Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
File: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json)
Hash identifier: JhBiH2olUKbZpt6UqY7/71tvAJF2p2METLZVrp1aF/U=
Subject key identifier: EF:F3:A4:6C:D1:FC:AE:A6:5B:C3:4B:D2:12:59:23:22:9E:CC:7C:40
Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
Certificate issuer: /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Certificate serial: 019E1EA2B4AB0AFEC331473639CF369B7783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
Manifest number: 1892
Signing time: Wed 13 May 2026 00:00:39 +0000
Manifest this update: Wed 13 May 2026 00:00:39 +0000
Manifest next update: Thu 14 May 2026 00:00:39 +0000
Files and hashes: 1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: LQyyt2uIdUvbZ7S2b1Mh+rXpooTG7Z2jPNS05VlnDrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:b4:ab:0a:fe:c3:31:47:36:39:cf:36:9b:77:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Validity
Not Before: May 13 00:00:39 2026 GMT
Not After : May 14 00:00:39 2026 GMT
Subject: CN=eff3a46cd1fcaea65bc34bd2125923229ecc7c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:aa:f7:f4:82:39:95:c2:96:54:de:28:c8:fb:
a4:e3:7f:a3:38:dd:8b:61:08:17:64:a8:73:a3:6e:
39:74:66:6c:bb:30:05:c1:3e:0a:b2:05:41:e7:12:
1b:45:0a:6b:d0:e0:b8:35:fe:98:97:7e:e7:61:3e:
45:a8:3c:f1:69:d0:dc:31:4a:ff:a7:58:0f:92:5f:
67:ac:20:e6:2f:a5:dc:82:c1:d1:76:9b:24:8a:3f:
9d:21:6e:13:a8:32:a0:7b:ea:65:98:64:11:10:22:
a3:93:c5:15:bd:a2:4a:3b:a0:ea:df:a6:5e:03:67:
ad:1f:57:31:fe:50:db:d3:44:59:19:8f:77:af:fc:
e9:b0:6d:16:e5:2e:22:03:69:b9:91:23:09:19:d5:
20:04:db:87:34:16:85:73:ca:b0:83:97:75:32:58:
9b:4f:fe:ee:d2:0c:33:2a:91:3a:6c:4b:16:25:e6:
e6:72:f8:a3:7d:e2:ec:4d:da:e1:e6:25:65:df:33:
2e:a9:0d:0a:d7:71:8f:f5:47:5c:ed:f1:5d:14:9d:
17:20:9e:6e:bd:fa:2f:b0:ab:6f:b0:ec:02:35:cc:
b8:a4:ff:8f:28:1b:fa:80:c3:96:9a:0c:ec:16:5d:
bb:2b:84:3d:a1:d6:07:ce:21:f8:03:eb:77:06:f6:
45:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F3:A4:6C:D1:FC:AE:A6:5B:C3:4B:D2:12:59:23:22:9E:CC:7C:40
X509v3 Authority Key Identifier:
keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0c:ab:86:90:f0:96:d4:37:e5:b2:54:e3:4d:72:42:d6:2e:
f5:3a:73:d3:ea:9d:52:64:b3:44:e8:0c:6b:9d:c9:cc:f2:fd:
cf:98:3e:62:73:09:91:7c:18:78:65:3b:25:2e:7a:1c:54:b7:
d2:7d:58:b4:fd:e0:2d:b9:f2:a4:3b:d5:b6:77:4c:aa:9a:57:
a6:42:83:07:f4:05:46:6a:5d:52:11:cf:d6:92:d2:bc:52:68:
db:8e:10:ad:ad:7d:05:96:d8:b5:e8:88:88:b3:3a:1e:ae:41:
83:cf:5b:ac:94:7c:80:6e:64:5d:9e:44:26:63:70:30:dd:46:
46:56:95:b6:03:9e:d8:66:b2:0f:ca:1e:7b:72:26:ff:b0:da:
45:3a:d4:c1:2b:30:43:10:e4:d0:07:f2:45:b0:e5:d7:8f:f1:
1e:95:53:a5:bf:88:16:bc:fa:04:61:98:9c:e9:8a:d5:7b:ef:
38:3b:85:f1:32:05:8d:70:66:da:d1:0a:63:6d:02:49:26:5c:
96:d6:18:6b:10:d1:6a:1d:4e:a8:1f:52:9b:dd:07:bf:68:55:
8e:3e:ed:59:5c:47:d0:50:90:70:a4:0f:f5:d1:4d:1d:16:30:
c1:d1:74:65:05:d8:71:b2:c8:c8:e9:4d:51:8d:a3:ef:f7:f4:
49:0f:e0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:19:17 2026 by rpki-client