Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: 2g6jSlZlwQ/fFDhxn92a+UC1TA6kcPmh/R8h+vLblEo=
Subject key identifier: 47:FE:C1:25:DD:06:64:C9:7C:0E:B8:DE:03:54:38:63:52:95:2C:F9
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 019E1C7D8F6BB0828603722421906E6EB983
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 1902
Signing time: Tue 12 May 2026 14:00:51 +0000
Manifest this update: Tue 12 May 2026 14:00:51 +0000
Manifest next update: Wed 13 May 2026 14:00:51 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: dXnhpIU5lP6lLC99MdbZn0K8vYsaZXJXvDp61+2tTSg=)
2: GNmi18wQl4vtlo-9lVpDdUD44U8.roa (hash: PX3LxFRdOujIRS22JaSLS22PgqGNSnD4VtofU70m2Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:8f:6b:b0:82:86:03:72:24:21:90:6e:6e:b9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: May 12 14:00:51 2026 GMT
Not After : May 13 14:00:51 2026 GMT
Subject: CN=47fec125dd0664c97c0eb8de0354386352952cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d6:f8:1e:c7:d6:39:d0:ff:21:e9:16:dc:dd:
20:70:7c:5f:26:09:22:2f:f7:1c:a9:ad:1d:07:78:
0e:7e:68:72:c3:44:64:0c:af:e4:a1:50:b5:9b:17:
7b:3f:da:bb:0d:61:2e:94:7b:ad:bd:71:f3:31:ed:
69:04:c0:c9:35:58:52:aa:8e:7f:85:67:cb:14:dc:
0f:d8:c2:d9:e4:6b:56:f6:a1:4e:de:db:02:2b:a3:
99:42:27:09:15:3f:91:8e:c3:93:fe:77:46:0e:f0:
78:20:57:04:7d:f0:ec:39:a0:01:85:db:49:b6:10:
ac:ae:c5:37:46:11:4e:c1:ea:ad:10:52:d3:b5:6b:
ff:d4:cf:d2:6b:1e:ef:61:7e:f3:99:88:11:3e:cd:
5e:4b:40:a7:cc:e8:02:6e:d5:02:cd:bb:9c:5f:b6:
2a:f3:6f:fd:d9:74:e2:a8:32:6f:d5:13:a9:f1:d6:
17:91:30:bb:50:35:f1:1c:c2:82:21:bf:34:d0:a6:
c0:89:5b:4e:fb:88:bf:ed:f7:90:4c:97:66:bc:32:
d4:ea:28:e7:93:17:77:0a:32:4d:13:37:b1:c2:30:
42:ab:db:60:74:2c:5a:38:24:a7:15:7d:49:2a:75:
6b:7f:17:83:f4:64:4d:00:f8:ef:ef:81:74:4c:8d:
7c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FE:C1:25:DD:06:64:C9:7C:0E:B8:DE:03:54:38:63:52:95:2C:F9
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:3f:35:c9:95:55:69:55:ad:2b:58:6b:0c:50:a5:b7:ce:58:
23:68:ac:ce:69:64:30:27:8b:72:d1:94:75:cf:3c:26:ec:72:
8b:ac:42:1f:23:be:d7:c2:3e:d6:1a:c5:75:7f:8c:45:57:02:
c9:b3:d8:d9:bb:6d:37:cd:e9:1e:a2:98:d1:50:24:df:8b:10:
37:8c:d3:e5:0d:61:03:c1:c2:63:57:3a:bf:3a:f3:66:f4:4a:
c4:d1:97:dd:ad:ea:95:d9:35:ba:76:b7:44:cf:84:45:52:a6:
27:72:b0:35:94:29:39:4c:bb:8c:de:76:eb:44:f7:ee:42:c4:
a1:a9:a1:07:20:98:64:13:75:d2:98:97:42:22:a8:e8:b9:67:
b2:5a:08:1e:4e:19:56:1b:a7:be:1c:b7:89:cb:4e:de:05:87:
e9:93:77:49:ed:3b:c2:ac:9d:6c:35:4d:36:eb:c5:06:81:d0:
64:ec:0c:cb:4a:f3:ae:67:be:ee:f7:be:dd:14:a3:5c:5b:7c:
9e:91:8e:84:b8:74:18:f7:1c:be:bb:6b:8f:00:f1:db:61:da:
e3:20:94:81:e7:14:4e:3b:c3:f9:6a:66:30:56:ce:28:6a:c7:
a3:02:32:71:3e:41:0b:9e:27:8a:45:0e:21:91:48:18:f7:76:
ec:d2:99:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:37 2026 by rpki-client