Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: sBRdoALq8F8elaStfxQkxcl5vASsw9MSygcXmtO+j+4=
Subject key identifier: D2:A0:B8:4B:41:43:C7:DE:14:47:9B:C7:04:2B:6A:3A:4C:CA:36:D2
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019E1F7E942F581FE136081AC2C9C7C1B9C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 04:00:49 +0000
Manifest this update: Wed 13 May 2026 04:00:49 +0000
Manifest next update: Thu 14 May 2026 04:00:49 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: HUV+QGJ1yf4jdTmNf9/vmk1vYJjcejSRCqthDysL0D0=)
2: L3FElQgN_OK9ME85XjkPB5d4njo.roa (hash: 7fKQw9/kLDh7zT4p1MB3dQg/LI4nczVMbuMgYO277J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:94:2f:58:1f:e1:36:08:1a:c2:c9:c7:c1:b9:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: May 13 04:00:49 2026 GMT
Not After : May 14 04:00:49 2026 GMT
Subject: CN=d2a0b84b4143c7de14479bc7042b6a3a4cca36d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:b0:22:e3:12:4e:25:8c:bf:0e:38:7b:b9:
29:53:c3:ea:37:25:c6:f7:f5:ff:df:12:19:0d:93:
1a:5d:66:a7:af:46:f9:e7:c7:91:40:ee:e4:29:9b:
e3:5f:69:c2:c4:1b:d9:b2:54:d1:80:d4:f3:db:91:
c3:2b:91:7c:ca:2b:ba:7c:48:59:68:b3:a4:c0:50:
82:8f:7a:15:36:81:bf:56:e6:e9:95:e0:b6:92:e1:
77:16:79:ff:e9:5a:79:e3:30:40:10:1a:f6:c5:2b:
5f:79:3a:0a:35:89:85:fe:d8:51:dc:18:62:a3:25:
20:e1:e4:fc:63:c1:9f:b2:c5:13:25:25:38:32:57:
59:4b:1d:66:0f:6f:63:cc:d5:48:54:63:90:23:58:
65:8d:df:c1:cc:7e:9c:90:ff:d2:08:07:43:bc:e6:
1d:88:7d:46:3a:70:e2:c1:8c:d3:61:9b:1d:28:63:
2b:09:55:0a:3e:e6:b4:47:13:44:4e:20:ed:a4:84:
7f:ba:9e:02:63:e7:32:e3:47:68:f9:1b:01:4a:0c:
71:41:14:37:2c:f1:d4:d8:1d:c1:ce:dd:46:56:84:
8f:bb:22:26:0f:60:25:e1:4e:75:0c:74:d1:57:92:
83:32:e1:8d:7e:40:7d:c7:20:78:57:57:fb:79:c1:
a8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A0:B8:4B:41:43:C7:DE:14:47:9B:C7:04:2B:6A:3A:4C:CA:36:D2
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:cd:e0:0e:5a:e6:30:c4:83:9c:35:9b:06:fd:95:5d:50:9e:
0b:90:a5:9d:31:6b:a6:f3:f7:9f:69:d7:c7:a1:c6:19:43:3d:
f4:d3:81:78:3d:df:cd:32:c1:ab:99:4a:d9:a1:6b:7f:77:c5:
59:fe:d0:84:a2:7f:50:4e:fb:21:92:2d:3a:b4:2a:82:9a:04:
5e:2a:ef:ef:37:c3:67:d0:8d:f3:11:ef:5e:db:cc:d9:2c:09:
78:eb:69:29:f9:de:d3:00:2e:e9:ae:9c:15:d9:c4:6e:91:06:
1b:25:e9:e0:5f:45:10:1c:b2:69:48:61:dc:2f:39:55:0b:6b:
67:3e:a0:37:dd:bf:de:11:b6:32:47:c5:01:6c:b5:ec:08:7b:
e5:bb:1f:e3:16:e1:93:ec:a1:52:b9:ad:85:ec:de:c2:21:e6:
65:3f:ca:33:c9:dd:f8:e4:a1:7d:5d:80:88:10:1d:5a:6c:82:
05:9a:9e:1d:dd:d6:72:4a:29:31:83:3a:31:86:59:27:99:0b:
ff:80:0b:9f:ec:23:c4:42:f2:31:e3:3f:99:7c:00:4a:9c:64:
a4:97:9d:3d:b9:7e:59:cd:34:97:fb:d4:d8:8a:55:d6:cb:ea:
f7:08:4f:1b:b0:90:6e:9a:22:3d:57:5d:fb:32:0e:b4:90:69:
2e:a1:75:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:14:05 2026 by rpki-client