Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: VUwarAxSd9dZRk4hy23FbV9+1CXEGJi55XWAcUFZoi0=
Subject key identifier: D7:F6:07:FE:CD:BC:47:6C:23:51:CB:9D:A3:09:75:E5:37:1E:BB:AE
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 019D284E8EA7E00BFA526C51F28B5C1B4613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 103C
Signing time: Thu 26 Mar 2026 04:02:09 +0000
Manifest this update: Thu 26 Mar 2026 04:02:09 +0000
Manifest next update: Fri 27 Mar 2026 04:02:09 +0000
Files and hashes: 1: KbhQ6u1VdqVgoC_w__veaIi-7zs.roa (hash: usnYtgKElxMHtJ3gMNxaW5mRcQvldV2GcoR0WqVjLH0=)
2: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: KFRX0yy9aRJ0bqhodp1RHzopQdW8qFvcnUAhJHoTbiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:8e:a7:e0:0b:fa:52:6c:51:f2:8b:5c:1b:46:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Mar 26 04:02:09 2026 GMT
Not After : Mar 27 04:02:09 2026 GMT
Subject: CN=d7f607fecdbc476c2351cb9da30975e5371ebbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:c8:79:a9:de:77:3b:d1:20:c5:77:c8:73:
61:c2:51:8f:f9:c4:0d:44:62:0d:d8:80:71:63:8d:
c5:38:29:d1:71:73:aa:32:3c:05:23:66:29:97:ca:
f3:2b:63:01:43:c7:eb:a9:8e:0f:61:2b:52:21:31:
5a:2e:eb:10:da:08:17:d1:f7:74:7f:e9:aa:61:7f:
0c:86:31:11:18:c5:16:5c:5b:8c:62:b5:0d:85:96:
e0:48:d1:4b:0a:66:97:f9:a3:37:c7:58:46:5f:f2:
eb:14:fe:b7:a1:69:64:d7:09:84:49:a7:28:33:c9:
61:7b:76:6d:36:5d:ef:7c:a4:b4:7b:d4:c1:b0:36:
7b:ca:41:77:b8:c0:94:84:ba:c5:6e:72:6d:b0:1a:
f0:45:88:95:c4:86:96:08:1e:2c:85:04:2a:8c:09:
0a:e1:72:c9:82:2e:40:08:5b:f8:da:b7:49:43:ed:
67:6b:b5:bf:25:16:31:12:40:10:fb:f2:cf:31:1d:
80:f6:1f:e4:a9:4c:b5:06:50:a6:3f:3b:35:d1:b5:
b8:33:18:23:e0:b1:7a:fc:3c:33:36:10:d3:74:df:
41:23:1a:a3:78:9a:f0:4f:cb:68:4a:31:9c:b4:a7:
04:aa:5b:c8:b1:a8:45:1e:05:13:cf:83:86:15:4e:
2f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F6:07:FE:CD:BC:47:6C:23:51:CB:9D:A3:09:75:E5:37:1E:BB:AE
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:bc:88:6c:a6:f9:c7:9a:65:a6:6d:f6:95:57:05:87:23:d6:
b5:56:e6:07:3a:68:4d:fa:ca:6f:50:ac:a8:b7:66:f7:2b:fe:
4e:fb:e1:fa:ec:5a:f5:00:9a:e5:d8:9a:49:f7:96:3a:66:73:
c4:24:56:e1:d6:89:be:7b:c5:a7:8c:7c:e0:bc:a1:68:e0:2f:
e0:67:b3:8b:20:54:9c:c4:99:67:ab:dd:4d:8a:d8:b6:e7:39:
35:82:d4:5c:93:fe:d6:fb:3a:18:7d:d7:d3:bd:10:55:90:f8:
5d:49:3b:2b:3b:6c:52:d2:51:fc:de:0e:d3:1c:ae:26:ca:1f:
2a:c1:84:dc:39:82:ea:ba:e5:42:cf:d4:b8:50:81:b3:c5:d0:
2e:40:18:ee:2c:79:a0:3d:ee:e3:e6:8d:f3:63:b6:ea:e5:b8:
a4:0c:3b:ca:28:94:dc:ee:e9:1c:fe:6f:27:fa:3d:e5:5d:e1:
cc:e9:11:cd:1b:6f:af:c8:05:93:4b:08:df:eb:7a:40:b4:16:
42:03:b0:94:04:b9:22:cd:e8:28:c7:3e:c7:c4:21:df:8f:67:
68:f6:52:0c:45:b7:31:db:dc:82:44:ac:81:87:f2:69:fd:34:
b4:8f:dc:ae:f2:3c:60:ce:c2:57:ed:de:a1:da:a0:fe:9b:9d:
33:73:93:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:55:44 2026 by rpki-client