Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: r+0Ms/Lk939Wn8dhC4L26qbcpNQHFW+93a4d5+Uj5KA=
Subject key identifier: C7:B1:B9:4D:8D:E4:88:8C:BE:30:39:C2:1E:28:35:87:9C:74:E1:EB
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019E1C4731113CE9E6210FD3E9994EB986F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0A77
Signing time: Tue 12 May 2026 13:01:27 +0000
Manifest this update: Tue 12 May 2026 13:01:27 +0000
Manifest next update: Wed 13 May 2026 13:01:27 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: ICjQbrG5Rouc4ejGMv5n8DcJ3unxJls5c+gzoOWFQ1g=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:31:11:3c:e9:e6:21:0f:d3:e9:99:4e:b9:86:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: May 12 13:01:27 2026 GMT
Not After : May 13 13:01:27 2026 GMT
Subject: CN=c7b1b94d8de4888cbe3039c21e2835879c74e1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:61:3f:f4:5f:cd:05:23:08:13:ea:1e:be:d3:
f4:a4:0b:99:f8:b4:3d:30:07:c3:6d:81:56:f8:08:
ab:58:57:ea:b0:49:6f:ea:5c:ed:17:f1:0b:f1:91:
53:15:d2:8d:53:3a:68:cf:38:7c:cb:c3:65:47:88:
53:23:9d:13:56:49:00:e7:b7:04:0a:a5:e0:b1:c1:
96:62:c4:cd:04:7e:d9:6c:a7:2d:df:94:26:84:b5:
e5:92:21:a8:f9:99:14:a7:3d:ed:c8:49:0e:eb:f0:
e8:60:bb:41:aa:7d:4f:57:ad:f9:f0:b5:38:87:ae:
6d:07:50:da:56:12:f9:33:df:1e:8d:45:61:59:7c:
1c:3c:d0:44:06:be:aa:86:23:cb:11:df:2c:7a:13:
03:70:9f:a9:c7:91:43:35:3f:4f:96:93:7f:08:66:
0e:42:1b:ae:00:c5:75:44:66:ef:54:ee:b5:ea:05:
e1:46:f7:2c:b7:51:4b:5b:e2:1e:9e:17:b8:a5:e2:
c2:93:40:d0:79:c8:b9:7a:f1:c2:e9:93:07:ff:7d:
4e:22:b1:f5:1a:98:b6:ac:47:96:b6:67:b3:38:d7:
7d:cf:71:a5:7c:4b:8e:72:b0:d5:ed:07:aa:f9:c4:
cb:ec:23:c9:22:2f:9b:3d:1b:43:e0:9a:cc:20:5c:
10:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B1:B9:4D:8D:E4:88:8C:BE:30:39:C2:1E:28:35:87:9C:74:E1:EB
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:7f:1f:f4:08:c4:eb:a6:95:fd:3d:56:3b:4b:12:c5:54:f6:
18:36:a1:93:bd:46:25:b5:e4:5c:93:32:4c:fc:2e:1e:b3:08:
8e:19:be:d2:5e:9a:6f:52:2a:2c:2c:bd:b6:e2:f0:00:ad:08:
7e:1c:56:47:8a:07:f0:7e:80:76:4b:ab:f4:69:94:b1:c5:93:
49:fe:2b:00:7b:41:16:83:db:a5:5c:a8:82:57:6f:25:13:30:
53:0e:8f:8c:81:c0:24:c8:e1:35:5a:f9:a9:ed:0a:85:9f:e9:
ec:48:ba:bf:a5:79:b8:64:72:0d:13:61:3f:77:9a:12:7d:34:
1b:f9:30:ba:52:10:63:1f:22:6d:b3:49:ac:81:99:42:8d:9d:
71:e4:91:8b:d7:e2:89:de:73:8f:31:77:3e:20:83:d6:4b:b7:
47:f0:cb:b8:fd:cc:b2:31:80:3f:f3:ad:0f:3e:21:ac:3b:03:
71:e1:84:b5:fd:10:4e:f8:b6:66:58:30:64:74:d4:18:81:e6:
56:5f:ae:ac:f9:fb:92:bb:ba:ee:be:92:9d:c0:d3:e6:ea:6b:
12:0b:15:f7:d3:e0:54:51:a0:82:37:ff:86:c7:9f:46:50:73:
27:cd:57:31:03:05:9c:cf:fe:bd:17:94:24:d5:7f:89:4f:a4:
f2:c9:e2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:15:28 2026 by rpki-client