Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
File: rpPMjMqB-gDcU-e4B46RtcEbou8.mft (raw, json)
Hash identifier: ShsVrWN5yf/LauTQuX1LWVE7tvcRphUKMUEt1cbmwII=
Subject key identifier: E7:AC:20:42:4A:B4:97:09:23:FC:34:FC:AC:D9:45:21:97:DB:E6:C9
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 019D389C0E2C0BA595F1B35145D2BD81DAFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
Manifest number: 1398
Signing time: Sun 29 Mar 2026 08:00:44 +0000
Manifest this update: Sun 29 Mar 2026 08:00:44 +0000
Manifest next update: Mon 30 Mar 2026 08:00:44 +0000
Files and hashes: 1: YinM9FZ7tYvDuQZElbcHdEksbHw.roa (hash: 8pZ2RgiQMW7t4pyoRKcJqD0BNRo6lf7CbatwYv4YjtM=)
2: rpPMjMqB-gDcU-e4B46RtcEbou8.crl (hash: HfeJTnphbJ9BJ1PxaPoz7ctj4NORH0FGKLq0X/ZZ4mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:0e:2c:0b:a5:95:f1:b3:51:45:d2:bd:81:da:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Mar 29 08:00:44 2026 GMT
Not After : Mar 30 08:00:44 2026 GMT
Subject: CN=e7ac20424ab4970923fc34fcacd9452197dbe6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:11:4d:c2:2b:9b:e5:ba:73:a2:0a:35:23:
7d:7c:17:87:54:16:de:0e:58:c6:9e:e7:fc:a8:79:
e3:cf:c0:28:a3:8d:67:42:ff:a5:30:4e:bb:29:7d:
e0:7d:05:fa:d6:33:d6:f3:71:31:04:a4:a5:c0:cd:
d5:0d:4a:0c:71:12:4c:e2:01:8f:04:e9:97:fb:7c:
fc:1b:22:bd:e9:65:d9:6c:76:07:45:56:bb:f7:75:
17:0e:04:ad:ee:48:a0:77:f9:1d:25:d9:e8:ca:83:
ac:d9:dd:0f:71:91:2d:37:93:1e:12:bf:98:2f:02:
07:61:8f:25:dd:2f:f6:a1:f3:f3:03:d6:83:ed:d8:
9f:8d:4a:9e:aa:a7:c5:53:8b:b5:e5:14:5d:da:e3:
c4:c2:40:40:c6:6d:2b:37:c9:5d:aa:5d:39:e1:f6:
4d:37:95:05:81:b4:62:74:a5:a4:79:85:fe:05:1f:
ff:eb:d9:3e:df:23:e1:d0:1e:dd:1c:1f:11:e8:fe:
ac:ed:90:32:0a:52:39:8a:63:da:84:b9:ab:8a:5f:
fb:dd:dc:63:83:47:04:09:52:52:3e:9a:60:c0:d3:
f4:2f:d0:e4:e4:97:51:4a:28:c2:3f:b4:da:7a:60:
4d:bc:b8:4a:f0:be:ad:06:32:16:01:c1:d0:63:53:
bd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AC:20:42:4A:B4:97:09:23:FC:34:FC:AC:D9:45:21:97:DB:E6:C9
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:db:ea:48:cb:ac:8d:7e:4a:91:85:b2:58:f2:33:93:94:ab:
0d:44:76:54:30:39:ef:7a:9b:b2:71:1e:01:6c:a1:a9:91:32:
10:8f:0b:e3:51:ff:a7:40:fb:43:af:93:86:35:f9:70:71:c8:
53:9b:bd:be:8a:29:e5:d4:f4:3e:04:d7:68:ac:37:0d:ba:36:
66:aa:bb:12:05:90:0b:4f:36:40:0e:eb:e8:59:be:cd:b3:17:
85:3c:12:54:1a:ef:55:05:73:0f:fa:eb:91:92:1d:bf:e6:89:
3a:b6:b2:5c:76:86:f8:13:b4:bf:53:c4:1f:ae:e3:21:a1:d0:
13:0c:d1:71:d6:65:79:e2:ef:95:d7:dd:1a:11:c6:89:51:a0:
07:c0:a5:79:76:5e:3c:f3:ed:e3:75:cf:c9:c4:38:fb:a3:c8:
a3:d5:aa:fa:cd:f2:37:33:bb:ad:eb:0a:1b:ff:f2:3f:d7:7a:
15:74:87:81:fa:2f:bf:bf:fc:7a:07:cc:29:63:81:19:b1:be:
7e:5c:03:29:c4:0e:96:d7:8e:fc:9e:ca:23:0e:61:5c:ab:8a:
d6:56:cb:b6:ae:d9:92:b8:58:6c:63:58:45:b0:d9:5b:0e:02:
0d:f3:2c:f6:09:21:1c:5d:b9:0e:61:12:e6:fa:6b:5f:a0:9d:
d2:f4:6b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:08 2026 by rpki-client