Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: uFHPL2Rmlc1NJ1PJcDd/izDql3arx487SqWVVupm3Qw=
Subject key identifier: 90:5B:28:88:4C:5C:F6:19:95:EC:39:1B:94:78:A9:7B:06:C6:BF:B3
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 019D27A929B43F0FBEB265122CE173F53962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 09EA
Signing time: Thu 26 Mar 2026 01:01:30 +0000
Manifest this update: Thu 26 Mar 2026 01:01:30 +0000
Manifest next update: Fri 27 Mar 2026 01:01:30 +0000
Files and hashes: 1: 5sg8jhdzeaiLeEp6wxZ_2JeXdD4.roa (hash: liGuxIjPN3BQno0UGJZyTCNg4Fr30OK1nNLU8WxYRpQ=)
2: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: nsxCB5pkuIaEj69URTk1OXe6hbqbl3324jXJlGc0U/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:29:b4:3f:0f:be:b2:65:12:2c:e1:73:f5:39:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Mar 26 01:01:30 2026 GMT
Not After : Mar 27 01:01:30 2026 GMT
Subject: CN=905b28884c5cf61995ec391b9478a97b06c6bfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5f:2f:4f:e6:50:98:75:f2:8c:92:1f:8d:ed:
9d:c2:b6:64:0b:24:58:3f:0b:83:b4:10:fd:a2:3f:
2b:2f:91:3c:80:ed:cc:97:78:ab:84:3f:c2:d2:23:
22:d2:bf:81:b7:d8:e2:64:a2:17:9d:45:d7:c8:ba:
4b:af:08:42:db:9b:c5:56:14:2d:d5:b8:21:7b:b7:
3b:89:ad:61:b3:be:02:8e:48:02:78:e3:38:d0:7a:
0c:57:5f:d6:cd:ee:d9:a6:39:2a:34:cd:3d:41:01:
5f:8b:e6:7d:51:94:94:19:5a:22:ed:df:b9:60:28:
da:3d:15:9a:05:2c:01:9a:2b:92:16:0a:ea:df:48:
8d:5a:1e:c5:dd:cd:f8:5a:45:f3:0e:a2:ea:d3:43:
ab:9d:7f:38:ec:f9:2c:55:64:3a:4d:26:2f:7f:85:
cc:4e:9c:e2:dc:99:bb:bb:a8:61:5d:a6:5b:77:4e:
29:e6:49:a6:f9:ad:5b:cc:de:ef:78:ed:ec:a5:9b:
f0:c1:a4:19:4e:c1:d0:a8:5b:1e:c5:68:5b:67:06:
43:fb:24:6f:71:91:4b:ff:8a:98:a1:9f:a0:07:4b:
be:b6:c7:69:94:40:5f:44:b3:c2:b0:0b:35:8a:40:
27:5f:0b:c8:9f:59:db:f4:b8:e2:44:f2:07:c1:a2:
49:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5B:28:88:4C:5C:F6:19:95:EC:39:1B:94:78:A9:7B:06:C6:BF:B3
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:18:c7:2b:9d:57:1f:f9:b8:fb:f5:98:47:3b:40:7a:e6:9b:
fc:50:38:28:bb:74:91:f4:e2:46:59:64:36:78:16:2d:90:d5:
05:a9:d2:5d:a5:22:63:68:71:fb:1a:b5:3a:9a:cc:69:97:63:
27:2a:1b:4c:13:02:77:35:b5:de:46:aa:6d:fb:46:6a:00:96:
04:81:15:5f:5a:3d:93:30:7e:85:d8:61:47:e8:89:3a:64:f7:
a4:41:74:b5:8e:74:1f:39:5b:3d:74:9c:40:43:cf:48:71:82:
97:24:cf:bf:4b:b7:13:8c:80:30:e4:51:c5:96:bc:ac:b5:fe:
6e:c7:13:da:e2:73:cf:b3:54:31:09:06:c7:af:56:7b:4b:dc:
31:9c:0a:36:20:53:fc:1f:80:18:37:5f:7e:fc:7c:0e:a5:36:
e1:93:ba:ec:fb:cc:84:0d:8e:20:c8:bb:34:30:4d:4f:07:cd:
1d:3c:9b:28:bc:21:59:6e:ac:31:d6:52:fd:33:ac:41:5b:4b:
cd:9c:75:d9:66:0b:58:a2:db:34:9d:70:ff:43:42:40:a8:9b:
26:00:12:c4:0a:c9:3c:1c:36:77:6d:bd:c5:59:40:76:80:22:
75:d4:5b:74:9d:84:64:4f:f4:27:87:ef:f3:dc:fb:90:33:50:
b0:76:25:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:39:24 2026 by rpki-client