Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: b26uD1ovSE7uU3uxIGhW5qUwbm2HFuOBlkUyqSjybbo=
Subject key identifier: 83:AD:CA:87:30:AA:1F:AA:09:DA:32:93:D8:65:1E:00:EE:D5:9C:49
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 019D254C59F058F6DED916F751BF07B4F736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0E00
Signing time: Wed 25 Mar 2026 14:00:53 +0000
Manifest this update: Wed 25 Mar 2026 14:00:53 +0000
Manifest next update: Thu 26 Mar 2026 14:00:53 +0000
Files and hashes: 1: 6h9k6xzi-eiSHNvIfR1iiY1lGdQ.roa (hash: pfVa1UicKiOy2Facu1pK6Uyiw1IMqVl6D7uB18F/7yw=)
2: 9Y6XWJ6VWz8otzDPBalCUtCfzZU.roa (hash: sjrsCbBwaUlQ8V+c9dddc6DlyD0j++DkIm2cvSRmRTg=)
3: bWOm_rxxwcbWaTmu2SnHiIL1r88.asa (hash: QCA4tD64a2YOFOaYQUc8hAaRjVEoTC+6/Xd9DFb0omA=)
4: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: RcfFHxxHj0hGbjCony7Pbz8OBavBGujRxek7jCsOVs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:59:f0:58:f6:de:d9:16:f7:51:bf:07:b4:f7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Mar 25 14:00:53 2026 GMT
Not After : Mar 26 14:00:53 2026 GMT
Subject: CN=83adca8730aa1faa09da3293d8651e00eed59c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:02:7b:60:de:4f:ed:0e:b7:a4:43:d0:83:
81:41:c9:3c:ff:19:2f:82:ad:c6:d4:1e:78:71:14:
d5:19:2a:7c:85:cd:2b:d2:7b:cf:83:68:90:61:c5:
95:4e:85:49:6e:67:da:ef:c4:d0:0c:3e:23:c3:7d:
cd:01:02:d6:41:a2:f1:52:01:ad:d2:73:c7:86:9a:
e4:01:70:77:f8:ac:3c:d5:37:74:fa:eb:93:61:18:
45:2d:6f:c2:c5:70:0a:a2:be:f7:7e:a0:b3:63:4d:
ba:eb:73:98:96:da:7f:6e:f7:fc:3a:44:2d:89:31:
32:de:34:99:02:6f:ee:d7:63:f7:fa:f3:0a:f0:6d:
09:3d:dc:59:2b:e8:ec:a8:fb:67:06:7e:e4:43:03:
0f:4e:60:28:cf:74:5e:51:48:83:84:2e:88:fb:70:
6d:3c:69:91:ea:20:2e:38:bc:64:0f:09:5f:6b:ed:
98:b8:f2:a8:6a:ca:80:54:5a:c0:cb:78:06:63:63:
78:be:ba:52:88:1b:41:68:b9:6b:c4:d0:4d:43:58:
26:9d:2a:4a:3c:97:28:9a:aa:ca:fc:4f:82:db:a3:
26:da:c1:7e:00:71:b3:e5:dc:76:fe:81:22:3f:30:
25:0f:c2:18:e1:ed:f8:f7:19:c1:7a:98:96:99:c9:
30:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AD:CA:87:30:AA:1F:AA:09:DA:32:93:D8:65:1E:00:EE:D5:9C:49
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:ad:f0:ee:90:18:71:2e:eb:ba:a8:5a:3a:d2:3b:d6:42:c9:
53:d5:c4:03:3e:a2:af:eb:5e:5e:a6:08:56:eb:e3:44:7d:11:
5d:7a:70:8d:13:45:e9:e3:8d:9e:cb:26:f6:9d:4b:13:18:f1:
dd:b7:3c:09:26:99:65:6b:b8:0b:96:6f:93:1d:be:85:aa:7e:
b8:ff:47:7a:59:9d:e7:9f:b3:4f:1f:cc:96:3c:ec:b5:ef:79:
23:ac:dc:4c:aa:24:16:b0:51:d0:14:6d:20:16:27:0b:19:d8:
36:c8:e4:69:00:ab:3b:c8:65:9f:75:9a:33:36:83:33:90:03:
d8:f4:72:60:0f:74:74:ac:04:ee:85:34:8f:d4:1f:43:08:d0:
b1:b1:e7:77:c6:0c:b8:df:68:84:67:c9:ad:b5:3e:5f:cf:6f:
76:f9:9b:9a:49:13:e8:e8:2e:9b:e8:9b:78:5d:a0:79:73:d3:
2e:4f:88:3b:91:a2:44:11:30:65:ca:5f:78:3c:05:0d:10:df:
54:a0:9e:3e:94:72:40:ef:42:a2:92:cd:38:fc:58:b3:84:8a:
df:41:ef:0d:1f:12:da:47:6e:ea:09:1c:bf:f2:ea:64:49:32:
fb:6e:89:fb:89:80:da:66:0f:90:07:f4:ac:3d:0a:19:ab:e0:
31:af:69:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:44 2026 by rpki-client