Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json)
Hash identifier: bWi/AEdYTVn2O+IlpJ5jS280Qj7zQsif3cNllhH9B0E=
Subject key identifier: D4:03:44:8A:77:50:FF:80:ED:BE:6B:13:46:56:BA:5F:5C:8A:35:E3
Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Certificate serial: 019E20923F7217F294FECF12B452515E0BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
Manifest number: 0E8A
Signing time: Wed 13 May 2026 09:01:55 +0000
Manifest this update: Wed 13 May 2026 09:01:55 +0000
Manifest next update: Thu 14 May 2026 09:01:55 +0000
Files and hashes: 1: Z8sIth2fuLtbZU5YZYofujl3N3Q.roa (hash: OuZ+DZI7vPFF2f+5cYLFAwbQ08o0C2E+Uzidod1oA7I=)
2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: tiEviC4KQGjWkV7O90UoJt/M0cLI1sRWzC+4PRaG2iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:92:3f:72:17:f2:94:fe:cf:12:b4:52:51:5e:0b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Validity
Not Before: May 13 09:01:55 2026 GMT
Not After : May 14 09:01:55 2026 GMT
Subject: CN=d403448a7750ff80edbe6b134656ba5f5c8a35e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:84:16:5c:32:53:5f:07:36:29:3e:a3:1f:b4:
29:98:bc:4d:3e:39:bb:2e:7e:5b:1d:ea:52:03:10:
e0:37:8f:77:c3:d5:b6:30:bd:31:20:12:95:92:1b:
5e:e4:f8:19:6b:7c:bd:6b:72:2f:04:e2:dc:46:9f:
d9:32:98:ec:92:c3:53:6c:a9:47:8f:cc:58:b6:db:
20:f6:27:f7:79:d3:35:20:c0:b6:3a:4d:e6:4b:9c:
16:30:9c:67:d5:85:75:6f:fd:3c:f4:68:b1:2c:13:
92:39:dc:41:b5:7a:a9:3c:01:de:66:0b:f4:05:c3:
40:88:4e:32:26:34:c2:d6:14:01:f6:c5:6f:11:ff:
74:1b:4d:85:5c:c6:5c:92:39:ac:6c:59:26:77:f7:
3c:a2:bb:e0:14:73:3a:e2:34:ec:bb:67:9b:f4:db:
f0:1d:2e:71:31:8b:1c:10:6d:04:87:70:b0:d8:52:
87:5a:91:59:08:b2:23:c2:c8:36:2a:f8:cf:45:0d:
ee:f4:f8:0b:9e:52:92:2c:dc:5c:74:81:bb:de:32:
dd:92:a3:18:6c:fb:52:c9:85:f5:de:e1:06:03:c1:
13:a3:28:8f:2c:81:17:9f:b8:73:a9:c5:f8:a3:03:
64:00:c7:c5:9b:b3:91:f5:fa:63:7e:72:f5:ee:77:
c3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:03:44:8A:77:50:FF:80:ED:BE:6B:13:46:56:BA:5F:5C:8A:35:E3
X509v3 Authority Key Identifier:
keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:91:59:28:65:00:40:7f:61:29:2d:c8:1f:49:ae:b9:fc:df:
b9:a0:d4:df:9b:18:ef:c6:34:c7:82:f9:84:56:1d:a2:0b:ad:
38:a1:ef:01:7d:59:0a:18:cc:59:7c:fe:a3:84:3a:c1:fa:90:
84:68:36:dc:71:38:26:f5:a3:22:3e:9d:f7:4c:49:e4:ec:05:
96:b3:47:6a:b9:34:b4:7e:c1:61:3c:8b:a0:76:b2:b2:55:9b:
d8:fe:6a:dc:c7:5e:42:65:ec:ef:1d:6c:d5:c3:72:80:3a:04:
80:e4:19:22:6c:3e:02:b0:69:e7:fe:c8:65:94:f0:59:07:6e:
7d:42:78:87:17:0b:88:58:3c:1b:0c:ed:d1:ae:8f:18:52:bd:
b3:31:79:26:e2:89:7d:7c:e2:07:46:63:b0:29:ef:4f:06:03:
be:25:3d:db:d1:bb:07:41:46:b7:8b:fa:9d:88:ac:08:cd:6f:
c2:44:b1:05:d5:7e:3b:70:b0:cf:e2:3c:20:88:88:ab:c2:64:
25:ba:e7:be:5e:13:67:2b:51:88:21:83:db:fa:df:4b:0b:90:
f0:88:2d:18:e5:4c:1b:23:25:91:a3:7d:a4:4d:51:54:f6:97:
bf:9d:13:0f:0c:29:95:af:e1:6e:94:5d:1c:47:40:93:c0:1d:
2e:66:1f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:57:34 2026 by rpki-client