Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: /SwaqZPzTAeeLWTOsZV8rhx0NXszFJm5yTTh1ckoejQ=
Subject key identifier: E9:7B:BF:3C:DB:5B:E5:22:E7:6B:FA:70:77:E1:18:1E:66:F7:62:4C
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 019E1E35339B0B457DAB997FBC6C86838EED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 09F0
Signing time: Tue 12 May 2026 22:01:03 +0000
Manifest this update: Tue 12 May 2026 22:01:03 +0000
Manifest next update: Wed 13 May 2026 22:01:03 +0000
Files and hashes: 1: 2-4ZrGQpT0KhwdAqEtwr7VvBLF4.roa (hash: ZZxmDsOTlkFKhz+gwa9Ymw4vgOjq/wRy+P8gUBbGFBY=)
2: CNW3k6cV5qMFfGeO7DCzp4az4dk.roa (hash: eEtgT8pDcDhVSbny7WGDB2FnSEmCUTl8gLtOm3YCkbI=)
3: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: evVQzctip7pcOltjbxP69YHazG9gtFAty+J+lbI8Kcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:33:9b:0b:45:7d:ab:99:7f:bc:6c:86:83:8e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: May 12 22:01:03 2026 GMT
Not After : May 13 22:01:03 2026 GMT
Subject: CN=e97bbf3cdb5be522e76bfa7077e1181e66f7624c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:42:40:6a:02:b6:a7:ab:66:12:73:08:30:79:
c4:64:1e:94:fc:f4:94:af:d5:f9:19:cb:62:0e:09:
3c:fc:49:3d:81:02:f2:d8:16:f6:6f:49:9c:1d:0d:
98:e7:0b:84:4e:ee:f4:ef:c0:2c:c5:b9:00:36:5d:
7d:d7:22:5c:67:fa:3b:43:64:ad:25:ff:d3:a7:34:
0c:57:9e:16:fa:45:02:ac:de:3a:9a:e8:43:62:9d:
84:31:5e:3a:ef:a1:76:62:20:4c:a3:3d:67:c5:e8:
95:03:dc:4d:97:71:48:18:0d:18:e4:81:ef:4e:ad:
74:ee:d8:93:87:38:7f:89:f2:20:45:89:b2:b0:76:
02:2d:08:50:c7:c7:f4:5b:a7:4e:cb:07:7d:46:18:
bf:95:4a:fc:fb:5b:96:e2:53:84:de:f0:f4:0f:e8:
76:71:59:ba:3a:d0:ea:9c:68:3d:f9:38:c9:df:f0:
bf:cf:a8:f7:46:ef:26:92:5a:99:97:3f:23:d0:b7:
9e:23:f4:98:8e:b7:94:a3:08:c0:b5:21:67:72:aa:
20:04:2b:8d:d4:a7:44:7a:e2:8e:96:0a:b0:70:62:
68:71:43:ea:e5:d4:53:64:d8:fd:5a:0b:e0:a7:ba:
37:c7:cb:bf:6b:ee:4d:ce:78:3a:07:bb:3b:b0:03:
56:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7B:BF:3C:DB:5B:E5:22:E7:6B:FA:70:77:E1:18:1E:66:F7:62:4C
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a7:7c:6b:6c:22:96:fe:6b:ac:96:bf:a5:48:4c:15:49:4e:
7e:50:29:2a:e6:d1:7c:fb:7f:7f:6d:f5:15:b2:de:c7:14:bc:
e5:f3:ab:84:02:b8:6b:32:65:07:d8:1e:54:46:1e:70:09:41:
b3:b3:bf:a1:ba:4d:e4:ec:dd:26:71:a1:50:d2:26:e6:2e:cb:
9d:82:d3:79:c2:1d:64:6f:a3:00:95:84:bd:d4:90:6c:7e:4f:
87:a8:a4:29:2e:86:ac:6b:e1:80:56:e1:6d:b5:52:fd:82:8b:
54:9a:79:2b:07:f4:8b:0a:07:1a:7b:13:dc:91:fc:05:41:77:
42:85:2f:d9:7c:94:94:d7:6c:4e:e6:c9:0d:ee:71:6b:af:e2:
ff:a6:80:9a:bc:e0:af:79:98:29:3d:d1:94:a0:2f:36:3a:32:
08:8c:a6:8a:99:c1:22:77:1e:55:cb:f4:1e:d4:d1:26:54:c0:
14:b8:02:3b:ce:bd:4f:c5:e8:d5:61:8d:37:61:3a:e3:dc:7c:
e9:58:3a:17:93:ff:be:98:0f:8d:9b:8c:70:b9:9d:5e:c7:ef:
5e:ab:c8:de:fd:c0:ac:85:68:b5:b5:bb:fc:80:be:18:a8:6a:
8e:40:bd:81:80:95:04:a8:0f:43:07:9d:17:66:39:2e:d5:54:
ee:98:02:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:50:53 2026 by rpki-client