Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
File: pWT0IqqXs96coPZ5Gfv4LrH93dI.mft (raw, json)
Hash identifier: H6qxatGIkQ473YSxuoSTZzSSZ1HiXo08ROSBSZ6ojYw=
Subject key identifier: 3D:E8:40:6D:5F:1A:F5:13:AE:9A:DB:E2:AC:60:08:EA:30:E9:F3:14
Authority key identifier: A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2
Certificate issuer: /CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
Certificate serial: 019D2703B83A1FA42B007D95570AE93018C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
Manifest number: 08B0
Signing time: Wed 25 Mar 2026 22:00:48 +0000
Manifest this update: Wed 25 Mar 2026 22:00:48 +0000
Manifest next update: Thu 26 Mar 2026 22:00:48 +0000
Files and hashes: 1: pWT0IqqXs96coPZ5Gfv4LrH93dI.crl (hash: YmHyF55wv+iorACOg6uBfgQz5bSQZKgsC5X67zG1P+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:b8:3a:1f:a4:2b:00:7d:95:57:0a:e9:30:18:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
Validity
Not Before: Mar 25 22:00:48 2026 GMT
Not After : Mar 26 22:00:48 2026 GMT
Subject: CN=3de8406d5f1af513ae9adbe2ac6008ea30e9f314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:00:03:01:b6:6c:3d:c2:69:53:40:12:56:8a:
fe:5c:38:3d:83:12:79:cc:80:6b:5b:01:b2:0d:aa:
ec:7f:e3:06:6d:e5:75:00:79:cb:b6:b6:c7:28:57:
cb:4a:97:cd:7d:b1:b0:00:0c:ab:3a:0b:4a:9b:b8:
74:44:46:af:25:09:5a:5d:ca:30:bd:56:e4:ad:2f:
6e:54:5e:f1:f6:49:03:0e:3c:87:ce:9c:0b:c7:2c:
ab:18:d2:a1:17:49:ec:d1:65:64:4b:8d:c6:79:5d:
a3:04:c6:23:f0:e0:fa:64:c9:f4:60:f5:45:63:a0:
f8:1a:96:bb:4e:5f:c4:59:0f:ef:80:6d:10:13:8b:
94:79:41:dd:98:8c:a2:79:16:d3:d2:e9:7a:49:79:
49:7d:10:17:4a:5b:e5:1b:ec:a5:f5:bd:15:9d:24:
37:0d:bf:00:70:1a:90:6c:c5:b5:28:e7:9d:e7:cc:
2f:3b:2a:9b:82:e5:b0:23:97:95:c4:b5:f9:db:d8:
fe:29:3e:f0:9b:5d:e5:11:b2:3d:01:1b:79:20:cc:
e8:2b:eb:5d:10:44:3f:04:7a:ff:3e:90:c7:6a:fd:
3a:1a:89:5f:38:35:7c:c4:85:55:90:29:03:b7:33:
bf:c1:14:5e:d0:0e:7d:58:b4:bd:13:bc:b2:64:ac:
aa:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E8:40:6D:5F:1A:F5:13:AE:9A:DB:E2:AC:60:08:EA:30:E9:F3:14
X509v3 Authority Key Identifier:
keyid:A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:1f:31:27:21:51:6e:3d:4c:6d:90:ce:94:c8:79:06:18:41:
0e:b7:2a:7a:d8:9b:47:86:32:b8:90:b4:04:60:39:4b:5f:c7:
91:bd:99:0f:c5:dd:8e:a4:5a:1a:af:5e:de:a3:73:8a:38:7a:
12:6e:57:d8:7c:b3:26:b0:ba:50:ff:5e:9d:23:cf:80:c0:14:
6b:d7:8a:a6:c0:cd:2a:ec:b2:88:bd:79:29:82:1a:4a:4e:a0:
90:5e:b0:db:1b:86:7e:29:43:05:8b:a6:ef:1d:67:d8:c0:6c:
f4:a4:e9:08:6e:a9:41:39:ef:d5:0d:43:c0:ac:c0:1d:19:34:
ef:91:a2:33:f3:47:a6:ec:db:ae:12:8c:ec:0a:d0:33:f7:d1:
9e:a3:7d:38:5e:88:24:02:d4:68:dd:cf:e1:8a:19:93:5d:86:
1e:81:11:d6:c9:70:2f:d0:4d:28:87:8f:47:87:ea:d2:fa:cc:
e3:21:e7:70:21:9f:aa:c2:68:70:1d:5f:fa:1e:31:a1:b5:11:
e8:c5:72:3d:c9:63:a8:17:2b:6b:37:b5:c5:1f:75:fe:aa:68:
d8:90:dd:ca:81:40:ad:ba:41:46:99:2b:4a:c1:2d:47:c1:e4:
01:e2:01:c9:4d:82:0a:1a:3b:27:c1:cc:52:4b:19:58:8e:65:
6a:aa:3e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:13:25 2026 by rpki-client