Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
File: 9l95H50M9str44nJRWjId0BeUUQ.mft (raw, json)
Hash identifier: hO8rcFETCTUuCxVsM/00rF4kHoeq/L9GXE5mAM9oYjo=
Subject key identifier: E5:8F:31:CB:F6:9E:0E:BD:84:6A:7C:FA:F9:9D:37:11:EC:1A:9A:68
Authority key identifier: F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44
Certificate issuer: /CN=f65f791f9d0cf6cb6be389c94568c877405e5144
Certificate serial: 019E1EA3BBFE29B2391C9C0ABCE9636D173C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
Manifest number: 0870
Signing time: Wed 13 May 2026 00:01:47 +0000
Manifest this update: Wed 13 May 2026 00:01:47 +0000
Manifest next update: Thu 14 May 2026 00:01:47 +0000
Files and hashes: 1: 9l95H50M9str44nJRWjId0BeUUQ.crl (hash: 76nY0yDwdppOmLKR4kpDu4+TR7oCz0F8Tchb3JhHFZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:bb:fe:29:b2:39:1c:9c:0a:bc:e9:63:6d:17:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f65f791f9d0cf6cb6be389c94568c877405e5144
Validity
Not Before: May 13 00:01:47 2026 GMT
Not After : May 14 00:01:47 2026 GMT
Subject: CN=e58f31cbf69e0ebd846a7cfaf99d3711ec1a9a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cd:9d:5f:3f:72:ea:d9:13:45:3b:d3:b0:c2:
c2:33:01:5d:30:8b:2b:69:95:90:1b:4b:8f:b1:7d:
aa:8a:b9:d1:d3:ea:0c:65:2e:77:85:66:f3:06:04:
33:ed:c8:b0:dc:7c:75:0e:f6:9d:bc:86:91:c4:d4:
68:4c:9c:5f:23:88:0e:62:d5:6b:7e:5f:a9:e1:bb:
8a:29:00:74:dd:ca:95:c1:5e:50:50:2e:b1:80:3d:
e1:c2:30:cc:32:27:3c:10:0e:56:75:c7:83:65:5c:
6a:5b:e1:36:32:d7:51:58:3f:f2:ee:0e:8b:88:91:
df:ec:25:43:16:1f:84:33:ec:77:c2:46:af:1b:a8:
8c:f3:41:da:ab:b4:b2:1e:81:c6:64:2a:b3:ac:78:
8d:bc:42:5f:af:06:5d:df:c6:de:7c:8e:7b:30:db:
0c:64:0f:25:79:68:ef:db:14:c6:4b:4e:58:92:5c:
15:2a:97:da:0b:13:14:96:71:f8:aa:b9:e5:68:d3:
6d:a0:5b:4b:d9:45:3f:41:50:0b:fe:13:44:79:6b:
f2:fc:a0:9f:17:d3:63:7d:e1:c8:fd:4d:2d:1b:f3:
5f:ad:14:a2:82:12:83:02:b9:3a:f3:eb:98:3b:53:
34:a8:17:9c:e7:2a:ec:7f:a6:60:8c:2a:b7:36:62:
ce:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8F:31:CB:F6:9E:0E:BD:84:6A:7C:FA:F9:9D:37:11:EC:1A:9A:68
X509v3 Authority Key Identifier:
keyid:F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:4d:1f:d0:7b:31:38:da:e8:53:df:26:0a:9b:0b:c1:7b:51:
d4:15:80:95:41:bd:5d:78:9a:a5:50:6e:39:d0:04:1d:4e:5f:
b6:08:b3:d5:90:6d:6c:d3:c7:f4:aa:e0:27:ee:9c:01:40:49:
ad:c9:3c:b6:db:03:de:87:0f:34:53:07:6a:17:77:6e:ad:37:
43:2a:89:11:79:88:79:87:8b:1c:75:92:5b:d3:e0:78:2b:31:
12:63:3c:a6:19:fc:92:e9:69:64:5d:ea:00:08:7f:5e:44:ff:
47:bd:8c:7d:87:d9:21:1c:04:9a:61:de:fd:e4:f4:99:91:13:
79:13:73:03:c8:12:b5:a6:db:fa:7a:7f:13:7b:5f:88:74:39:
c5:ca:59:00:05:af:03:54:dc:cb:d4:17:ea:fa:db:74:1a:ba:
f4:37:2f:eb:ff:48:4b:fa:58:70:19:2e:5d:0a:56:89:dc:c0:
3b:34:f5:b6:bf:93:b6:03:6f:42:29:03:8e:d7:f2:a0:8e:9b:
a2:bb:ef:7d:16:b1:72:60:46:37:f2:87:17:42:01:0f:bf:12:
e4:80:d2:ab:e1:fb:d1:a9:91:91:4c:09:67:77:f6:e2:28:5e:
cd:71:2b:ec:f8:ca:ba:d2:54:5f:b5:fa:10:e8:85:0f:60:f3:
39:52:25:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:00:37 2026 by rpki-client