Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
File: 45R9MIiPTYgtNYTtyKcPt2YV5fo.mft (raw, json)
Hash identifier: c2lTBqD+aEY3t22fRXFBOFhYXy1y3n+hYHTdQJTIuQo=
Subject key identifier: 26:A7:05:A8:58:68:AB:80:61:C2:DD:A1:24:65:51:54:80:65:AA:F9
Authority key identifier: E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
Certificate issuer: /CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Certificate serial: 019E1C473F7AA5A41FE1DF25C0478DB93BA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
Manifest number: 014A
Signing time: Tue 12 May 2026 13:01:31 +0000
Manifest this update: Tue 12 May 2026 13:01:31 +0000
Manifest next update: Wed 13 May 2026 13:01:31 +0000
Files and hashes: 1: 45R9MIiPTYgtNYTtyKcPt2YV5fo.crl (hash: EOs+4UZrY3ycpoxr14QFznUIND6P6VE7ZDGTv0xKP5A=)
2: GTC6u_8Z9gd4xadpdKdM5XAZSl8.roa (hash: 0yWQwDQexpIwRL0OkehWTxguFnP2RgOpylnrHqYuR9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:3f:7a:a5:a4:1f:e1:df:25:c0:47:8d:b9:3b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Validity
Not Before: May 12 13:01:31 2026 GMT
Not After : May 13 13:01:31 2026 GMT
Subject: CN=26a705a85868ab8061c2dda1246551548065aaf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f2:8e:26:66:cc:16:04:d9:78:98:f5:b7:0f:
74:8a:fa:a1:49:7b:5a:5d:0c:1c:6b:2d:5d:d5:a4:
01:79:3e:70:43:67:8d:a9:4c:e6:98:8b:10:42:b8:
d4:e6:da:b9:e8:b8:64:63:a2:0e:dd:a5:c9:3e:48:
3e:b7:5f:2c:cc:c3:2d:c2:65:0a:f5:ac:27:69:70:
c2:f5:c8:46:e5:6a:b4:2d:5b:e4:85:dd:4b:74:cd:
0a:af:af:fe:a0:5d:29:12:fc:80:b0:c3:62:33:b4:
ac:43:21:0d:57:14:d4:ba:b8:01:54:49:5d:86:06:
79:0a:d6:ff:63:a3:70:e7:27:84:91:c3:0d:4d:3f:
db:d3:11:33:46:97:ae:fa:c7:3a:f0:ff:c0:96:fd:
17:dd:ee:58:94:c5:08:32:3b:28:5c:1f:f5:38:f4:
55:74:b0:8d:c0:e1:7a:50:92:52:f8:92:f5:f5:5d:
2b:ad:df:ce:f6:b7:a2:e8:c9:1a:be:9f:18:34:c3:
f8:1b:89:74:0d:ef:ae:5f:42:86:3e:6e:51:4f:54:
f4:ee:74:c9:1b:2a:3b:c5:99:12:eb:a4:d5:65:ad:
24:01:52:d3:43:47:d1:76:15:69:90:86:3a:a0:f4:
60:6e:58:9e:d6:27:1b:78:fa:e3:ae:a7:b7:2f:25:
49:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A7:05:A8:58:68:AB:80:61:C2:DD:A1:24:65:51:54:80:65:AA:F9
X509v3 Authority Key Identifier:
keyid:E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:fa:1a:2a:e1:44:73:9e:c3:a9:fc:4e:d6:91:bb:aa:d3:d6:
51:72:be:b8:ff:ca:21:bb:65:ed:be:d8:6f:0a:6d:bd:28:8b:
8f:41:98:3f:86:d7:b6:16:0f:aa:a2:5e:67:43:e6:a9:32:0b:
f8:92:e1:15:d8:3d:d1:f1:9b:65:77:b7:38:a5:dc:c5:05:b3:
e8:03:25:db:4b:3f:a6:17:93:17:cc:17:3c:34:05:0c:48:83:
a8:4a:60:2a:8c:1b:37:f1:63:fe:d8:dc:1c:06:f0:38:73:bd:
36:79:e6:71:c0:31:46:e0:70:99:70:4c:c0:e8:4b:6c:45:bf:
ee:9d:ea:f8:35:69:22:94:df:8f:56:83:96:18:c7:e4:46:67:
3d:46:eb:42:2e:42:62:be:7c:8d:08:b6:8b:aa:50:cc:ec:91:
cd:8e:20:a7:e2:20:85:e6:99:4d:8b:ad:61:24:96:a9:34:67:
29:61:43:fe:03:f5:c9:44:bf:f0:6d:28:c9:86:ab:85:77:7f:
20:bd:30:56:f6:f2:26:41:43:a5:3b:ef:f4:89:8d:23:3b:9e:
0f:ab:83:3c:72:e1:f8:3b:d8:c8:e6:d8:cd:de:04:de:02:59:
0c:5b:19:4a:55:93:d3:f5:a5:fb:97:8e:16:db:76:25:7a:6a:
2a:55:1f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:54:30 2026 by rpki-client