Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json)
Hash identifier: OQw/PmSZXp8UQrtBvrP0zIOWqtlhF7rFpft2Okc2veE=
Subject key identifier: 44:C6:1E:D9:29:57:AB:17:9D:CD:5E:3C:48:E7:6F:69:53:99:5D:7B
Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Certificate serial: 019E1D596C45096C08A999AA74CABEF1F7F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
Manifest number: 0681
Signing time: Tue 12 May 2026 18:01:00 +0000
Manifest this update: Tue 12 May 2026 18:01:00 +0000
Manifest next update: Wed 13 May 2026 18:01:00 +0000
Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: b+UzLx+7jwc45YG3T5VrsTuACxzFpWrUn8vD9Osx3Io=)
2: cMXu7WrvsmC-lThLKVR5Js2GYXY.roa (hash: EpVFpanfzZyTV+MCY5Rt4j7mVt0TS3sr2EacwZSVOVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:6c:45:09:6c:08:a9:99:aa:74:ca:be:f1:f7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Validity
Not Before: May 12 18:01:00 2026 GMT
Not After : May 13 18:01:00 2026 GMT
Subject: CN=44c61ed92957ab179dcd5e3c48e76f6953995d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:30:c8:4b:81:c6:2b:7e:3f:5b:96:11:90:48:
19:11:1f:a9:13:51:70:89:d0:45:60:ac:68:ba:8c:
a4:8e:7a:cd:61:3c:31:79:f0:34:37:fa:30:70:96:
4c:3c:ba:46:31:ad:01:28:b0:4b:7c:97:81:6a:03:
c2:37:a7:07:0d:e6:5f:37:f1:b8:81:3d:f8:7d:00:
0f:39:31:3b:6f:3a:7e:63:7b:fd:b8:6a:c6:21:8d:
f2:85:b2:fe:0e:10:30:9c:0b:a6:bb:c6:21:61:e2:
dc:ab:84:47:5b:91:33:43:7a:38:6f:36:e5:66:e5:
f7:33:41:3a:5a:27:60:d4:9e:c2:a4:c8:18:34:fc:
d9:3b:38:63:7b:c5:b0:f5:48:ad:93:a7:ba:72:c5:
35:a9:41:ba:fd:3b:dd:d6:30:65:6a:fe:58:da:22:
e0:f3:50:68:69:ae:6d:1f:c2:c1:55:5f:73:73:3b:
05:cb:39:10:1a:f2:9a:60:f9:b3:e7:84:3a:4a:76:
45:95:41:3d:c7:83:00:e7:7a:a0:67:b2:a3:36:8a:
95:6a:2b:c5:ec:bb:b3:39:73:36:b5:77:8a:1b:1a:
cb:f3:91:73:05:e3:9f:86:fb:33:a7:c7:dc:27:a6:
df:f4:58:9e:b0:45:27:81:0e:39:d2:25:eb:83:d5:
96:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C6:1E:D9:29:57:AB:17:9D:CD:5E:3C:48:E7:6F:69:53:99:5D:7B
X509v3 Authority Key Identifier:
keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:8b:ad:ec:0d:03:88:b8:64:ee:78:fd:c2:2a:72:90:3e:81:
4d:55:e4:91:a4:08:17:bc:47:0f:17:38:ba:8d:de:78:f4:6d:
5b:2d:95:e4:cc:d5:c1:e6:a2:02:1a:fe:90:1f:e6:1b:55:f4:
04:a2:41:23:e7:a8:ab:dc:85:5e:18:5b:e2:fe:28:ca:4b:5e:
0d:86:8e:af:d7:d4:c6:da:5b:90:9b:e3:09:c0:2e:bc:f0:69:
de:72:35:22:c9:1e:50:4a:a6:12:92:42:37:2b:54:f8:21:11:
13:48:92:7a:e8:74:c3:a9:9b:2a:2a:c2:97:18:18:75:5b:f3:
97:36:9b:1a:43:73:3a:9c:c2:25:03:f5:3f:5d:e1:e5:59:ba:
e5:e9:44:20:b2:6d:d4:9f:83:dc:e7:68:2b:c5:50:43:b6:44:
7b:83:8a:63:04:97:3a:5c:0f:c6:6d:2b:90:45:1f:c9:81:b6:
3a:d9:71:78:88:cd:59:6d:22:bd:2d:6b:61:de:78:22:25:76:
9a:07:4e:3b:ff:0c:f9:12:cf:d9:0a:b3:70:2b:bd:8e:70:52:
15:fb:b1:cb:e4:29:94:3e:80:d6:4a:29:c3:26:c9:fa:d1:1e:
ea:9b:d4:4e:57:37:4c:a8:1b:b0:dd:f7:62:67:e1:b9:81:be:
2b:ad:7f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:55:40 2026 by rpki-client