Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
File: pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft (raw, json)
Hash identifier: dr5axsJzykfdTstxSP4JjhXKTi5knf9XrriWwJ+cE98=
Subject key identifier: 85:E1:DA:26:0E:36:36:08:D1:E0:E4:35:6D:21:84:25:35:29:07:CF
Authority key identifier: A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A
Certificate issuer: /CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
Certificate serial: 019D26CD4BD72A5C68FFCD3C9337E9C7A4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
Manifest number: 1889
Signing time: Wed 25 Mar 2026 21:01:21 +0000
Manifest this update: Wed 25 Mar 2026 21:01:21 +0000
Manifest next update: Thu 26 Mar 2026 21:01:21 +0000
Files and hashes: 1: NMnvxW-fHpjvFBsGgVuK7nkogkE.roa (hash: cyPa61O40P16PWh/kNq0rEwVyVEH58xoXbBkkVu4NPA=)
2: c2vxh0TJId25IsYoKf4qE5r7y4c.roa (hash: rH400KAscIABX5VYsTzTY3UvtHPOb5oawftmDDbVwS4=)
3: hLSO_O6xaM7r05r3MxZf6SqUUFs.roa (hash: P+jaY+n9bXozEzc3ZwpWv16cXEXSmsjH0j6LoAlbUSc=)
4: pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl (hash: PQyZj+eXJApI0Bm7QF/ajUc8wbvugT/ZFfJuAfb6W0E=)
5: q_qYpFhmBQ8lhb7G0ETsROyhKrE.roa (hash: b/eMO0NX0hh7yZAOvwUKNYnJNdSAmYoYt5B3IlaWmes=)
6: zaGrkqbu8Gll08VVFhOdNAVBodQ.roa (hash: 5RXV1x3djGzhsIabpdBba1lsONVKoOFtpXCmtC7NEnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:4b:d7:2a:5c:68:ff:cd:3c:93:37:e9:c7:a4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
Validity
Not Before: Mar 25 21:01:21 2026 GMT
Not After : Mar 26 21:01:21 2026 GMT
Subject: CN=85e1da260e363608d1e0e4356d218425352907cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4c:32:26:d2:9c:b8:5f:79:8a:0a:e8:81:26:
fa:98:d5:dd:b4:d5:a6:4d:08:16:e8:5d:8d:43:22:
56:d3:15:ca:7a:59:59:ab:2b:85:6b:e7:55:83:63:
95:f7:3b:18:17:7a:b2:70:24:99:ec:1d:07:83:7c:
a7:85:77:8a:6e:6c:2f:21:a5:72:5b:ca:b6:08:c3:
3e:da:40:ab:11:e5:0d:15:60:6e:ed:94:25:82:8f:
56:0d:69:6d:87:86:8e:91:3b:4f:44:b2:4e:26:28:
be:3f:2a:1e:12:30:0d:e4:3b:57:8d:79:2c:12:c7:
84:0b:28:e4:56:fe:29:43:05:af:64:e0:a9:74:99:
de:f2:9b:c2:1f:c1:92:99:a6:21:8e:fd:ff:67:10:
46:bc:30:c9:3f:1b:06:16:c6:f6:e6:0e:95:4d:20:
0e:9c:93:a2:0b:d7:73:3f:08:2a:ed:f9:58:ba:a8:
52:ce:c6:91:45:80:36:f2:a9:27:85:ce:08:b2:b4:
87:47:c6:e8:27:1f:a5:01:2d:ea:b2:e7:b9:f3:a2:
2f:5e:4e:ae:2d:a8:6d:05:25:c6:07:e6:63:c1:bd:
ba:2c:4f:c1:a0:53:52:82:7a:17:62:f1:d5:09:89:
c1:86:17:91:d8:a2:85:25:bd:1d:be:72:43:d8:ae:
61:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E1:DA:26:0E:36:36:08:D1:E0:E4:35:6D:21:84:25:35:29:07:CF
X509v3 Authority Key Identifier:
keyid:A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:5c:0a:81:8a:f9:5e:f0:1a:1b:49:1e:42:59:6d:83:c7:72:
9b:41:0e:42:47:d1:e0:34:79:1e:be:c4:5e:b1:a3:78:74:84:
da:98:d8:7d:4d:d0:d1:5c:a1:9a:74:b0:b8:11:b4:4f:7d:f1:
c4:c0:af:33:e5:6a:8d:fe:d6:6a:e1:8c:7e:d9:cd:3f:f4:9b:
b8:ea:a6:9e:64:f9:9b:73:64:13:95:3a:d7:b9:15:54:d0:2a:
db:61:c6:99:a4:ab:1f:d3:1f:8e:2c:8d:70:c1:f9:e8:d7:98:
7e:80:b2:b8:79:7b:53:db:3a:1d:2c:d7:9e:25:0b:34:93:fd:
80:e0:65:2f:fe:64:83:8a:f1:6a:76:b0:73:53:b7:1b:12:f7:
f6:d4:a2:ce:25:3f:87:15:06:1b:3b:78:84:3b:fc:4b:a9:0d:
c0:68:2f:b9:fb:96:c9:dc:c4:0b:7e:af:28:76:53:d9:2f:94:
a9:de:dc:b7:fd:66:91:bd:37:23:2f:03:4d:95:2f:ed:9d:f9:
c4:19:cb:5e:31:fc:ff:ba:fb:7c:2f:08:07:8c:99:03:5a:76:
66:58:f0:75:e7:78:5a:4b:5a:49:d0:b1:76:55:24:5d:06:28:
8d:ad:aa:29:0d:59:a7:93:3c:50:2c:b6:ee:92:03:2e:6b:fa:
4a:d0:f3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:12 2026 by rpki-client