Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json)
Hash identifier: Og4aFBwhgbhSUpMnzrbYV8MWdPob1xA3rX/7xiIx6U4=
Subject key identifier: 80:A3:E7:7D:98:85:E4:23:26:9B:C9:33:07:2B:5C:85:83:08:9A:E9
Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Certificate serial: 019D2771C7F9F6EEDCFD38DED1F4521D79D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
Manifest number: 0E09
Signing time: Thu 26 Mar 2026 00:01:00 +0000
Manifest this update: Thu 26 Mar 2026 00:01:00 +0000
Manifest next update: Fri 27 Mar 2026 00:01:00 +0000
Files and hashes: 1: Z8sIth2fuLtbZU5YZYofujl3N3Q.roa (hash: OuZ+DZI7vPFF2f+5cYLFAwbQ08o0C2E+Uzidod1oA7I=)
2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: qiHTp7vCk4UypY1ZAtwKjuFeeyucTJTp7CZsxKq2jpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:c7:f9:f6:ee:dc:fd:38:de:d1:f4:52:1d:79:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Validity
Not Before: Mar 26 00:01:00 2026 GMT
Not After : Mar 27 00:01:00 2026 GMT
Subject: CN=80a3e77d9885e423269bc933072b5c8583089ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:30:98:8a:5b:2e:1a:7d:83:3e:73:6e:d4:
a5:6a:1b:df:1a:10:f0:1a:f5:11:7d:1c:45:86:31:
c1:94:a9:10:0e:82:ec:63:1b:32:50:60:45:ae:74:
75:fd:aa:6a:e5:c3:91:63:10:b3:5c:b4:29:f8:e6:
2e:a1:53:96:f2:01:27:3e:f3:a4:7c:49:52:31:b9:
65:94:be:68:95:e9:b4:0b:72:1d:79:b8:42:ec:e5:
88:5c:69:34:11:05:07:f3:e9:56:76:49:ab:03:c8:
ab:af:99:a6:23:33:c9:fd:69:65:0a:04:8d:28:00:
f4:10:f0:39:ce:48:5c:92:02:30:ef:f6:d5:78:0e:
18:81:aa:93:78:9e:81:cb:b7:20:a1:13:85:2d:4e:
cf:c7:0a:f9:19:b7:cd:6d:ea:b9:c0:68:ee:b2:fc:
38:04:18:60:b1:fd:23:ec:b1:ae:70:c4:66:a6:37:
bb:53:06:06:fb:83:eb:bd:81:00:e3:f9:94:e5:4e:
7d:d4:f7:82:b4:6d:1d:bb:71:14:cf:41:a3:92:c3:
4a:ec:39:f5:34:91:3b:65:b1:7a:d7:ff:dc:29:44:
1e:02:16:fa:a2:96:1e:4c:0b:5c:52:a1:a9:99:ab:
bb:73:cb:86:79:6a:4c:e7:30:dd:aa:27:ca:ed:cc:
9d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A3:E7:7D:98:85:E4:23:26:9B:C9:33:07:2B:5C:85:83:08:9A:E9
X509v3 Authority Key Identifier:
keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:4b:15:e8:4b:ac:45:e0:d3:f9:9d:65:e3:9e:6a:bb:6e:23:
54:b9:49:ac:d3:06:62:d5:42:2c:94:95:18:ba:b6:00:f2:ec:
aa:c0:da:c7:4b:dc:2a:03:9a:69:18:b5:45:c4:c9:30:66:d3:
f7:6d:34:28:2e:66:94:6a:4e:51:78:d8:8f:cc:b4:18:5a:43:
01:e2:2a:f9:4b:7b:6c:d4:19:f6:c4:7d:2f:a5:a7:3f:85:24:
47:56:15:5b:dc:1a:2d:1d:f0:cd:46:cd:2c:d6:ee:dc:bf:eb:
c0:da:a1:ab:a2:09:a4:22:9c:ef:82:e0:55:a1:9e:fe:bb:7e:
58:e3:1e:58:8d:a7:9c:6c:8c:3a:e2:0b:36:2b:fb:00:1d:69:
8e:55:3f:c5:30:25:1f:c3:67:1a:e8:58:dc:41:b9:73:87:e9:
89:a8:6c:9d:31:65:8a:03:0e:ae:2e:4b:27:fd:af:52:aa:29:
6a:c5:2c:b4:13:50:ff:c8:5f:e5:57:9f:b1:df:a3:8a:fc:6d:
25:b8:8a:2b:d2:aa:fc:07:a5:1e:78:ce:3b:43:63:cc:76:dd:
3e:76:83:c1:f7:7b:1f:f1:0e:1c:01:26:dc:43:c2:ce:9c:ed:
be:8f:7a:8c:8d:0c:18:fb:f9:fc:5b:99:0b:40:97:31:6e:cf:
84:32:aa:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:43:10 2026 by rpki-client