Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
File: cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json)
Hash identifier: U5vEwCvMrRTdryVyze+ulwwk6ASUyb6PIfytf0atcPM=
Subject key identifier: 9F:92:8C:E8:6F:E0:F0:4B:BE:FE:D1:9C:48:C9:A4:76:86:5C:24:57
Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
Certificate issuer: /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Certificate serial: 019D2A3BECD0F35992DD84A43FB68C672C64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 13:01:03 +0000
Manifest this update: Thu 26 Mar 2026 13:01:03 +0000
Manifest next update: Fri 27 Mar 2026 13:01:03 +0000
Files and hashes: 1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: W+KhbuNLibi7moHdRhECzKTp+41C2e24hIJBlqpWHoI=)
2: zgLXTpk-8H2GpRU6zjvUcBKVFgQ.roa (hash: +8sCtRK7E8WuZa8zAB4CIbZay8o7tR+1lHOEMtgrIqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:ec:d0:f3:59:92:dd:84:a4:3f:b6:8c:67:2c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Validity
Not Before: Mar 26 13:01:03 2026 GMT
Not After : Mar 27 13:01:03 2026 GMT
Subject: CN=9f928ce86fe0f04bbefed19c48c9a476865c2457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cf:d4:69:29:6c:dd:d6:9d:de:88:37:78:a2:
de:1e:23:14:d5:b7:13:04:a8:49:6f:90:3a:52:3f:
78:41:e6:ab:36:8b:da:de:35:6d:8c:6a:de:75:19:
b2:97:74:3f:0d:bb:8f:53:b8:e0:fe:5d:7d:1c:08:
1c:93:fb:8a:27:09:9b:cf:90:96:85:59:c6:22:6e:
3c:33:2f:bf:2e:19:dd:37:d5:ac:7a:b4:48:ae:9a:
01:ca:8b:40:17:5a:83:94:73:58:15:29:0d:68:7c:
5d:b0:ab:dc:c4:c5:23:ff:1d:a8:9c:2b:c8:df:7b:
e7:c8:fa:f4:f0:da:ae:71:c4:3b:25:05:8d:c2:7b:
02:3f:56:ba:b5:65:b5:3c:0e:63:13:2e:fe:59:b8:
9d:75:12:22:b1:82:d2:b0:e2:2b:76:78:f0:f2:9f:
14:71:cb:7a:b7:90:a4:c2:e5:d5:b6:0d:83:88:5a:
20:5e:d8:df:20:7f:fd:85:e2:25:6a:78:b7:41:24:
21:22:b1:80:05:46:d6:46:b9:8d:62:1a:df:16:2d:
c7:28:a3:00:24:21:b9:f3:de:f5:10:89:be:2d:d8:
93:10:58:a9:ba:eb:15:c6:eb:2f:ac:26:32:db:20:
69:a6:2d:04:f0:14:d5:3b:79:c1:cb:03:f1:ec:19:
af:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:92:8C:E8:6F:E0:F0:4B:BE:FE:D1:9C:48:C9:A4:76:86:5C:24:57
X509v3 Authority Key Identifier:
keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:8f:a2:5c:32:7e:29:f3:01:68:32:43:8e:54:38:d7:f4:4a:
ad:6c:69:c4:04:93:7c:cc:78:d0:e4:28:52:c2:9b:b6:f9:0a:
09:48:0c:f5:62:d1:c4:b0:ce:c2:38:91:02:88:96:12:ab:9a:
2d:6c:b7:70:b9:5a:e5:df:63:5d:bc:64:82:52:95:d6:3a:1e:
4a:32:03:db:ac:73:37:dd:6b:a6:53:c8:9b:26:f3:50:09:02:
d4:c3:a4:de:f7:15:e1:4a:c3:40:a8:86:66:12:fc:e5:5e:aa:
ca:6a:c4:67:27:f0:ab:02:b7:10:6a:82:96:d3:7b:d4:4f:ee:
11:50:93:5b:eb:e3:dc:8a:34:7b:ce:0d:ce:ac:b1:c4:9f:13:
27:da:6b:c1:67:8b:93:20:f7:1e:3b:bd:9a:fc:da:85:71:9a:
03:97:ce:de:40:b9:0a:4d:7b:23:b8:3f:d5:44:51:ff:39:87:
34:fe:37:f2:a2:f9:ff:9f:e6:70:2f:8d:ef:c0:12:5f:cc:99:
72:89:ca:2d:5a:a4:21:4e:e5:55:97:a0:da:be:a4:db:36:0c:
e6:45:36:7c:b1:a3:07:59:ac:9b:ba:84:70:3c:30:b6:c5:80:
2d:3b:83:af:a0:ac:42:86:cb:a9:ec:b4:c3:6f:45:f1:3c:79:
21:a9:8a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:30:49 2026 by rpki-client