Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: 2KN+oCrT9ZCHS+7qXWdR7b3lRTNXM+0lgA5yNivzAzw=
Subject key identifier: 90:2A:DE:F6:3C:5A:E3:B7:AD:16:31:92:6A:97:EC:0F:76:2A:0A:D8
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 019E1DFE5898723558A146FCF0247B4E456B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 05BE
Signing time: Tue 12 May 2026 21:01:08 +0000
Manifest this update: Tue 12 May 2026 21:01:08 +0000
Manifest next update: Wed 13 May 2026 21:01:08 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: k1yZdLiL565LBxlyfl1pQeu0tpNB+O/72raUVyGv2bU=)
2: Jv3FrbaSeXZke2UP27JZQguG_qc.roa (hash: dePpEEDTqP/enapSxKmHvz68yt/UQtEn5OCz1CdZVCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:58:98:72:35:58:a1:46:fc:f0:24:7b:4e:45:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: May 12 21:01:08 2026 GMT
Not After : May 13 21:01:08 2026 GMT
Subject: CN=902adef63c5ae3b7ad1631926a97ec0f762a0ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d1:7a:bc:1c:ab:dc:2f:16:e6:b8:01:e0:bb:
4d:24:0e:9b:43:b7:f2:42:f8:69:8f:a8:c1:df:5d:
77:51:28:be:7b:7e:8b:b9:bc:36:09:20:68:3c:d2:
bd:db:f9:55:cb:70:65:65:d0:db:77:96:bd:44:74:
0e:de:ec:89:70:d2:aa:ef:f1:54:dc:a8:1d:66:d5:
25:f6:c9:6f:01:69:f5:95:1a:12:da:ef:8e:7d:07:
68:04:f6:76:51:91:4d:58:9a:18:f1:12:33:dc:3f:
aa:6a:2d:10:01:0c:17:ea:45:c1:a2:bf:a4:ce:0e:
f7:20:9f:52:4b:8d:fe:97:80:23:fe:f9:49:db:37:
e4:3f:44:83:73:87:64:9e:d8:27:4a:12:e0:96:65:
cf:73:62:75:d5:fa:dc:7e:5d:ec:dc:1e:02:0f:45:
e8:1a:92:31:c2:f4:a2:83:f3:4a:17:ae:4e:e4:a0:
6b:91:d5:bc:6e:d2:87:c3:ce:23:c4:fb:95:bc:8c:
fa:ef:79:f4:e1:37:e0:39:bf:37:fe:42:ee:1d:76:
04:e3:3d:04:59:97:0f:a0:b2:8b:40:42:ab:e6:82:
16:4b:bc:33:0d:6f:33:9d:e5:94:bb:8b:12:d0:36:
b9:95:b5:96:f8:1e:df:55:f9:9a:36:40:9c:f7:66:
51:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2A:DE:F6:3C:5A:E3:B7:AD:16:31:92:6A:97:EC:0F:76:2A:0A:D8
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3c:63:b6:a5:b5:42:02:f6:36:15:b7:7e:40:eb:f3:cc:f5:
0e:48:03:0f:10:aa:45:5a:b0:fd:fd:20:31:db:9e:75:79:b3:
41:4f:bc:dd:b7:47:0f:48:4d:e9:93:87:62:67:40:0d:5f:f7:
00:ce:e5:5b:a1:0c:c2:03:a2:b8:52:76:ee:8b:3f:1c:d3:a0:
37:7f:8b:a6:fc:d6:62:19:7e:27:1d:f6:b0:b6:93:05:8f:6e:
f8:c3:c7:67:ee:d4:51:08:d4:e8:d5:f8:fb:cb:b6:77:aa:66:
c5:e9:12:ef:de:d4:73:62:47:3a:d5:02:67:c8:dd:ce:c8:73:
98:7e:c2:cf:18:cf:e7:78:2d:af:58:a2:f6:97:57:00:cb:ff:
0f:35:80:12:72:1d:fc:ac:38:de:e5:79:c8:21:5e:7b:22:cc:
df:e0:ad:00:ae:59:82:36:e3:c9:d9:6e:99:49:92:e7:4e:c6:
3a:78:76:23:3d:86:0b:c1:8e:83:fc:b2:e7:24:1f:a3:ed:48:
c1:de:f7:86:73:30:00:1b:4b:3d:dc:cf:90:e9:4c:36:bc:5d:
df:e9:f9:6f:82:9a:fc:85:cd:a6:d0:54:6a:2c:34:bc:19:cd:
fb:b0:89:59:f2:09:88:df:28:a2:77:de:32:d2:02:1a:3c:1c:
12:31:d6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:06:13 2026 by rpki-client