Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
File: 1PvHTNH4egvxbEgvYgHJueskTqI.mft (raw, json)
Hash identifier: pGXq7ghLpB2w/FiWdoCP/NR1Zq+ZfwBoXABnwGZWnvo=
Subject key identifier: 57:D2:2D:AA:E9:26:43:BF:8E:EA:B7:63:E2:DA:49:0F:36:B1:59:DB
Authority key identifier: D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
Certificate issuer: /CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Certificate serial: 019D2929785D5A190EA02AE2BAFC4B771917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 08:01:16 +0000
Manifest this update: Thu 26 Mar 2026 08:01:16 +0000
Manifest next update: Fri 27 Mar 2026 08:01:16 +0000
Files and hashes: 1: 1PvHTNH4egvxbEgvYgHJueskTqI.crl (hash: C49httoPwfeHkZLMvbkRR1mtaHmOrHkwIdtqKQfFb2M=)
2: R3ml3p2UCbj2WZwYh-kGTkhVCeI.roa (hash: 61bHqaM6yloEoaMB3RQ50xunau9HQvm40J9/cQnFMg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:78:5d:5a:19:0e:a0:2a:e2:ba:fc:4b:77:19:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Validity
Not Before: Mar 26 08:01:16 2026 GMT
Not After : Mar 27 08:01:16 2026 GMT
Subject: CN=57d22daae92643bf8eeab763e2da490f36b159db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e2:eb:3e:fb:ec:81:96:6a:c1:71:b3:22:02:
3e:20:5b:6d:62:9c:69:84:5c:4b:82:fa:3f:9a:db:
c0:93:43:bd:85:c2:c4:6b:ea:84:5a:3f:33:38:f7:
47:82:68:93:85:11:5b:50:a5:f0:f0:55:fe:ab:78:
25:de:c2:f4:d6:48:84:4f:97:d4:65:cc:e0:d4:06:
58:b5:ab:b8:b3:5f:50:ab:f2:f8:05:cb:98:a7:8a:
65:7e:4f:f9:f1:a7:3d:e1:7a:e8:01:6e:21:c2:e5:
41:d1:95:de:30:c2:51:13:ad:da:d3:8e:cd:e5:3d:
eb:88:fc:a3:6a:1b:bf:a9:4c:7e:05:1a:7c:a1:f3:
33:2d:e7:ef:5a:9d:fa:d0:84:41:a6:f5:dc:b6:84:
e9:a5:08:48:6b:de:8b:42:90:17:15:25:25:2b:9f:
25:7c:9d:61:86:07:82:0a:6b:68:fc:8f:dd:92:2d:
15:09:be:00:92:0c:80:39:cf:75:7d:04:18:90:fa:
02:ba:37:b4:c3:38:e9:3b:c2:8a:93:21:6f:bf:fc:
86:81:d1:f8:cc:4a:4d:ef:a3:9e:cc:12:74:b2:d0:
97:97:c4:fa:98:f0:48:48:35:78:f6:5d:dd:17:a7:
0c:67:03:e5:d5:0b:c0:24:84:69:00:c1:ec:12:11:
13:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D2:2D:AA:E9:26:43:BF:8E:EA:B7:63:E2:DA:49:0F:36:B1:59:DB
X509v3 Authority Key Identifier:
keyid:D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:35:ba:57:51:0c:96:89:8d:96:24:2e:d9:c6:d7:46:65:df:
a7:ca:80:4e:94:60:81:72:fc:41:33:9b:56:e7:b9:db:01:3f:
ee:44:98:1b:16:ae:90:23:43:92:6e:60:d4:7e:8c:ff:bc:04:
ac:e2:e0:2b:90:28:0b:ab:a3:54:76:62:4b:19:69:31:db:c1:
93:0c:de:7a:93:d3:a4:e0:9c:e3:23:4c:2c:f2:4e:23:6e:ca:
f9:11:1b:a2:38:6e:41:a1:b2:1f:29:bd:77:52:b8:d8:0a:89:
7d:a0:9d:ea:3c:41:53:f3:8a:9f:d7:d7:64:99:4f:6d:28:96:
10:fb:ad:60:60:14:37:6e:3f:a6:b0:d1:45:28:55:29:37:52:
15:de:97:cc:76:71:9e:7f:07:4b:95:e0:f0:3d:fc:53:a4:72:
a8:0e:fe:56:b8:15:56:32:8c:54:91:fc:00:48:bc:c1:a6:50:
17:a2:4a:bb:9a:a4:cb:2e:c6:0e:c8:12:e0:53:46:2f:48:b0:
9f:1e:89:f0:d8:b6:ad:20:6d:e6:99:e1:a6:b8:dc:cb:29:1a:
d3:61:c5:70:94:e9:5d:cd:a1:a0:d4:dd:d7:e8:1a:1c:27:b3:
1c:33:42:ca:57:f0:bb:eb:0f:a1:b4:22:19:66:6f:b0:a5:90:
01:95:1e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:57:36 2026 by rpki-client