Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: EuRUkXJ/vYPRc8cSYo9Zdz4a1aq6VwNr2dfQiFQ2McY=
Subject key identifier: 5F:B3:D9:72:C9:E5:5E:A9:19:A2:AB:FC:BF:79:C0:D3:A4:F6:17:44
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019D27042F0EF012B8E8ED9EA04905E27D62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 09F8
Signing time: Wed 25 Mar 2026 22:01:18 +0000
Manifest this update: Wed 25 Mar 2026 22:01:18 +0000
Manifest next update: Thu 26 Mar 2026 22:01:18 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: LeDITO/f3xROwjROm5oZYvqZ9i1FAF22qgk7oWpzN2A=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:2f:0e:f0:12:b8:e8:ed:9e:a0:49:05:e2:7d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Mar 25 22:01:18 2026 GMT
Not After : Mar 26 22:01:18 2026 GMT
Subject: CN=5fb3d972c9e55ea919a2abfcbf79c0d3a4f61744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:ac:6d:c3:ce:eb:c2:29:8c:24:d0:16:06:
7a:8f:36:5c:fd:1f:8a:74:45:cc:4c:2f:c9:89:0b:
3e:d7:01:b4:83:57:28:06:a8:9d:41:90:3a:21:56:
46:5e:5b:a4:3d:a7:94:bb:e2:52:92:a8:ab:ba:c2:
dc:64:7f:ec:e8:00:83:4d:28:24:4b:81:7e:b5:2b:
d0:f8:5e:08:3a:63:77:9e:30:2b:91:1c:53:f9:a9:
ce:9b:71:86:fc:b0:8c:49:e2:02:14:4b:0b:79:a4:
7e:43:70:d9:1f:a8:c8:a1:b8:87:af:5c:92:3c:fe:
5c:2f:76:e5:31:d0:8c:16:36:96:a9:fc:f4:aa:3d:
27:1a:d3:bb:fa:fc:fa:a7:3e:bd:b6:78:cd:9d:4a:
66:e2:47:4f:e9:46:01:01:e0:6b:80:84:07:e0:ac:
9c:c7:5b:67:90:a4:07:3b:eb:78:db:f5:da:1e:44:
64:fb:91:46:98:6a:14:1a:28:9b:17:1e:ac:9d:64:
e8:a6:06:89:73:6f:be:9e:cf:79:3f:cb:41:09:e0:
af:1e:c3:f6:cd:9c:ba:96:de:40:aa:29:1f:b9:60:
d7:9a:71:e2:91:ec:71:2d:b6:d3:1f:73:a6:1f:e6:
69:f0:11:84:2f:02:f4:f1:6f:62:eb:9b:3c:02:5c:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B3:D9:72:C9:E5:5E:A9:19:A2:AB:FC:BF:79:C0:D3:A4:F6:17:44
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:15:3b:e0:e8:ca:0f:bf:19:3e:59:cb:ea:36:a0:e1:c6:c8:
9c:56:19:6f:ec:7c:b1:cc:dc:0b:23:9f:a8:9d:3b:42:75:32:
b4:db:e9:30:a2:5f:41:72:d0:e8:76:3a:50:98:7d:17:e1:d7:
54:38:b8:3d:a8:8f:f4:46:15:78:83:fa:fd:c8:ff:92:58:5a:
8a:10:09:c2:18:31:9b:11:c7:91:3e:fc:bb:16:ce:12:3c:78:
2c:6f:df:63:08:b8:1b:b9:ee:0e:12:c9:8e:88:d6:6c:41:f4:
fb:92:80:e5:69:48:2b:85:38:2a:4c:96:96:83:89:5f:48:48:
7f:52:25:b7:c6:25:62:70:7f:e2:5a:5a:5a:e8:ee:44:55:50:
6b:0d:e7:6f:cf:2a:dd:56:3f:6d:c7:cd:2e:7a:37:76:4a:8a:
3d:8f:94:7f:1c:b1:81:66:3a:b9:99:58:ed:54:0a:0c:92:54:
63:c1:9f:d5:0f:dc:2c:e9:48:6a:81:a2:46:b7:b0:9b:7d:c4:
eb:ef:3d:83:53:28:b8:14:ba:d9:ca:39:e3:15:39:0e:6d:be:
41:d3:62:82:d7:7f:be:0f:c4:ad:65:74:dc:2b:55:13:d0:bd:
25:f8:d4:1a:c3:6c:1c:11:37:8f:04:4a:02:f7:14:7a:b2:2c:
dd:85:07:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBC8O8BK46O2eoEkF4n1iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjYwMzI1MjIwMTE4WhcNMjYwMzI2MjIwMTE4WjAzMTEwLwYDVQQD
Eyg1ZmIzZDk3MmM5ZTU1ZWE5MTlhMmFiZmNiZjc5YzBkM2E0ZjYxNzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYmsbcPO68IpjCTQFgZ6jzZc/R+K
dEXMTC/JiQs+1wG0g1coBqidQZA6IVZGXlukPaeUu+JSkqirusLcZH/s6ACDTSgk
S4F+tSvQ+F4IOmN3njArkRxT+anOm3GG/LCMSeICFEsLeaR+Q3DZH6jIobiHr1yS
PP5cL3blMdCMFjaWqfz0qj0nGtO7+vz6pz69tnjNnUpm4kdP6UYBAeBrgIQH4Kyc
x1tnkKQHO+t42/XaHkRk+5FGmGoUGiibFx6snWTopgaJc2++ns95P8tBCeCvHsP2
zZy6lt5AqikfuWDXmnHikexxLbbTH3OmH+Zp8BGELwL08W9i65s8AlxlYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+z2XLJ5V6pGaKr/L95wNOk9hdEMB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhU74OjK
D78ZPlnL6jag4cbInFYZb+x8sczcCyOfqJ07QnUytNvpMKJfQXLQ6HY6UJh9F+HX
VDi4PaiP9EYVeIP6/cj/klhaihAJwhgxmxHHkT78uxbOEjx4LG/fYwi4G7nuDhLJ
jojWbEH0+5KA5WlIK4U4KkyWloOJX0hIf1Ilt8YlYnB/4lpaWujuRFVQaw3nb88q
3VY/bcfNLno3dkqKPY+UfxyxgWY6uZlY7VQKDJJUY8Gf1Q/cLOlIaoGiRrewm33E
6+89g1MouBS62co54xU5Dm2+QdNigtd/vg/ErWV03CtVE9C9JfjUGsNsHBE3jwRK
AvcUerIs3YUH+Q==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:58:46 2026 by rpki-client