Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
File: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft (raw, json)
Hash identifier: PldQsshU7drmJuMz35jqQyThQzSGwK1N84C2W3x2ALU=
Subject key identifier: E1:C4:C2:DA:03:EF:55:B2:ED:27:80:B8:6E:54:53:05:93:71:64:DD
Authority key identifier: A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
Certificate issuer: /CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Certificate serial: 019D269622433EDC91BE656664BFCA44DF87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
Manifest number: 0CE8
Signing time: Wed 25 Mar 2026 20:01:06 +0000
Manifest this update: Wed 25 Mar 2026 20:01:06 +0000
Manifest next update: Thu 26 Mar 2026 20:01:06 +0000
Files and hashes: 1: NncLDck5QCsXoP-zdGMzAoehMpc.asa (hash: Ct9G108vU2K9LuYOAFXT37wdYPmx9qzQzjeMUoqKDE8=)
2: jp2UFYGcsehDO-4gfejiaCOzrJw.asa (hash: fxeg6hVvgjfs2m8eyuQiBn+zKpG0DqwOznKeAA9KOJE=)
3: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl (hash: 70MUOliO9LHv0E4sfeqkY5ea/NcZ5q070hDx3YFJrx8=)
4: xSbXTvUREzkzc7-l2JL6Gfg8LbE.roa (hash: /FjGi3zucL1NzNe41iFvx0RHmpavP7RfeWxzQfA6e5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:22:43:3e:dc:91:be:65:66:64:bf:ca:44:df:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Validity
Not Before: Mar 25 20:01:06 2026 GMT
Not After : Mar 26 20:01:06 2026 GMT
Subject: CN=e1c4c2da03ef55b2ed2780b86e545305937164dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ce:b8:86:16:2f:7a:e9:a4:32:9a:cc:94:f9:
b6:4d:55:18:c6:80:26:27:7d:0f:45:9a:e6:70:e0:
b2:d1:75:18:05:81:e5:c2:79:94:5e:f2:fe:3b:9b:
43:3f:91:31:cb:1d:4a:d6:05:c4:df:61:8c:19:be:
19:a0:de:b3:3d:fb:59:12:dd:63:7f:c9:c7:47:31:
78:e0:b6:4b:93:94:17:fa:9b:69:60:9a:00:01:17:
44:31:eb:58:d3:b0:e3:5c:03:ad:c3:ef:11:82:7f:
64:a2:75:9c:6f:94:fe:af:7e:23:84:e0:4c:c0:2e:
41:00:0e:be:36:dc:72:73:5d:5d:75:c5:40:b9:9d:
2d:81:40:0a:5d:99:79:83:6f:eb:c1:2b:71:ba:0c:
b3:70:36:a7:b6:f7:ad:b2:71:50:8f:3c:5e:be:1d:
48:94:c1:a8:31:51:87:7d:b2:37:05:14:0e:08:a1:
8f:06:85:75:6d:3a:c2:1f:c4:1c:2f:2d:f9:a3:82:
4a:6e:aa:7f:84:3c:68:ce:6b:1a:85:08:8a:ba:25:
0f:dc:d7:59:46:c8:04:68:72:3f:ff:f0:6f:a9:33:
2d:fb:3a:89:1d:da:84:2e:0e:d7:e4:a4:74:c9:f8:
db:98:35:67:1f:96:02:41:61:51:17:0f:33:e1:04:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C4:C2:DA:03:EF:55:B2:ED:27:80:B8:6E:54:53:05:93:71:64:DD
X509v3 Authority Key Identifier:
keyid:A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:14:61:aa:9b:3c:68:84:62:d0:69:8f:80:de:ff:35:61:68:
7a:13:1a:09:70:bb:c0:b2:be:f6:0a:e8:3c:92:c1:8c:f9:bf:
09:bd:27:a6:fa:6a:94:f7:fe:1e:99:39:94:df:6b:cb:da:38:
c8:65:fd:7b:cf:14:15:26:90:14:30:0b:dc:b1:a2:14:67:a0:
78:d0:ca:84:69:b2:c7:95:38:3c:a3:c3:77:60:c0:44:53:61:
93:4a:6d:f4:50:76:9f:df:0f:e3:ff:a4:30:94:08:b0:09:6e:
c7:65:8a:5e:ba:2c:fa:ab:fa:ba:59:ea:7f:c5:ea:28:8a:d9:
8c:91:50:52:6b:31:83:18:cd:76:5f:bb:0b:bf:5f:18:a3:9f:
1c:b8:f6:15:72:88:47:11:91:6d:73:4c:af:56:3d:84:52:91:
22:6e:fe:0a:cd:68:95:a6:01:94:02:72:2d:af:99:6c:58:1d:
09:e4:aa:9f:a3:c2:7c:66:4e:a8:86:1e:b5:11:90:87:41:68:
40:e9:a3:69:a6:97:dd:a1:c1:bc:2a:5f:2a:f8:3f:ed:d4:c9:
dc:70:8d:53:2f:04:9d:c9:fd:ff:9c:56:10:ff:75:f9:fd:f6:
18:4b:62:b4:48:5a:2e:ae:17:07:61:da:57:5d:03:c2:01:c9:
0d:38:41:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:14:31 2026 by rpki-client