Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: xovx3mdbd8vuF4s2Jvpj51ewsKirH7anqYTN9bnYwHE=
Subject key identifier: 5A:52:5C:19:56:CA:55:1B:3E:65:2D:43:6C:FE:1F:D5:B8:95:F5:DA
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 019D2704CFFAE135BEBFCE2DE2496E0B10EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 1694
Signing time: Wed 25 Mar 2026 22:01:59 +0000
Manifest this update: Wed 25 Mar 2026 22:01:59 +0000
Manifest next update: Thu 26 Mar 2026 22:01:59 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: Z88fVNUT3wdAQcaPp5lzwaeuRTriQv8+xvU2RZPlfCE=)
2: 5VBqrJ3l2bBgVNFXgKoPrPjtOoo.roa (hash: pw/y5AALVmMkOsomb76pGvibV4sU9NfaodslXc53Ans=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:cf:fa:e1:35:be:bf:ce:2d:e2:49:6e:0b:10:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: Mar 25 22:01:59 2026 GMT
Not After : Mar 26 22:01:59 2026 GMT
Subject: CN=5a525c1956ca551b3e652d436cfe1fd5b895f5da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:f4:13:0c:22:12:04:1c:a5:ae:b7:da:e3:
72:4d:46:a9:9b:81:c2:a8:a2:49:33:8a:9f:cc:f4:
96:d1:a1:bc:39:6a:fc:57:ad:1c:26:c8:19:a6:c6:
d7:35:c3:f0:a3:55:bb:7b:01:6f:98:ca:b1:56:80:
a4:99:ae:ac:94:f1:e0:16:5f:ae:66:90:c9:ac:39:
2b:14:04:b4:ff:bc:a6:4a:47:77:0f:76:39:4f:21:
39:42:ff:2b:22:88:97:05:13:73:7e:d8:e7:66:3b:
43:18:fa:27:38:bd:ed:42:75:3b:6e:58:5e:e6:07:
32:5b:a9:bd:1c:b9:f1:83:3f:56:37:9f:bc:30:2c:
59:dc:1e:88:56:08:fc:ee:a8:2f:83:82:c5:52:a1:
a9:2b:a7:a1:27:74:2c:e3:dd:72:bc:fb:c0:ba:56:
a7:06:7a:e1:59:92:9a:6b:d6:2a:2f:7e:d8:94:e9:
dc:b9:6b:c2:a5:02:a2:95:3d:a5:78:63:02:dc:0f:
30:00:58:e8:4a:2c:a4:22:e7:fe:37:3e:c2:0d:7a:
72:39:ab:3d:15:3c:f2:16:4b:64:bb:a8:eb:47:98:
32:21:c9:b0:04:c2:b0:5c:c3:0e:a2:a0:60:48:42:
12:b3:45:f6:c5:92:42:af:5f:23:5f:1f:d2:04:63:
01:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:52:5C:19:56:CA:55:1B:3E:65:2D:43:6C:FE:1F:D5:B8:95:F5:DA
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f7:05:47:f0:1b:16:df:31:59:cf:af:73:66:7d:16:d8:85:
0c:8a:c2:0f:0d:08:b0:ea:3e:42:0b:b2:e5:9c:b9:20:23:0b:
28:c2:b5:20:2b:a5:4a:c8:d6:32:1e:77:b2:cb:2d:29:39:32:
5f:7d:a0:9d:ce:91:be:53:38:ed:9f:01:24:ab:1f:1b:27:90:
98:f7:4e:84:0a:78:34:f1:f8:42:82:93:a4:0e:25:c9:49:9d:
be:df:4f:99:51:bd:17:b0:c5:4d:99:aa:a5:bd:c4:73:61:e6:
46:20:84:e5:71:93:58:03:60:c5:e6:2f:6f:b4:70:3d:cb:ac:
6d:53:e2:36:e1:d8:31:a1:16:bc:42:08:95:79:0c:e7:90:be:
19:29:eb:92:ff:69:79:d1:2c:d6:fb:3c:31:f3:d4:91:ab:b7:
f6:5c:49:79:ee:a8:36:49:ea:c7:dd:24:af:66:2e:15:73:24:
72:e0:e0:52:ba:7e:70:60:28:4c:13:e7:40:f1:c6:a7:ef:92:
9e:da:f2:b2:59:18:ec:bf:08:1e:02:07:d7:ba:2d:db:13:31:
89:ee:86:ef:5a:2d:b4:12:3f:c2:d0:c5:9f:a5:98:ce:6c:34:
b8:6d:29:fb:fd:d2:c4:71:ef:9b:4c:f0:a1:72:26:82:ac:45:
ba:30:87:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:41:01 2026 by rpki-client