Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json)
Hash identifier: 00YX0rie7ApNiEq6EdPRtlFt26tzstJrxrA8LEoQwNs=
Subject key identifier: DD:C6:48:6D:96:AB:E5:BD:62:E2:BD:E2:7E:6C:C7:D0:A0:1B:0D:57
Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Certificate serial: 019E1EA3274EDE1709D21C5266803FF5B5EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
Manifest number: 04AF
Signing time: Wed 13 May 2026 00:01:09 +0000
Manifest this update: Wed 13 May 2026 00:01:09 +0000
Manifest next update: Thu 14 May 2026 00:01:09 +0000
Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: 7PqIx2Wv99ncWlTIVk5Exjx7QsrbP4N1gUl2pFNlf+M=)
2: ZiAi_TdUfMkb3j8gN1a3XiArDYg.roa (hash: p3ud5x+KgWlnChdbJ3zLdy64GsE5PLnEtLECSRQZh38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:27:4e:de:17:09:d2:1c:52:66:80:3f:f5:b5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Validity
Not Before: May 13 00:01:09 2026 GMT
Not After : May 14 00:01:09 2026 GMT
Subject: CN=ddc6486d96abe5bd62e2bde27e6cc7d0a01b0d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c8:b3:d5:c1:f7:32:db:57:72:a9:1c:ad:1c:
87:4a:71:67:d1:e1:78:a1:45:8d:58:72:e8:70:62:
15:7e:11:92:12:d1:e6:a7:33:0a:94:d8:df:be:51:
f5:59:f3:db:12:72:1c:72:9c:11:ee:b7:dd:ce:a3:
18:e4:07:c1:04:ca:53:27:e6:08:ed:03:67:2a:13:
00:60:62:f4:66:01:96:1d:c1:0d:ce:50:e0:e5:44:
41:b0:cd:22:26:08:df:38:9d:98:b6:29:7f:e4:21:
62:19:c0:72:20:c0:d1:4d:fc:e1:7e:7b:81:1c:0f:
31:f6:ff:ae:a0:8f:3e:da:90:50:cc:2b:80:0d:0f:
5a:4b:69:75:37:7f:3b:81:f6:14:4a:1d:46:8b:94:
ba:e3:2c:92:54:d3:06:f6:f3:f0:f5:b8:61:ee:1d:
d4:e2:b1:d0:65:73:77:7c:8f:5d:7c:f7:f5:bd:e9:
b2:30:33:82:da:a6:87:f9:09:a4:ca:52:97:26:30:
21:f9:34:83:7a:77:0a:cb:bf:da:17:ef:3e:d9:a7:
7a:04:99:02:74:6d:ea:c4:82:23:c6:36:de:a5:2b:
3a:81:fb:48:8c:b8:a1:03:57:36:db:e8:99:2b:4b:
95:91:d6:56:fc:9b:b9:55:d4:af:72:19:7f:4d:09:
76:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C6:48:6D:96:AB:E5:BD:62:E2:BD:E2:7E:6C:C7:D0:A0:1B:0D:57
X509v3 Authority Key Identifier:
keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e8:23:1b:09:e3:08:f4:b2:2e:1d:e3:e8:4c:cd:47:54:b1:
ce:73:4e:fc:32:cd:73:67:9e:18:ec:5e:72:1b:79:54:91:85:
0f:63:06:ac:92:83:a4:ae:5e:91:14:7a:77:74:7b:a3:7e:84:
f7:f7:73:7b:29:7e:e3:c0:ef:1b:11:d9:7b:88:c9:69:6d:1d:
2c:c6:e6:09:75:d7:96:f1:5f:4d:2e:e1:81:18:37:b5:3e:11:
36:3c:88:54:09:25:c8:eb:fd:5a:83:ae:50:35:45:5a:99:22:
1e:39:37:13:70:a2:0c:32:08:4e:52:7e:de:22:8c:bf:15:a2:
b2:e4:a8:5f:c0:bf:0d:2e:b3:a8:ec:3b:f8:30:21:54:a9:1c:
44:35:a2:5a:01:55:81:e7:9c:eb:50:79:81:30:ea:7a:1a:0a:
c8:cd:c7:df:34:98:66:29:86:38:1e:5e:d7:3e:c1:b0:0a:e7:
49:00:c4:9c:39:74:fb:f7:39:40:24:f3:89:1d:7b:fc:0f:73:
e1:fb:a2:17:0b:f9:4d:75:c7:e8:98:bb:a3:d6:da:e7:5e:82:
e6:05:5b:b3:f5:95:96:93:e6:70:66:ac:17:bd:85:27:23:67:
b9:87:fd:41:81:6a:69:50:6c:1a:ad:4e:c0:af:e6:02:5c:f2:
38:3c:f0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:54:33 2026 by rpki-client