04:01:14 +0000
Manifest next update: Fri 27 Mar 2026 04:01:14 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: MH8ebvzBlAROAVVoQsHPaZpDZ0bm5F4GxuwvR/+1BjU=)
2: L3FElQgN_OK9ME85XjkPB5d4njo.roa (hash: 7fKQw9/kLDh7zT4p1MB3dQg/LI4nczVMbuMgYO277J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:b5:e0:83:71:13:2e:27:c5:ab:96:65:e2:32:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Mar 26 04:01:14 2026 GMT
Not After : Mar 27 04:01:14 2026 GMT
Subject: CN=2d5fc52353a47e7e91f4dad370e56c5bce6dcbac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d5:ac:d9:41:8b:16:de:c7:b8:15:60:af:24:
55:cc:bf:6e:e0:9a:db:62:33:64:59:c0:2e:41:91:
53:e0:77:0e:5a:88:bf:68:a9:74:d0:b1:0a:ae:46:
72:b1:7f:5b:80:89:fd:2e:ea:8d:d6:9e:a6:2e:b3:
72:cf:2e:de:c6:16:aa:c5:2b:36:f8:7b:03:c5:08:
83:d5:5b:05:f4:91:5c:82:71:b3:a7:cb:2e:75:f0:
86:49:1d:76:48:38:ad:0a:07:97:07:12:df:2b:81:
31:48:6a:c1:e8:2e:a5:32:28:3b:f1:b1:6b:ce:c8:
15:f0:78:87:b9:23:bc:2b:cd:4b:8e:2c:9e:a6:32:
b9:46:b7:c0:90:1b:64:d0:12:b9:e8:00:71:8e:a2:
ad:63:05:08:a4:fd:d4:f6:18:a2:ab:01:29:4e:4c:
30:5d:80:9a:8c:de:74:61:4b:fe:6f:25:1a:f8:da:
c1:ff:d5:75:02:8c:b4:4f:5b:dc:d7:71:62:82:c8:
32:53:45:66:ae:67:50:98:92:2b:66:5d:9f:65:9a:
74:6e:46:b5:ee:f4:9e:37:14:5a:1e:12:e0:97:cc:
e6:76:71:11:b2:64:d3:b1:d0:e7:b4:d0:8b:43:67:
3c:19:c8:d3:48:63:36:c1:4b:9c:8a:f4:01:fd:de:
e4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5F:C5:23:53:A4:7E:7E:91:F4:DA:D3:70:E5:6C:5B:CE:6D:CB:AC
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:a3:8f:3c:a4:af:5d:6d:7c:08:98:43:8d:fe:ef:42:00:05:
a1:bb:34:07:c6:6e:54:68:83:da:37:49:4e:7c:69:89:84:b6:
66:c7:a9:aa:41:4c:f3:08:15:2f:23:df:0e:c9:4f:f1:52:6e:
9e:17:bc:36:f5:0d:43:1e:2f:6c:d8:aa:3d:fa:d7:f1:bd:42:
1a:95:a4:55:e8:b9:a2:22:20:85:65:f7:33:77:09:d6:1d:d0:
5d:c3:e3:08:69:4c:d1:01:9d:8e:b7:1a:59:57:76:1e:92:e5:
8e:aa:93:2d:50:4d:3a:37:ef:6c:aa:ee:ac:41:f6:7e:8c:0d:
42:7c:ef:dc:c2:b3:4a:1c:36:39:a6:ba:e0:05:85:f2:f3:0c:
f8:76:22:50:21:64:f9:31:65:b0:80:91:c6:86:88:2a:5f:bc:
09:cc:16:04:e9:54:77:0a:fa:2a:71:88:3f:ad:0f:8d:d9:29:
9b:3b:8d:a8:6e:ed:66:76:25:eb:42:fb:55:bd:5c:ae:e4:7f:
2b:e5:e7:7e:52:93:03:ac:64:8a:ed:ea:80:b6:cb:d2:a7:a9:
a1:68:04:7b:6f:00:50:a1:60:85:2f:df:84:30:2d:b0:4b:69:
17:2b:74:65:fb:d9:8f:bf:66:3c:5b:98:b8:1b:4b:2c:5b:bf:
48:69:b3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:36 2026 by rpki-client