Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
File: rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft (raw, json)
Hash identifier: lyqSnjcjxcCYMQX57TD6RV2wyaThMRFVO4hrAYk8DJU=
Subject key identifier: A5:4B:87:FA:C2:40:1D:98:0D:34:16:00:2E:A7:35:8A:32:26:28:9A
Authority key identifier: AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24
Certificate issuer: /CN=aca1f4713024804c445403af63fa644b2a935d24
Certificate serial: 019D2772B6408CE1E45C0B82279CE357F2D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
Manifest number: 189A
Signing time: Thu 26 Mar 2026 00:02:02 +0000
Manifest this update: Thu 26 Mar 2026 00:02:02 +0000
Manifest next update: Fri 27 Mar 2026 00:02:02 +0000
Files and hashes: 1: 68S_aFNNmgzjbtipHf2_7W5_Bco.roa (hash: RwG1LoqBic8TBPegFSl5zghD2QUKZjWI0f3m/Wa2XvI=)
2: 6Tt_JhvDeS8RrZNagAC_Y34YgGM.roa (hash: CW1QJb8vGPMOzkDlQfxVkZeJUZKHQrNhrEN+PPxL4mY=)
3: 7_skAVHjgsLF5yurP5Hs70so6lU.roa (hash: GZbj/NvSS8FJycykZ2otNOVLib/kBA0tsDjDJmEYqOw=)
4: PqQ80zRW4L7-FL50a-sVEmgKj-Y.roa (hash: hnJ9eAizqcNHYh7QW8vCzEh+yJL2aUxkxjuN+e8GRho=)
5: TTfvsK5hd0_GUSO7MSasMs4WeiI.roa (hash: 5fCeSzSrIrlr7y2QP80sfMVoFocJvfEJtnCJtXTc+vY=)
6: UBfX_Q_ESiqvVw7XJAwKhDzOiYc.roa (hash: yij0Gcg4VWx0ybKs3NoqtbhVEj3lt3YcAj0EyqPh7VY=)
7: eF_Iql01f6Mj_BVm584xV8IssYA.roa (hash: iPi/R187ECcID1empgHZAsvXPyLUYT8zATjgc8Yt7/o=)
8: rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl (hash: TA7Pk/qlj4JtpSBi3fwnRpeF5K2zAp9XoVqmMzYaFM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:b6:40:8c:e1:e4:5c:0b:82:27:9c:e3:57:f2:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca1f4713024804c445403af63fa644b2a935d24
Validity
Not Before: Mar 26 00:02:02 2026 GMT
Not After : Mar 27 00:02:02 2026 GMT
Subject: CN=a54b87fac2401d980d3416002ea7358a3226289a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:89:62:a5:8b:65:9f:84:11:b2:12:90:32:4c:
75:36:e8:c1:f5:21:2b:1b:60:1e:71:39:20:28:0e:
45:5c:69:56:21:a0:0c:04:39:15:96:6a:2c:92:c1:
f4:97:0f:59:a1:03:cc:5e:72:45:89:20:2e:2c:85:
28:43:e7:e5:70:e3:4c:94:0c:12:f3:e1:8f:c9:46:
2b:01:af:7f:f1:40:ae:24:ed:7f:2c:74:ba:9f:14:
da:f8:0c:d5:2d:7f:11:71:b7:7b:d3:c7:4e:3a:f4:
3b:3f:dd:f3:d0:3b:2e:de:39:9f:9d:b3:29:41:93:
16:5b:b4:36:fe:87:d8:f5:fe:08:10:aa:ec:3c:61:
70:46:0c:ef:64:6c:61:ac:c4:11:2a:dd:b0:89:46:
c5:13:fd:65:50:ee:f0:91:0d:ba:26:da:bf:33:b4:
0e:09:80:14:c1:59:47:e8:22:62:b5:9e:9d:38:5a:
1c:bc:ab:26:81:03:50:87:bf:35:40:59:0d:5e:c7:
be:d1:3d:e0:0c:1e:be:79:4c:22:3f:c3:0d:8d:06:
f0:b4:4e:7d:c9:36:e4:89:69:cc:71:50:24:1d:34:
30:19:e3:31:c2:4f:38:4c:d0:4f:46:37:75:e8:bc:
38:04:cc:8a:c2:67:6b:f1:c9:63:9b:8e:69:c1:ec:
7f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4B:87:FA:C2:40:1D:98:0D:34:16:00:2E:A7:35:8A:32:26:28:9A
X509v3 Authority Key Identifier:
keyid:AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:a6:53:de:ba:3e:46:bf:d5:6f:e4:77:23:e4:a7:b6:7f:56:
fb:ef:af:80:7d:8f:cc:fc:85:a7:92:92:b9:f1:69:c8:e5:a4:
55:dc:ab:d8:89:cc:2e:d3:92:e7:af:27:98:3a:87:d7:1b:d8:
cc:29:d8:61:fb:57:78:32:6b:33:4e:7b:cf:0e:cb:70:b4:a4:
47:04:67:e1:e0:c7:93:b2:d1:6c:23:b4:67:5c:4e:c5:0e:f2:
f9:db:2f:84:48:6d:cc:00:c2:99:2d:d1:46:de:bd:21:ec:2e:
37:71:6a:9e:96:bc:49:d5:88:be:3a:a2:cb:a8:3e:e0:a5:1d:
2f:2a:0a:43:42:85:63:bf:2d:ec:fc:f6:2e:cb:bb:9c:43:c3:
b2:d1:35:37:fc:90:31:34:84:d1:71:e7:f9:80:53:79:0d:91:
01:53:80:d1:08:05:55:fa:ff:28:cc:1b:a2:6c:ab:4e:14:fa:
f6:39:34:a1:58:1e:a0:b1:c2:4d:23:c5:5f:81:c5:11:d1:6a:
9a:7b:67:97:07:7b:3d:7f:db:cc:b1:ea:f2:ae:23:c0:af:3d:
3d:01:ac:c7:2d:b6:a3:e9:09:1f:aa:6e:a5:6c:18:91:8f:85:
b0:e3:16:1d:01:9a:03:c8:34:cc:c5:8b:ef:c9:46:93:82:7b:
84:0d:bd:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:16:28 2026 by rpki-client