Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
File: PKap1LWSRrTjNhThpLWRthGOihU.mft (raw, json)
Hash identifier: PcacS7ChSYTYGnErDg3EETntJQLELYmmqtpLiEsyQGw=
Subject key identifier: 5C:5A:46:28:F2:DB:C4:F6:B4:82:13:DC:A7:17:FB:48:E1:12:71:84
Authority key identifier: 3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
Certificate issuer: /CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Certificate serial: 019D3909A45C8078EC587D4E21B43ECED721
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
Manifest number: 1433
Signing time: Sun 29 Mar 2026 10:00:26 +0000
Manifest this update: Sun 29 Mar 2026 10:00:26 +0000
Manifest next update: Mon 30 Mar 2026 10:00:26 +0000
Files and hashes: 1: MoHvjFVhkl8HU6ePjT49rhVwjYg.roa (hash: 2eLzVr3a7Kd+bh+gySuGFEV4/gbUAwjuFtVGSZR/wAk=)
2: PKap1LWSRrTjNhThpLWRthGOihU.crl (hash: hUX7mdHNp0K0Mg2y16lEBHy2SVfm3V+v3EP+bVRmPgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:a4:5c:80:78:ec:58:7d:4e:21:b4:3e:ce:d7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Validity
Not Before: Mar 29 10:00:26 2026 GMT
Not After : Mar 30 10:00:26 2026 GMT
Subject: CN=5c5a4628f2dbc4f6b48213dca717fb48e1127184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e7:cc:41:c3:16:f1:0b:cc:e4:08:13:d0:cf:
46:2a:61:5e:d2:bc:e7:2c:f6:c3:28:a2:1d:3c:6c:
f6:c5:2c:3c:f7:b6:a4:ac:92:3c:ec:20:03:17:35:
fb:4a:c6:b4:98:98:cc:57:ea:8a:d4:98:12:dd:d6:
b5:2c:f0:9a:1b:12:35:b2:82:b1:c1:f7:0b:38:50:
60:32:be:a5:34:65:54:5d:d1:48:48:f8:c7:c2:61:
76:16:eb:dd:6d:80:f4:5b:07:f0:40:f7:a6:29:b8:
5e:a8:cd:bc:6f:db:3c:cd:13:c6:a2:18:54:c0:2b:
bb:cf:65:99:eb:a2:95:86:18:db:35:d3:98:e8:99:
4d:5d:1b:be:a7:80:36:fe:75:63:5c:28:3c:fc:bf:
41:74:97:32:fb:b2:38:ff:b7:88:b5:29:e0:cd:60:
02:c2:c7:dd:58:49:47:05:71:b4:1e:e9:40:52:c7:
10:e9:bf:33:5c:d4:a2:92:53:03:fc:22:7b:3c:97:
09:8f:03:b4:ea:a4:fa:97:9d:ac:80:40:8a:7f:e6:
b5:45:8f:be:e5:e1:36:cf:f5:d4:6c:84:6a:ed:28:
b6:16:b2:cf:2d:03:07:1e:41:f5:e9:ef:80:c6:d7:
45:bc:98:b8:37:f2:11:64:f0:84:31:28:84:3c:50:
9d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5A:46:28:F2:DB:C4:F6:B4:82:13:DC:A7:17:FB:48:E1:12:71:84
X509v3 Authority Key Identifier:
keyid:3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:0f:0b:3a:0e:26:68:7f:9c:b2:a3:22:60:55:a5:20:58:d8:
c5:83:43:69:7f:b7:07:63:66:d0:ff:7d:48:80:eb:0b:04:81:
bd:f4:e6:42:72:32:89:44:44:cf:5a:3d:a4:0a:82:07:41:9a:
b6:74:3c:f2:c1:46:92:2b:39:19:b8:76:06:90:9c:de:b6:80:
c6:39:45:98:b1:3e:cc:ec:15:18:60:b3:59:f3:d7:fc:e9:3f:
16:10:d7:d0:2e:48:a8:78:7e:c6:0c:f6:b6:c9:26:47:89:df:
28:21:44:69:69:f0:ee:8d:9b:0a:bd:84:4b:98:f0:4a:90:7b:
da:af:14:44:8c:7d:57:88:d2:e4:5f:5a:15:9c:2b:1e:6e:5c:
ec:d0:a8:f1:de:c7:11:c5:4a:97:59:be:ee:63:2e:9b:c8:e5:
d0:69:5c:ce:1c:36:12:c0:2f:74:f1:0d:2c:6a:fd:92:67:69:
85:a7:18:1c:a5:f3:ae:ad:3f:7f:89:e2:12:64:e6:d9:e2:a0:
63:b0:42:d6:8f:b3:a0:5a:bc:2d:71:7f:50:13:cc:d6:6a:ba:
73:97:32:16:20:e3:a4:64:be:e5:ab:f4:97:8d:4d:ec:43:05:
3d:a9:84:c3:66:89:00:f4:15:da:b7:89:33:c5:97:f8:f3:24:
ef:58:c4:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:49:56 2026 by rpki-client