Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
File: pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft (raw, json)
Hash identifier: IVVRlBbwJd98A1zXZWbIaSn5OvA1O1+1w0csO9SSfaw=
Subject key identifier: 1B:1F:21:AE:60:5A:C6:75:27:D9:4C:70:EC:F4:99:B0:CE:2B:D5:0B
Authority key identifier: A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C
Certificate issuer: /CN=a55004661a09e2675fc1599d4e40027d778c404c
Certificate serial: 019D2960879F154E81269B4054119AE1996E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
Manifest number: 09B8
Signing time: Thu 26 Mar 2026 09:01:25 +0000
Manifest this update: Thu 26 Mar 2026 09:01:25 +0000
Manifest next update: Fri 27 Mar 2026 09:01:25 +0000
Files and hashes: 1: MaDS8-joEcAo6zZrve4qyKt9_MA.roa (hash: xT1YeTMUMUPt/jRAlRUdl6PIm7aXY3jJu/RwbOafDEw=)
2: pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl (hash: MXP/6b1LWAgJpFgS/e7Kf/MuwxXGr3cf7wBs2i1fnvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:87:9f:15:4e:81:26:9b:40:54:11:9a:e1:99:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55004661a09e2675fc1599d4e40027d778c404c
Validity
Not Before: Mar 26 09:01:25 2026 GMT
Not After : Mar 27 09:01:25 2026 GMT
Subject: CN=1b1f21ae605ac67527d94c70ecf499b0ce2bd50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a6:e5:88:4f:be:47:fc:ad:50:3e:d7:f7:89:
fe:c7:99:96:c2:5e:46:2f:65:00:54:41:9f:f6:ee:
c6:9c:bb:ca:1c:11:26:5c:ac:e5:14:98:e1:f9:38:
05:65:28:73:83:86:5d:50:60:e4:6a:37:90:35:81:
bb:39:58:7a:c0:59:59:dd:2c:41:ce:6e:af:0c:58:
e7:a3:86:c7:ef:83:0f:b8:93:a5:f5:b7:58:90:b8:
f6:79:ee:6a:af:59:3b:72:9e:05:1a:cd:31:41:40:
09:a0:9f:6f:19:a1:13:76:b9:54:bd:e7:f0:5a:02:
54:d5:af:54:34:d7:99:f2:12:29:08:bd:74:c6:b9:
c9:27:45:9e:1b:93:27:90:59:09:6f:e1:86:a1:b1:
6c:ee:d6:a6:73:f5:70:49:74:f4:99:69:a1:8f:dd:
60:0d:77:02:cb:5a:63:1b:c5:61:f0:fb:3e:48:0b:
42:d4:ad:3e:5c:9f:2e:2b:9a:9b:ba:eb:62:2c:48:
e8:e5:6e:6b:88:3a:8b:27:84:f6:92:23:42:89:ff:
23:e9:1f:a2:f2:34:64:29:e6:d0:b6:b6:17:4c:73:
41:71:fd:5e:53:90:0c:a8:1e:65:95:bc:64:e9:78:
04:0e:d9:2f:19:94:5c:e4:c3:24:94:63:85:d8:9f:
86:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1F:21:AE:60:5A:C6:75:27:D9:4C:70:EC:F4:99:B0:CE:2B:D5:0B
X509v3 Authority Key Identifier:
keyid:A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:52:ca:1f:10:44:4a:58:bd:03:fb:c0:4e:7f:08:a9:ee:32:
61:65:a0:31:51:46:b5:16:7e:e7:8d:28:a4:c2:4b:47:b7:a3:
c6:bc:19:b7:e1:a8:3d:e9:8b:6b:59:24:1c:1d:87:9b:ab:cc:
03:1a:f8:3c:1c:fa:8f:d4:48:9d:05:54:53:39:ce:65:09:ce:
96:72:e4:20:cc:8a:d4:eb:d1:db:64:ac:7c:9a:59:74:4d:e0:
00:c2:fc:61:71:7e:32:3d:ac:e0:3d:a8:37:22:b9:85:1a:fc:
a5:cd:8b:6f:fd:1e:88:01:d2:77:80:03:9e:3d:de:21:19:70:
29:15:74:75:63:71:07:d6:69:1c:b1:ac:4e:39:2f:92:9a:ab:
4c:30:5a:2a:a4:4c:26:42:b2:7b:a9:5f:c8:bc:0d:92:23:62:
d3:f2:4f:a0:a8:6a:d9:79:81:fe:0b:86:b7:c1:f9:7c:03:f6:
c5:c7:9c:b1:f9:f8:63:51:cd:cb:c5:6f:41:a4:7e:2d:6b:06:
1d:b3:f4:59:1e:f5:73:9a:b0:f8:b0:be:59:9a:84:14:a9:c2:
ac:d3:c4:56:04:68:66:91:2a:89:a0:08:41:79:0a:3f:98:73:
1b:79:26:38:1d:a1:13:97:27:34:c6:01:fb:33:bf:d3:f1:e6:
4d:fc:db:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYIefFU6BJptAVBGa4ZluMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NTAwNDY2MWEwOWUyNjc1ZmMxNTk5ZDRlNDAwMjdkNzc4
YzQwNGMwHhcNMjYwMzI2MDkwMTI1WhcNMjYwMzI3MDkwMTI1WjAzMTEwLwYDVQQD
EygxYjFmMjFhZTYwNWFjNjc1MjdkOTRjNzBlY2Y0OTliMGNlMmJkNTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16bliE++R/ytUD7X94n+x5mWwl5G
L2UAVEGf9u7GnLvKHBEmXKzlFJjh+TgFZShzg4ZdUGDkajeQNYG7OVh6wFlZ3SxB
zm6vDFjno4bH74MPuJOl9bdYkLj2ee5qr1k7cp4FGs0xQUAJoJ9vGaETdrlUvefw
WgJU1a9UNNeZ8hIpCL10xrnJJ0WeG5MnkFkJb+GGobFs7tamc/VwSXT0mWmhj91g
DXcCy1pjG8Vh8Ps+SAtC1K0+XJ8uK5qbuutiLEjo5W5riDqLJ4T2kiNCif8j6R+i
8jRkKebQtrYXTHNBcf1eU5AMqB5llbxk6XgEDtkvGZRc5MMklGOF2J+GIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBsfIa5gWsZ1J9lMcOz0mbDOK9ULMB8GA1UdIwQY
MBaAFKVQBGYaCeJnX8FZnU5AAn13jEBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8yY2ZkZmQtMWIzYi00YWFhLWJkODIt
M2Y3OGJjM2RlM2E4LzEvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy8yY2ZkZmQtMWIzYi00YWFhLWJkODItM2Y3OGJjM2RlM2E4
LzEvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAalLKHxBE
Sli9A/vATn8Iqe4yYWWgMVFGtRZ+540opMJLR7ejxrwZt+GoPemLa1kkHB2Hm6vM
Axr4PBz6j9RInQVUUznOZQnOlnLkIMyK1OvR22SsfJpZdE3gAML8YXF+Mj2s4D2o
NyK5hRr8pc2Lb/0eiAHSd4ADnj3eIRlwKRV0dWNxB9ZpHLGsTjkvkpqrTDBaKqRM
JkKye6lfyLwNkiNi0/JPoKhq2XmB/guGt8H5fAP2xcecsfn4Y1HNy8VvQaR+LWsG
HbP0WR71c5qw+LC+WZqEFKnCrNPEVgRoZpEqiaAIQXkKP5hzG3kmOB2hE5cnNMYB
+zO/0/HmTfzb0w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:14:57 2026 by rpki-client