Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: u6WFIoUx42avDwUyuBHUBao1T89/Zxv8JdZIpZK9QuE=
Subject key identifier: 7E:07:1E:38:19:0B:0D:63:DE:25:29:A8:8A:71:18:1F:04:09:BE:ED
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019E1D22A3FF32DEAE09EF9E8BA31CAD93E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0B8D
Signing time: Tue 12 May 2026 17:01:09 +0000
Manifest this update: Tue 12 May 2026 17:01:09 +0000
Manifest next update: Wed 13 May 2026 17:01:09 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: n4ea0WhKUmuxMD5zk2hghEu2UDrnpVC53Ot/BFrSZfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:a3:ff:32:de:ae:09:ef:9e:8b:a3:1c:ad:93:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: May 12 17:01:09 2026 GMT
Not After : May 13 17:01:09 2026 GMT
Subject: CN=7e071e38190b0d63de2529a88a71181f0409beed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c3:c6:b9:ac:9e:e9:46:0c:f3:a8:9b:68:e8:
ab:fb:c4:50:22:a6:c2:a3:c0:d4:dd:7c:72:43:60:
1a:4b:8b:77:e8:30:16:8a:0d:c7:7a:89:01:4a:48:
33:cc:08:35:f5:ba:54:57:2a:90:58:6b:55:2d:7b:
92:39:ef:f7:ba:b9:08:a5:e8:ef:67:63:f0:e7:0f:
34:0c:b5:f9:83:a3:5b:42:35:bb:55:4b:05:4a:2b:
37:d6:d7:fd:27:c4:65:e6:5a:e7:1f:30:1b:35:c0:
e8:be:a9:49:c6:cd:d4:25:10:51:76:4a:44:1a:cb:
99:2a:fd:ca:8e:c3:7f:cd:9d:9a:47:e2:c6:e2:a7:
b8:6d:c4:39:b9:bf:44:4c:37:fd:00:13:e6:fe:37:
91:85:97:45:3a:8a:b9:a0:76:59:d0:a1:ca:cb:32:
26:55:c2:38:03:9f:38:df:ce:f6:97:75:b7:c1:fa:
21:54:54:d3:e1:12:78:87:b6:bc:18:6a:aa:31:a6:
4e:a4:c2:7b:ff:c2:23:86:ca:a0:dc:24:76:5a:70:
32:6a:68:36:92:e3:bf:33:06:0c:96:d1:bb:e8:04:
c6:de:a2:72:d7:11:ed:65:9c:be:a3:98:b4:69:20:
6a:65:16:c1:ab:bf:2a:6c:ec:4c:f1:89:1e:06:22:
87:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:07:1E:38:19:0B:0D:63:DE:25:29:A8:8A:71:18:1F:04:09:BE:ED
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:9d:d3:99:b8:19:8c:df:cc:24:b2:c8:16:86:1f:cc:0b:28:
18:67:8f:c3:a0:e7:b1:fb:d0:de:69:9c:6b:c7:6e:35:2c:25:
64:ac:58:05:13:7a:cc:29:ad:ea:e6:14:d7:3b:d9:37:be:d8:
22:cc:5b:af:f8:3e:38:15:c1:99:37:35:89:a0:3e:42:3d:f7:
36:79:ec:0e:90:2a:d4:55:7a:bc:d4:f3:24:91:bd:f1:e1:76:
97:78:58:3e:a2:16:ea:57:e0:dc:1a:66:49:6e:2d:7a:2a:6c:
bb:72:af:00:6b:91:ff:a5:25:8e:7e:b4:52:93:f6:2e:7e:e6:
39:19:18:6f:d3:5e:fc:bc:f7:dd:76:fd:45:46:a0:ee:ed:b2:
5b:dc:d0:12:81:b5:4f:04:86:00:4e:07:a9:c8:a8:7f:8e:dd:
94:34:f4:54:26:98:28:97:ea:b1:40:4c:d9:2a:df:57:f6:28:
38:65:5d:32:e4:3c:b9:10:74:1f:a0:4e:fb:b7:75:54:e9:df:
7d:58:f5:5d:e5:34:e0:c6:af:53:1a:51:37:82:35:21:85:5d:
0e:16:a0:01:d3:d1:15:9c:20:8c:d9:f4:8a:63:ff:a6:30:0f:
ae:e2:fd:2c:0b:6a:b7:8c:a8:40:eb:55:a0:a9:b3:27:89:85:
b8:3d:27:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:33:46 2026 by rpki-client