Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: +4ZgNN6VmLGR6nFkGI0LJkfnK7rMj8C2lxQv9R1r2qw=
Subject key identifier: 40:B0:4F:0D:0A:54:81:D1:7F:41:23:01:27:C6:99:63:AC:8C:87:8E
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 019D277260A2FCBED9A5B56E0C7A96C29D52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 0829
Signing time: Thu 26 Mar 2026 00:01:40 +0000
Manifest this update: Thu 26 Mar 2026 00:01:40 +0000
Manifest next update: Fri 27 Mar 2026 00:01:40 +0000
Files and hashes: 1: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: yl8t76CnLL/1nLpXN2uFluhQ2AUz2saBfpENO+jXTOA=)
2: cLRoM7XLCk4C31zvG0Wgt7yjUMo.roa (hash: u4HrWzSOjheYxRy02gM2rX531WbutVdizyrj+q6Vb4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:60:a2:fc:be:d9:a5:b5:6e:0c:7a:96:c2:9d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Mar 26 00:01:40 2026 GMT
Not After : Mar 27 00:01:40 2026 GMT
Subject: CN=40b04f0d0a5481d17f41230127c69963ac8c878e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:b5:57:b5:9b:b7:02:46:d4:45:5f:ba:e1:
47:6d:d5:52:e9:f6:d9:35:18:29:0f:fd:63:98:43:
1e:db:52:82:79:c9:79:5f:9e:d8:a0:c2:b6:c4:2c:
6e:6d:30:9d:6f:d9:9d:41:33:1d:4c:b7:8b:b6:3e:
06:55:f8:18:e5:14:d7:6c:a7:e0:ec:52:db:24:97:
f8:77:ed:cd:06:c1:30:74:5a:54:07:cc:ce:c0:ab:
5e:b7:66:7f:91:8b:b2:f3:b0:aa:06:40:40:d1:39:
6a:14:16:67:a9:99:80:b6:f2:0a:18:29:37:08:bd:
b1:69:30:e2:72:50:ef:81:33:62:f3:64:0b:6f:8e:
94:31:39:6b:1e:1d:36:43:93:56:56:ed:9c:94:82:
0a:99:92:e8:84:a0:0a:59:35:7e:51:d1:bd:a7:1f:
46:00:c1:b5:64:a8:18:73:3c:22:62:9d:89:38:0c:
d4:f4:06:1a:52:bd:00:f4:96:9d:a5:bd:81:d7:d1:
b8:06:76:0a:ec:d6:07:30:ae:5b:a7:8e:2f:cc:41:
f3:59:c4:9c:b6:4f:5f:ae:dd:60:ef:d2:78:6c:eb:
d2:90:05:e5:b2:88:89:06:78:51:08:25:bb:ee:f5:
5e:8f:03:4e:1a:90:6e:12:b2:12:cf:e0:4b:db:85:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B0:4F:0D:0A:54:81:D1:7F:41:23:01:27:C6:99:63:AC:8C:87:8E
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ca:e5:ac:86:e1:eb:8a:58:3c:b2:ff:ac:09:61:3a:16:2c:
53:09:d0:a0:64:c7:7e:07:c1:32:8e:23:a4:05:20:1d:5a:a5:
91:81:60:19:f0:dc:48:66:c3:8d:7f:9e:ea:23:8b:90:e1:23:
f4:61:24:1e:66:cb:1f:84:f8:4f:c4:5e:1b:9f:76:47:37:17:
9e:c8:25:30:a4:d2:85:2f:89:c8:ea:49:2e:ee:ea:73:14:8f:
1f:14:8f:79:23:0d:05:20:47:ce:3f:26:ad:d2:3c:49:7f:94:
3d:6c:dd:16:e3:51:89:c6:0a:54:27:76:8b:72:c3:0f:bb:59:
d8:40:db:d3:42:91:0b:0e:8b:28:51:04:4b:96:44:c6:81:4a:
e7:5b:08:78:48:99:47:1b:95:9e:24:fa:80:00:3a:b1:b8:05:
94:bf:7e:f4:87:2e:34:52:5a:5d:e4:fe:16:f8:e0:49:18:de:
75:11:d3:47:dd:f6:b1:05:05:a7:ee:b3:37:12:dc:57:26:fc:
c4:62:56:56:7f:2f:a1:08:d6:b6:e0:40:af:df:49:8d:b7:d9:
c7:6f:b9:ec:00:07:21:dc:79:d4:0e:65:d6:84:00:99:cd:6e:
63:c3:e2:63:e5:a1:5a:85:cc:86:23:f6:0d:3b:d0:16:81:33:
f3:4b:f5:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncmCi/L7ZpbVuDHqWwp1SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3
YWQwZTEwHhcNMjYwMzI2MDAwMTQwWhcNMjYwMzI3MDAwMTQwWjAzMTEwLwYDVQQD
Eyg0MGIwNGYwZDBhNTQ4MWQxN2Y0MTIzMDEyN2M2OTk2M2FjOGM4NzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmf21V7WbtwJG1EVfuuFHbdVS6fbZ
NRgpD/1jmEMe21KCecl5X57YoMK2xCxubTCdb9mdQTMdTLeLtj4GVfgY5RTXbKfg
7FLbJJf4d+3NBsEwdFpUB8zOwKtet2Z/kYuy87CqBkBA0TlqFBZnqZmAtvIKGCk3
CL2xaTDiclDvgTNi82QLb46UMTlrHh02Q5NWVu2clIIKmZLohKAKWTV+UdG9px9G
AMG1ZKgYczwiYp2JOAzU9AYaUr0A9Jadpb2B19G4BnYK7NYHMK5bp44vzEHzWcSc
tk9frt1g79J4bOvSkAXlsoiJBnhRCCW77vVejwNOGpBuErISz+BL24VpbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECwTw0KVIHRf0EjASfGmWOsjIeOMB8GA1UdIwQY
MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt
ZDY5YzAxMzRmNWE4LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4
LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACcrlrIbh
64pYPLL/rAlhOhYsUwnQoGTHfgfBMo4jpAUgHVqlkYFgGfDcSGbDjX+e6iOLkOEj
9GEkHmbLH4T4T8ReG592RzcXnsglMKTShS+JyOpJLu7qcxSPHxSPeSMNBSBHzj8m
rdI8SX+UPWzdFuNRicYKVCd2i3LDD7tZ2EDb00KRCw6LKFEES5ZExoFK51sIeEiZ
RxuVniT6gAA6sbgFlL9+9IcuNFJaXeT+FvjgSRjedRHTR932sQUFp+6zNxLcVyb8
xGJWVn8voQjWtuBAr99JjbfZx2+57AAHIdx51A5l1oQAmc1uY8PiY+WhWoXMhiP2
DTvQFoEz80v1qA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:31:44 2026 by rpki-client