Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: kp7v88RgdvmOJKvZzXFlibPu2JATysRiHCRhEGL/K2o=
Subject key identifier: 3D:0B:87:B6:89:A2:57:7B:30:02:C3:6C:75:88:A1:38:A0:B4:70:14
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019D2A3C18F4B429CA00280F5C0DEB4DD726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 13:01:14 +0000
Manifest this update: Thu 26 Mar 2026 13:01:14 +0000
Manifest next update: Fri 27 Mar 2026 13:01:14 +0000
Files and hashes: 1: dhA92pR8NVPLyW6mzK0XHy6ZgWk.roa (hash: AS2PEdg4UVrkHexwfvP85NaTExj06DZhVZRZTbTSV2U=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: K0jeeLkHXwIHfwNi7Y3/IS5iNHlEyBkHypyNfJB1+rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:18:f4:b4:29:ca:00:28:0f:5c:0d:eb:4d:d7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Mar 26 13:01:14 2026 GMT
Not After : Mar 27 13:01:14 2026 GMT
Subject: CN=3d0b87b689a2577b3002c36c7588a138a0b47014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:4b:e7:71:70:7a:5d:17:9e:9e:39:23:21:
d6:2c:33:b6:7a:05:5b:c3:b3:db:6b:18:17:5d:8b:
c3:74:0d:5e:ed:ac:ca:64:f2:59:24:04:7d:ff:0b:
e9:ba:f2:0f:c8:65:7c:73:9a:28:57:54:e6:b3:45:
7a:c1:63:48:b7:a3:06:c3:e1:50:c9:78:5f:f6:43:
43:48:48:b2:71:0e:f3:23:96:81:76:db:91:89:14:
b0:85:df:ee:98:10:67:31:78:0d:9a:50:ea:c1:c7:
e5:7d:23:46:9b:62:52:4a:cb:7c:ff:50:df:bf:a4:
08:a5:41:d3:4e:ed:db:10:09:0c:98:8b:8b:5f:38:
2e:3d:c5:8f:e9:fc:b9:dc:34:b2:ff:0f:d1:29:0f:
95:82:b9:8d:07:e8:19:7f:b6:a4:0a:ad:d6:3b:cf:
26:af:1f:95:00:ae:bd:c3:dc:8d:ee:ab:37:91:20:
73:3e:06:78:f5:c9:41:02:af:ea:08:68:ea:a7:08:
2c:3e:cf:4c:2c:04:51:f7:75:26:c3:81:b5:ae:5f:
80:87:cf:45:1f:9c:55:d6:5a:94:c5:47:0b:8e:1c:
7b:b5:4b:94:c9:26:12:fe:9d:50:59:de:d8:a0:ab:
71:6d:bf:d1:1d:e2:6f:46:fd:62:61:a1:95:95:96:
75:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0B:87:B6:89:A2:57:7B:30:02:C3:6C:75:88:A1:38:A0:B4:70:14
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:1b:1d:ef:8d:8b:6e:e4:83:27:8c:38:9d:de:30:71:21:c4:
b0:53:01:4c:ef:fa:a1:41:20:c1:38:f5:4e:7c:e1:e7:c2:4d:
74:e2:29:cf:0d:55:ce:62:d6:86:a5:41:bd:76:ee:b6:02:4f:
77:a8:07:d1:05:55:7f:52:ea:e4:11:8b:24:55:af:f1:b8:81:
c9:78:3e:b8:00:5d:86:d2:bd:4f:ab:1e:8e:0b:ca:7a:6b:86:
cd:8a:de:52:60:43:de:e3:a7:b6:eb:71:ef:c2:f6:43:12:b5:
20:8d:00:14:bd:41:60:3d:0a:3f:77:c7:95:9d:af:ea:6c:62:
c9:b5:3c:e2:54:84:b6:0b:b8:27:eb:55:96:d5:cb:23:98:f0:
bc:a1:52:d5:53:3d:85:a1:83:93:ba:04:1c:7e:3d:dd:8b:e2:
07:d9:cd:90:40:de:af:f2:14:69:d7:c6:ee:86:ba:eb:e5:3d:
fb:a9:c8:0b:cd:f8:19:53:49:84:ee:29:d8:7f:a9:13:34:38:
52:9f:3b:cb:c2:74:27:9a:ef:96:67:ee:3b:19:9c:46:dd:c2:
4b:ee:e6:7c:eb:11:6e:ad:c3:7c:84:bf:89:2f:f7:70:d1:fe:
b6:84:5f:ad:ca:88:bd:a2:0e:23:51:a4:f4:f2:a1:52:a2:92:
60:7d:ea:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:13:58 2026 by rpki-client