Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: 65n9aLOXxqefr76XrUdv2fiHLwv44/dpiESf8Qt7hkE=
Subject key identifier: 1F:7F:2F:BF:76:5D:47:22:A8:82:09:0C:79:63:A2:2C:12:A3:46:49
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019E20238710A6A86BF42263B8B35D519FA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0F5B
Signing time: Wed 13 May 2026 07:00:59 +0000
Manifest this update: Wed 13 May 2026 07:00:59 +0000
Manifest next update: Thu 14 May 2026 07:00:59 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: nLHi7apOQ/c9NGfClNDS1dZun/3ClMcuy+hQDF4ktpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:87:10:a6:a8:6b:f4:22:63:b8:b3:5d:51:9f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: May 13 07:00:59 2026 GMT
Not After : May 14 07:00:59 2026 GMT
Subject: CN=1f7f2fbf765d4722a882090c7963a22c12a34649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:74:fa:f9:0b:75:0d:ac:db:da:bf:ed:69:c7:
11:92:19:04:c4:9a:ec:07:f4:14:c8:a6:4e:bc:c7:
1c:ab:6f:bd:cc:e2:cd:0c:73:a7:0f:18:d5:b1:2c:
6a:f2:06:88:b2:0c:20:8c:62:2c:76:0a:37:0e:8d:
d1:ba:5c:8f:45:72:29:79:2a:96:8c:13:64:b4:e6:
64:53:9c:49:86:6b:c8:10:01:a7:ea:29:6e:a3:61:
94:0e:d2:44:2e:42:7e:c8:28:f1:38:c4:01:83:b4:
6c:78:80:ae:c6:6a:40:d1:7a:f9:e0:90:a9:dc:e5:
6c:62:a6:9f:fb:2a:4a:43:5c:48:3a:06:9b:12:1e:
8f:39:92:41:86:a0:ae:8c:cd:59:47:31:44:a5:14:
90:92:09:74:48:e9:bb:3d:b4:62:49:61:5d:12:88:
db:5d:00:a8:a8:45:48:0d:7d:47:7c:1a:27:f9:4a:
0c:f4:6b:00:71:d7:fd:70:be:b3:7a:cd:1d:aa:bc:
33:75:72:09:26:c1:0a:fc:62:86:59:4c:f1:df:79:
fa:d8:34:68:73:96:5e:32:6f:da:a4:26:e3:05:29:
e8:66:71:05:c7:cd:6b:26:43:1d:3d:12:d9:d9:2a:
ae:db:49:46:b4:88:d5:62:7c:24:b4:1b:ab:71:fe:
c3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7F:2F:BF:76:5D:47:22:A8:82:09:0C:79:63:A2:2C:12:A3:46:49
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:73:4d:ac:8b:f5:d4:d9:c2:87:bb:38:3f:4f:ec:57:1b:1d:
cc:ed:73:61:0f:71:89:cc:bc:41:32:3c:ad:77:3a:eb:47:fc:
7a:cb:5b:b3:75:e5:db:1e:4e:e7:bd:ad:b4:86:f5:26:a0:ee:
4c:3c:ab:6a:12:16:eb:60:b3:a9:39:0a:e1:30:75:4e:32:d8:
bc:c3:49:f0:dd:89:20:cc:2c:54:4c:5c:2e:55:80:7a:15:a1:
a9:f1:3e:8c:94:d9:ee:76:79:ea:db:28:df:4a:a7:41:04:f6:
5a:6e:a6:c8:e6:7c:ae:5b:d8:ff:4c:90:7a:19:97:83:89:88:
b1:eb:24:21:10:0b:d5:aa:1d:93:a2:ad:04:d6:04:fa:b3:e8:
c9:fa:f9:c6:49:ba:b7:c2:2c:57:73:d9:72:17:fd:72:47:68:
9f:a0:07:54:ce:fe:99:65:6c:6e:cf:29:b7:e4:a8:8f:12:36:
ae:c1:90:25:86:2d:84:ee:cf:7b:c7:48:a3:03:3e:ae:94:29:
d5:92:72:b3:4c:74:1d:b8:e0:a7:87:5c:79:8b:75:31:32:72:
0b:87:55:da:50:e8:86:ae:8c:00:08:4a:2b:b1:0a:3a:a9:ce:
b1:19:5f:27:8c:37:3b:21:5c:11:19:68:c5:7a:55:c6:82:f3:
44:ec:b0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:48:51 2026 by rpki-client