Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: gqB5DTuCet3ytjH6HMueowu/uMnx+ljksMHJ8QMc3UU=
Subject key identifier: 0B:43:CA:3B:F3:51:27:49:6E:38:08:2C:F4:B9:13:CF:D3:74:6F:25
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 019E1FB5C623F6E8003F0A35BF45E45561AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 1618
Signing time: Wed 13 May 2026 05:01:06 +0000
Manifest this update: Wed 13 May 2026 05:01:06 +0000
Manifest next update: Thu 14 May 2026 05:01:06 +0000
Files and hashes: 1: 90fOLXtBv8zjOyjcz26gkbyoNvE.roa (hash: Ru1YTQpQd39yRjLzCahK22aUJjQHLniT2w2j16/8ijY=)
2: GNQd5Bm0mjUJd67uPNG6cQdgvFk.roa (hash: 0ulANNIaOCC2eudb71uMMJn10FX8G4OgvsoxQ5AP27o=)
3: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: iTuSO62hVOMf2Bv5Yg0MJLUG6UWBeGqaMewbG4V6hVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:c6:23:f6:e8:00:3f:0a:35:bf:45:e4:55:61:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: May 13 05:01:06 2026 GMT
Not After : May 14 05:01:06 2026 GMT
Subject: CN=0b43ca3bf35127496e38082cf4b913cfd3746f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b4:fa:e9:0d:ed:ff:6b:da:46:88:31:8c:cb:
1d:f5:82:31:36:1a:55:8c:4c:3a:4b:2a:75:9d:e0:
0b:61:f5:2b:8d:43:45:e4:f8:e7:30:9e:c9:b4:97:
77:09:a3:ff:36:b3:c6:c4:36:15:b4:95:3d:bb:5d:
3e:72:cb:f4:60:55:fe:ef:21:b1:d2:59:59:83:00:
2a:39:2a:4f:38:70:aa:87:41:f1:e8:98:99:ec:8e:
74:43:c5:72:75:88:be:56:d1:61:a3:40:8a:47:21:
f5:96:8d:be:d7:ed:dd:75:b1:cd:bc:08:cf:78:97:
5c:21:6b:c6:62:ef:98:c2:fa:c8:bd:3a:5f:f1:62:
60:06:53:64:8d:e8:8e:86:2b:db:e9:77:89:ad:61:
9e:a2:38:50:5d:5a:1d:d2:09:0f:33:c4:f5:81:61:
83:43:99:a6:59:d1:19:b6:dc:40:ef:04:06:64:44:
f9:28:be:9b:89:7c:d5:a3:21:99:2c:f9:b3:fd:23:
e4:59:aa:ac:1a:7d:4e:64:49:c7:58:bb:96:e8:23:
cc:ec:e1:e4:58:66:70:6d:8f:d8:17:08:2a:af:73:
2d:76:f8:bf:80:8a:46:3b:51:14:71:e3:fd:28:0d:
b7:eb:39:e7:47:16:c4:55:39:1d:21:99:1a:c5:8f:
6a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:43:CA:3B:F3:51:27:49:6E:38:08:2C:F4:B9:13:CF:D3:74:6F:25
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:74:ba:82:1b:bb:8f:9f:12:17:9a:30:5b:66:76:29:58:b4:
a6:3f:9a:cf:a8:92:cd:8a:8d:63:57:37:a9:68:0c:6b:35:e6:
5d:b3:af:83:49:89:18:16:3d:d1:ca:8b:31:9f:66:a7:dd:08:
d8:d4:f1:f1:8a:10:b5:53:ea:63:66:a9:33:21:c5:1f:3f:b7:
f7:5b:97:db:33:78:db:52:fd:d8:0d:32:41:7d:a2:79:cb:86:
2e:73:a7:ca:6b:54:00:9c:53:e6:2f:9e:61:32:10:da:f0:f4:
5d:2e:a4:11:a5:8c:76:82:ff:3a:be:84:57:0f:98:51:b4:aa:
97:65:e5:4d:04:22:7c:60:10:c9:33:a4:2c:4a:a5:3c:96:42:
7b:8e:70:51:75:5f:a4:ca:c7:6c:f9:4c:a1:9a:05:91:be:d7:
25:63:96:4d:1b:0e:46:f3:d1:3f:86:6e:cd:77:29:87:76:11:
0d:0f:e9:a9:83:0f:85:aa:b2:dd:7b:11:19:a5:b9:fe:d9:1c:
18:18:9d:5b:ac:01:0f:39:97:26:04:08:11:14:86:50:71:e2:
ff:20:e7:6d:64:64:1c:07:9b:06:62:29:96:1a:85:b8:a8:34:
df:68:51:ac:7f:63:cd:8c:1e:26:52:49:f4:ec:25:e5:74:51:
02:e6:7f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:21:52 2026 by rpki-client