Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: RJLm1/4Xgqv4IKMH7ITlCO/pZwg3mjqzNDGzHCuyMvw=
Subject key identifier: 18:E0:4D:3B:FB:12:AC:81:D3:41:E4:85:CD:BB:C7:B5:4D:48:47:42
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019D27A892A6BC6C2FA16D1385926397F331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 0522
Signing time: Thu 26 Mar 2026 01:00:52 +0000
Manifest this update: Thu 26 Mar 2026 01:00:52 +0000
Manifest next update: Fri 27 Mar 2026 01:00:52 +0000
Files and hashes: 1: XQv7wEz4cC45Y-u3Csa_kFWZP8A.roa (hash: Rg6Z2DsQeZ19hmYMspcAw/07/1QRuxsRYhNWi/fAiwc=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: PmF4oBR/RPywGawVtNdNs7mFP6H0EQY+KzCaN00Oc1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:92:a6:bc:6c:2f:a1:6d:13:85:92:63:97:f3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Mar 26 01:00:52 2026 GMT
Not After : Mar 27 01:00:52 2026 GMT
Subject: CN=18e04d3bfb12ac81d341e485cdbbc7b54d484742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5d:c8:1f:5e:f3:02:a4:6d:10:08:9f:d2:6f:
bb:6b:55:26:70:51:74:2f:d6:b2:47:ef:d3:fc:a7:
0f:54:28:12:d8:c2:cc:b5:18:39:b6:fd:a7:47:45:
df:27:cf:f0:53:54:ee:31:76:ea:af:9d:3c:af:f5:
7f:72:88:11:5b:10:3a:3d:d3:ad:85:3a:9f:94:0e:
01:9a:19:e4:5b:0b:54:65:f7:7b:85:96:9b:d3:1e:
ca:5b:43:09:0e:65:0d:c9:d9:40:ba:3e:47:22:9b:
e5:04:12:a8:4f:5e:48:92:69:e1:7b:a2:83:cc:a2:
87:5b:72:d6:a3:3e:97:a7:bc:3b:6a:9e:95:4b:be:
e9:3f:d2:47:70:79:ca:1a:5b:7e:e5:03:ff:25:5d:
26:fc:a5:d9:80:fe:16:ff:83:8c:a4:b1:4b:d8:a3:
ce:3b:e5:00:99:53:32:b0:37:39:3e:ca:8b:6e:4b:
86:8f:9c:c0:58:25:9c:f0:0b:83:80:5d:83:92:2d:
4c:6e:ca:46:c5:eb:a8:c1:d2:f5:2b:5e:99:34:49:
d2:6e:30:1d:47:23:6e:49:19:ba:25:cb:13:bf:04:
07:0c:77:35:0e:af:5f:79:6e:3b:99:15:19:76:2b:
9a:2d:9c:c0:32:46:e2:15:06:b5:7d:37:23:1f:12:
a7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E0:4D:3B:FB:12:AC:81:D3:41:E4:85:CD:BB:C7:B5:4D:48:47:42
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:c8:2f:a5:d5:1d:05:dd:5a:0e:9c:6b:d7:78:28:54:f3:76:
cc:5d:72:34:88:69:ed:46:5f:b5:72:24:d0:27:49:b8:35:68:
bc:9d:0d:65:48:1f:bd:e0:1a:0b:94:c4:ee:ad:4f:38:5d:95:
e5:07:11:ec:7b:ab:70:9c:dd:13:f6:90:e5:7f:95:1c:e3:4d:
78:4e:e7:0a:36:5b:c1:66:7c:87:4a:f8:23:13:dd:19:a7:dd:
05:9c:02:01:70:a1:7f:8d:f2:27:99:be:2b:8d:b5:6e:8a:4b:
20:da:69:e9:b2:02:c7:eb:e7:f1:4f:25:af:76:0b:91:ba:ed:
57:ca:bc:45:1a:81:c0:44:e4:27:02:4f:de:4f:3e:ab:4d:e1:
52:59:3d:c6:db:9e:d7:f3:e0:e0:83:88:ef:07:10:24:4e:98:
90:7b:e8:bb:aa:a6:d9:ea:63:91:54:86:7e:6d:9d:4a:11:61:
cb:3d:0e:f2:f3:88:fd:9e:fc:66:22:1c:d7:a7:88:52:73:72:
05:ef:30:33:2f:9b:24:2a:ee:55:3e:1a:d0:67:ba:3e:17:c3:
84:68:b7:b3:ce:a4:64:df:a1:ef:b9:36:3b:0c:0a:01:cd:5c:
54:a8:ee:18:97:30:bc:db:61:63:b9:5b:d7:0b:ca:76:02:a6:
17:85:3e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:18:29 2026 by rpki-client