Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: 5jjoQ6xzY1n7AOIelBQcAojVlTzy3xceqtdRKq1dyI0=
Subject key identifier: 09:A0:91:51:4D:75:3E:40:27:71:D5:A5:EA:CC:D7:B3:C4:38:22:57
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 019D2816A67F838FB8DE869DBCC3730A4260
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 03:01:06 +0000
Manifest this update: Thu 26 Mar 2026 03:01:06 +0000
Manifest next update: Fri 27 Mar 2026 03:01:06 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: u26o1LW6brS9qv/IHbIE/LCRw5/sLHKtDM97oPI/8kU=)
2: T5JGF7B12Y-OhHm1OYqXkm7-lXg.roa (hash: KwWOzAO8pCz7VGjCCS1zx6R3CR7E9zIHXknJYnIgWh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:a6:7f:83:8f:b8:de:86:9d:bc:c3:73:0a:42:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: Mar 26 03:01:06 2026 GMT
Not After : Mar 27 03:01:06 2026 GMT
Subject: CN=09a091514d753e402771d5a5eaccd7b3c4382257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:61:70:eb:48:a7:a6:d6:68:b4:cb:ee:c6:85:
b8:9f:0c:bc:0b:4a:2e:27:6b:c1:47:ae:58:18:5b:
72:53:63:f6:14:f6:63:1a:f5:d7:d5:73:42:7f:71:
f8:90:c0:50:84:b8:5d:81:75:c5:45:1a:a9:10:a0:
0e:a7:3f:94:45:2e:e7:20:57:eb:db:63:ad:9d:ff:
e6:b2:65:bc:dd:8a:3e:6c:40:a0:56:ca:bb:f5:e0:
7a:e6:62:78:40:b2:c5:6b:bf:ad:43:83:9a:aa:ca:
29:74:e3:20:b8:7d:98:b6:43:d2:ca:2b:58:28:7f:
2d:90:97:96:87:ae:04:18:2a:37:7f:50:f9:f8:dd:
34:cf:b8:17:2d:81:d0:ba:10:4d:dd:eb:75:38:46:
a4:9f:6f:43:70:82:f9:aa:94:ec:86:90:72:ac:1b:
c9:20:f0:a8:1e:5f:b1:70:27:31:95:7e:42:e6:62:
5b:b6:1e:a3:29:24:8c:c3:43:59:9d:d5:92:01:b7:
d8:f6:35:55:f2:8a:3f:f4:2d:24:a5:46:89:f1:bc:
5c:21:2d:40:6c:bd:ed:c2:d7:3f:43:21:31:5a:f0:
8e:ae:99:5c:2c:4d:ba:48:fc:a8:8f:06:8c:3e:d1:
c8:c4:7f:da:93:4f:03:2e:9c:b9:dc:57:bf:de:93:
f3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A0:91:51:4D:75:3E:40:27:71:D5:A5:EA:CC:D7:B3:C4:38:22:57
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:92:a3:68:b9:b5:cd:7a:83:fd:e0:98:bc:2c:e3:7d:78:fc:
49:93:51:58:6c:fb:79:da:23:63:a5:b9:c2:c2:e9:f2:8f:03:
e6:5b:d3:84:35:21:1d:3b:4e:b5:9a:01:55:5b:70:57:c1:89:
9b:d7:53:c2:2b:a4:c3:c4:52:71:e2:37:f7:e4:91:68:a1:32:
42:fb:ff:68:ac:3f:fc:3e:b3:f1:f9:1a:27:06:7e:93:20:91:
26:f2:16:80:5c:6d:cc:e9:13:23:08:95:a0:99:c0:de:c8:39:
8e:3e:6a:0a:a1:97:8a:b2:aa:65:06:b9:15:51:9f:af:89:6c:
f2:c2:8d:6a:75:62:1b:b0:04:dc:3b:ee:98:48:a9:80:f5:a7:
a1:6b:1a:0c:59:2f:9c:34:b7:82:58:12:a1:e2:6d:3b:4f:91:
76:d9:5b:f5:34:bd:ee:7e:84:a7:c6:c1:c8:55:c8:a3:53:8f:
de:a4:bb:ac:cc:e3:62:eb:37:d2:4b:6f:9b:e2:e0:a2:91:92:
ad:33:0e:5b:20:f0:6c:ef:2c:9f:52:2e:63:1c:f6:cd:da:30:
2d:0c:c6:30:ca:0d:7d:e7:cd:69:15:f3:7f:63:59:3a:f2:c7:
86:66:59:ad:8c:e0:1d:c7:5b:16:b4:77:5c:68:4d:05:4c:05:
15:d8:a7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:16:43 2026 by rpki-client