Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: PN9bRX5SDXHn44OwtcF4YFeB+Lozvf3mepbJg3ktp3A=
Subject key identifier: 2F:9D:A3:54:63:5D:73:83:FE:7A:54:8A:A3:3D:17:C4:5E:B1:88:99
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 019D27A87EB315195A54A68E7C81B946CB93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 0D1C
Signing time: Thu 26 Mar 2026 01:00:47 +0000
Manifest this update: Thu 26 Mar 2026 01:00:47 +0000
Manifest next update: Fri 27 Mar 2026 01:00:47 +0000
Files and hashes: 1: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: UoL05urwuHzKyJ4Z7iyPC5AXthQHcwezTFG1zM5PBW4=)
2: rRTCZ5FyRdDiK7BZGTzqpa0QNeg.roa (hash: mji6QPUv0yUiA70EcUkHQFZ0veAkRZWxgnDOQwOKKtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:7e:b3:15:19:5a:54:a6:8e:7c:81:b9:46:cb:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Mar 26 01:00:47 2026 GMT
Not After : Mar 27 01:00:47 2026 GMT
Subject: CN=2f9da354635d7383fe7a548aa33d17c45eb18899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:ff:9f:e0:49:03:0b:fb:56:9c:05:2c:49:
1a:56:4f:d5:4e:e6:13:0b:80:71:af:10:83:ed:ff:
98:7a:e9:84:8f:f0:52:9a:13:90:17:1a:a5:0b:28:
eb:9b:b4:ea:82:16:ff:d2:10:3e:48:00:0d:e1:b7:
a3:66:d6:a3:f9:3d:d7:3b:3b:e4:4f:e8:5b:13:54:
cf:59:63:d6:76:af:12:41:cb:a4:97:14:45:6e:f4:
e5:91:b3:50:30:50:f5:85:21:1b:55:72:45:f4:be:
f4:a3:9e:bc:85:72:c4:64:88:af:00:ef:6f:d2:13:
da:4e:61:74:99:33:4e:68:55:4b:54:75:a3:60:42:
55:e9:7a:9c:b8:85:80:ce:fe:6e:17:33:35:f2:5b:
94:87:16:55:9c:52:1e:f9:5e:99:f4:29:8f:e3:b8:
7f:8b:4b:36:72:95:8f:7f:5f:57:84:b7:b2:53:30:
6b:dd:1a:c7:5a:09:cb:3b:c6:b3:3f:9d:34:34:02:
69:6d:94:2e:46:28:b4:23:6b:73:c1:60:9a:4b:cb:
5e:57:9d:50:a4:8b:ab:20:7f:fd:96:a1:79:45:68:
0a:09:dc:e2:00:dc:90:2c:88:46:c3:93:5b:e9:2a:
85:28:4a:02:d6:7c:47:4c:85:d6:78:4f:de:c8:1f:
37:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9D:A3:54:63:5D:73:83:FE:7A:54:8A:A3:3D:17:C4:5E:B1:88:99
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:43:a1:44:b8:b9:09:a9:b2:75:4a:17:0b:50:4c:1e:23:d1:
95:70:54:e6:34:67:cd:8d:a2:74:f7:45:fd:3f:ab:43:84:80:
fb:ab:b9:cf:e0:66:82:72:d7:5f:74:71:7a:b8:02:e9:b7:fe:
b2:79:f1:ba:4e:78:6f:a6:14:b4:33:2d:93:55:1a:55:8c:77:
a8:9e:d6:5a:e8:9a:61:79:39:8c:a7:3d:f1:6f:13:cb:7f:2a:
5c:55:f6:ab:a5:29:2b:f0:4f:f5:c7:55:33:c0:22:cd:03:d3:
99:6c:4c:64:3c:48:42:91:76:95:a4:56:1f:29:f8:0d:4a:02:
da:5d:e9:f7:2a:84:8f:f2:ee:c5:85:a9:bc:c1:d8:eb:7d:de:
1f:fd:75:d4:7a:2f:64:68:8b:14:b2:81:b6:08:2e:be:7c:50:
60:b1:e9:4c:e4:86:cb:0d:59:7a:ac:9f:9d:c7:15:c7:e2:53:
dd:1a:1a:ae:c3:af:58:f7:f7:1e:b8:1f:f8:ae:65:a0:70:c2:
de:be:ca:30:ba:e4:d2:3b:5b:b9:9c:58:3b:ce:a9:fb:ad:b7:
7f:bb:a1:22:43:91:fe:f6:c9:d7:a3:9d:5c:8a:db:71:21:6c:
1e:8d:56:70:54:c9:8e:58:16:59:15:ac:c7:a1:f9:ca:1b:fc:
a4:81:a7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:07:43 2026 by rpki-client