Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
File: P5YkCZj85BJMPLTfusuw7RYYQFo.mft (raw, json)
Hash identifier: Xt+IWiD7SVnXWFFhLQykgAaG7R4ACLvvuW2lxslDiNU=
Subject key identifier: DF:77:BF:6C:BA:7F:1C:D1:B1:97:42:2B:BE:52:CD:A5:7F:2F:AE:F5
Authority key identifier: 3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
Certificate issuer: /CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Certificate serial: 019D24DED0A7CB2FE746114A0201E4C321D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 12:01:15 +0000
Manifest this update: Wed 25 Mar 2026 12:01:15 +0000
Manifest next update: Thu 26 Mar 2026 12:01:15 +0000
Files and hashes: 1: 8ncEIlz1-5zSR1QhL0rDdEkpqI4.roa (hash: nuQfSOfvY6zkx/iP7wr0MpQfCSukhDWy8/9CULyV7C4=)
2: IvA9B2nFsUB8N2tSxI1Z1owm5SY.asa (hash: Luu+iEJI9TF5mINkPbC0AuUUy8TwF281MV1BlQU5AFk=)
3: MhAe01ZmLmGIo1FB00FAZblkwBo.asa (hash: aUcLI++76yd3mnnAy6xNFCz8PJWqoY+FNcByDh9aH0o=)
4: P5YkCZj85BJMPLTfusuw7RYYQFo.crl (hash: PAHwV5ZsTntUFXIgRmgb5JfjTf1W7wUIAv02yANPgNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:d0:a7:cb:2f:e7:46:11:4a:02:01:e4:c3:21:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Validity
Not Before: Mar 25 12:01:15 2026 GMT
Not After : Mar 26 12:01:15 2026 GMT
Subject: CN=df77bf6cba7f1cd1b197422bbe52cda57f2faef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:2e:6c:51:b6:89:86:ea:16:93:d3:a0:fe:
b8:9a:8c:34:31:a4:1a:90:f5:6a:5d:df:99:b1:44:
5f:29:d0:8d:48:d2:e2:b4:a6:9e:76:ec:97:e4:09:
86:e8:ff:e3:fc:1d:58:fd:3e:96:23:b2:f9:0d:ca:
f2:5e:ed:87:0d:d9:f4:03:3f:c6:82:4d:25:cc:70:
10:ee:33:e9:36:38:83:26:5b:e6:3b:55:81:f2:ad:
37:af:e7:55:d4:fe:27:31:82:0f:9b:4d:01:b7:91:
70:11:e5:98:8e:3b:b6:9c:c4:ba:67:bd:0d:63:5f:
37:29:ec:9f:b1:1d:9d:b4:d3:51:fa:c1:7d:ea:ab:
e6:1d:ef:e9:42:d1:36:cc:fa:89:55:b1:ff:2c:71:
70:c7:95:e5:f0:ed:0a:b7:f9:60:4e:4a:1b:8d:c1:
fc:4c:ca:1d:2e:4a:f1:0d:9e:46:98:5f:06:33:5d:
44:c6:11:ad:84:f5:31:59:fe:48:a7:02:2d:4d:55:
0b:f8:d8:46:c7:25:1e:30:23:98:66:ad:a7:45:92:
e4:be:b9:9d:d5:3c:ed:52:30:21:ee:fe:b1:33:7e:
50:2a:99:bc:6a:9e:4f:27:36:a6:95:ad:2a:92:6b:
72:a3:9f:f3:b5:5b:ac:6e:6a:e1:2f:b1:9e:15:f3:
3e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:77:BF:6C:BA:7F:1C:D1:B1:97:42:2B:BE:52:CD:A5:7F:2F:AE:F5
X509v3 Authority Key Identifier:
keyid:3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:11:4b:16:9b:ab:1d:38:42:ef:68:df:56:cb:1d:55:ed:19:
a4:9e:82:dc:ed:1e:e8:6a:bc:00:d0:d3:fc:07:3f:e4:cf:32:
d2:ca:08:90:3e:51:25:0f:cc:fe:d1:be:62:43:5d:4f:83:24:
7d:78:b2:43:81:fe:5e:ec:d3:85:0c:c4:ec:3b:ed:37:da:8c:
42:b5:43:79:04:66:30:35:fe:42:b0:3b:dd:31:be:d2:81:ba:
66:7f:9f:81:1a:eb:ff:8b:c9:26:75:77:e6:de:22:61:3d:85:
f5:09:a7:dc:7f:7d:28:e5:c6:20:a3:d9:50:24:83:bb:c0:72:
c4:04:d6:da:6a:ef:e3:af:fa:c3:b5:d3:31:fc:ff:5b:b4:5d:
55:27:92:b7:b5:12:db:02:0d:32:81:4c:aa:15:97:22:9d:d8:
45:f0:b6:27:00:5f:9e:ef:e1:60:21:71:c1:f7:6a:1e:70:68:
ef:26:0e:af:46:89:28:1b:41:06:20:b1:b4:fb:63:30:8b:7c:
ed:5d:69:9f:8f:36:97:1e:27:6c:b6:1f:a7:af:9d:0e:84:d0:
68:2b:29:2f:0a:65:2b:d7:69:1d:f9:56:50:9d:52:00:e7:24:
47:cf:13:cc:2f:cf:09:67:d4:32:44:dc:c0:54:91:c5:45:70:
d7:cb:df:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:26:00 2026 by rpki-client