Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json)
Hash identifier: vu0WgZdTfX+fRvCYw6kAy7R28biaHpp8ni5RhtjG5oQ=
Subject key identifier: F9:E1:03:7D:07:C4:01:63:7A:09:58:3B:6D:51:AA:93:84:A1:20:16
Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Certificate serial: 019D296082FC8DCB5DA17C8DD7E00C9A8A39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
Manifest number: 0430
Signing time: Thu 26 Mar 2026 09:01:23 +0000
Manifest this update: Thu 26 Mar 2026 09:01:23 +0000
Manifest next update: Fri 27 Mar 2026 09:01:23 +0000
Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: L4wV1NzvDSqy0uuZkyVIMbeNiadEY+yW13sPNJliJdA=)
2: ZiAi_TdUfMkb3j8gN1a3XiArDYg.roa (hash: p3ud5x+KgWlnChdbJ3zLdy64GsE5PLnEtLECSRQZh38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:82:fc:8d:cb:5d:a1:7c:8d:d7:e0:0c:9a:8a:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Validity
Not Before: Mar 26 09:01:23 2026 GMT
Not After : Mar 27 09:01:23 2026 GMT
Subject: CN=f9e1037d07c401637a09583b6d51aa9384a12016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:74:ea:d0:c9:59:97:64:47:f9:aa:b7:a3:09:
25:fb:cb:03:e4:de:4e:d6:81:3d:a2:ee:f5:ae:d1:
a7:b4:89:9a:d5:0a:2d:58:b9:e1:88:07:9e:23:6e:
fd:77:5f:eb:e0:f0:33:09:59:7d:8c:c7:6a:21:45:
f6:20:f1:f3:c6:24:34:e6:83:7a:ba:b8:d3:41:57:
2b:5c:cb:95:a6:8b:8a:3c:67:32:71:2f:bc:b1:6a:
3b:28:59:6a:a2:86:6b:31:10:d7:2a:14:b6:99:a0:
42:83:65:b6:03:ba:4d:ac:73:11:00:03:c3:11:14:
5e:65:b7:d4:60:2c:8b:10:9e:aa:87:73:37:fc:c1:
b1:2c:31:ac:4b:f9:91:61:3f:f0:cb:f0:a4:9a:58:
ec:09:aa:50:7a:da:bd:16:78:19:9a:d5:7e:4d:74:
00:d7:c6:ac:33:1a:ec:c0:fc:19:05:22:97:97:b5:
b1:ee:41:1a:0a:83:cb:11:ed:cf:e4:fd:7a:05:74:
10:96:9c:6d:7b:6b:1c:91:85:19:ba:9e:bf:6f:af:
e7:03:f4:79:dd:3e:f7:37:24:a0:a4:ba:f8:bb:e0:
25:d4:96:e4:77:49:25:37:b5:cc:b8:8e:8b:19:77:
01:50:3b:8e:cb:c9:f4:c4:00:da:1d:85:a3:33:fb:
35:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E1:03:7D:07:C4:01:63:7A:09:58:3B:6D:51:AA:93:84:A1:20:16
X509v3 Authority Key Identifier:
keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:71:a4:78:9e:0a:d4:f8:95:ec:a0:6c:66:f1:c0:e4:6e:b7:
43:dc:52:77:ac:33:ad:7e:e8:ed:2e:a8:f1:61:25:69:1a:25:
15:d4:f8:5e:53:29:d2:0d:a0:38:13:a1:c2:bd:22:a7:60:f3:
2e:38:01:cd:e8:61:2f:95:76:c7:8d:5e:84:37:f8:bf:ee:64:
76:37:d9:8d:84:4d:45:bc:15:b5:ed:59:c2:35:53:d8:3c:4b:
a4:78:aa:4b:a0:67:55:9c:de:9b:e0:dc:56:86:bf:c1:e2:d8:
fd:ce:c6:82:c3:85:27:b7:76:af:2d:d1:75:92:7f:e0:f5:02:
80:fa:9e:8f:53:5d:ce:ad:3e:7e:eb:a4:7c:df:78:5e:83:bc:
2e:66:3e:39:7f:3b:67:80:10:3c:93:97:52:6a:86:56:cc:50:
b1:1f:27:0c:cf:c9:53:c4:13:6f:43:06:6d:38:13:1d:fd:d1:
5a:86:6e:3b:5e:cf:df:65:51:88:fa:99:ff:78:e9:29:73:34:
44:b8:16:05:c9:2b:9d:30:79:5d:53:d4:7e:3b:93:13:d4:54:
1f:59:67:1f:77:46:8e:92:43:27:ce:bd:ac:e2:04:cb:2b:ea:
ee:6f:9a:68:2f:6d:db:3f:c3:e1:f6:15:79:09:53:e7:54:42:
de:2a:a4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:28:20 2026 by rpki-client