Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
File: pQE9aytVPeF23W7IHOe5AyU5y7o.mft (raw, json)
Hash identifier: dV68KkCzIcCd5OgGgrRmYDtv0MTmocyuwkwX/XZ9Zvo=
Subject key identifier: 93:0B:EB:A1:33:72:DC:7A:09:20:6C:3A:95:81:ED:91:D5:97:65:61
Authority key identifier: A5:01:3D:6B:2B:55:3D:E1:76:DD:6E:C8:1C:E7:B9:03:25:39:CB:BA
Certificate issuer: /CN=a5013d6b2b553de176dd6ec81ce7b9032539cbba
Certificate serial: 019D37F7272E8F0FAA8CC12CBDA4209C9D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
Manifest number: 0209
Signing time: Sun 29 Mar 2026 05:00:37 +0000
Manifest this update: Sun 29 Mar 2026 05:00:37 +0000
Manifest next update: Mon 30 Mar 2026 05:00:37 +0000
Files and hashes: 1: 0JKJErErT3c5yGsDABKWandhVXg.roa (hash: LqnDDTfQ4i9/DFwQQhZWC7hGQfTU/0ibBIuHY+9l1Co=)
2: pQE9aytVPeF23W7IHOe5AyU5y7o.crl (hash: qh+A2YTRxQY8hs4CfjJYb7IdAVrQqswkxMOW6vg0FO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:27:2e:8f:0f:aa:8c:c1:2c:bd:a4:20:9c:9d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5013d6b2b553de176dd6ec81ce7b9032539cbba
Validity
Not Before: Mar 29 05:00:37 2026 GMT
Not After : Mar 30 05:00:37 2026 GMT
Subject: CN=930beba13372dc7a09206c3a9581ed91d5976561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8b:19:b6:79:7a:09:8f:c0:35:7f:31:43:5a:
5c:00:e8:9e:38:3c:53:bf:88:96:06:72:57:43:00:
01:8f:8c:d1:65:2c:9c:db:e0:a5:b3:6d:e0:fe:ed:
9f:46:b3:4b:28:ac:21:e7:b7:68:97:4d:5a:ab:a1:
e4:87:bd:b2:81:91:f5:68:8f:0c:01:d9:e5:0d:65:
8e:7f:e6:68:1b:e7:a2:96:da:79:93:53:67:65:39:
e7:ce:ff:82:1a:a5:2d:78:56:42:b7:41:be:a0:b3:
a7:36:17:71:a7:3c:23:bb:70:f8:0d:a9:f9:0c:a0:
4e:be:20:24:dd:c5:92:6a:5a:0c:05:db:e8:e1:fe:
d9:ca:3d:c9:42:ca:64:15:94:23:e6:c1:b9:eb:ed:
45:51:6f:d6:1f:5c:a8:ae:0e:bf:59:85:b3:8f:1a:
02:46:c4:89:f2:39:41:60:f3:f9:d5:e7:e2:1d:3c:
bf:8e:9e:d4:fa:8b:a5:eb:2f:29:76:57:b5:cb:93:
f7:29:a8:49:28:42:70:00:0d:7f:81:7b:6a:cb:fb:
13:e0:95:d7:4a:57:c2:85:15:2d:e3:63:e6:f0:1f:
b3:ac:b4:c2:57:a7:fe:e5:ee:be:c2:14:01:34:48:
1c:d5:a2:f3:1a:25:d3:3f:67:85:6e:6e:29:0e:d3:
2c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0B:EB:A1:33:72:DC:7A:09:20:6C:3A:95:81:ED:91:D5:97:65:61
X509v3 Authority Key Identifier:
keyid:A5:01:3D:6B:2B:55:3D:E1:76:DD:6E:C8:1C:E7:B9:03:25:39:CB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:86:1b:2f:d1:00:e0:2b:9c:aa:47:dc:92:69:2b:d2:14:bb:
3c:e5:03:70:a1:e8:eb:6d:d3:b8:d9:bf:d5:4e:59:64:3d:9a:
36:58:aa:35:e4:80:92:14:69:12:ab:d3:79:36:f0:90:4a:4a:
3a:ac:31:a6:c3:b1:45:86:97:89:c0:2f:d9:79:ba:36:39:49:
e4:d4:c0:25:6a:32:a7:f4:11:b2:f8:e2:34:14:71:1c:6c:e4:
45:26:b4:03:74:6d:df:2d:05:8f:ad:e5:84:95:3f:3f:dc:2e:
5e:03:b3:ee:49:50:45:28:47:3c:a8:ad:0c:f3:63:76:e8:c0:
7a:46:74:91:45:45:d8:9b:ab:08:c1:c6:98:54:9b:eb:e2:88:
0a:26:ed:14:a3:b4:dc:39:d7:a0:fe:91:be:d7:f6:0e:58:9e:
f9:55:88:83:fc:48:d7:7a:30:08:e1:e4:36:84:28:c3:43:50:
94:50:f8:30:0e:ae:74:59:ac:72:f1:8d:27:a5:f0:84:88:2c:
a2:22:4e:10:52:2e:5a:eb:aa:ae:71:02:8d:f7:37:c4:b4:92:
1a:76:86:59:e6:e6:80:e9:80:06:0b:db:1c:1e:fb:8a:2f:ea:
b6:fe:82:04:22:e8:c8:70:41:1b:4c:f1:9c:cb:9d:96:e4:b0:
6b:3e:f2:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039ycujw+qjMEsvaQgnJ0LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MDEzZDZiMmI1NTNkZTE3NmRkNmVjODFjZTdiOTAzMjUz
OWNiYmEwHhcNMjYwMzI5MDUwMDM3WhcNMjYwMzMwMDUwMDM3WjAzMTEwLwYDVQQD
Eyg5MzBiZWJhMTMzNzJkYzdhMDkyMDZjM2E5NTgxZWQ5MWQ1OTc2NTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YsZtnl6CY/ANX8xQ1pcAOieODxT
v4iWBnJXQwABj4zRZSyc2+Cls23g/u2fRrNLKKwh57dol01aq6Hkh72ygZH1aI8M
AdnlDWWOf+ZoG+eiltp5k1NnZTnnzv+CGqUteFZCt0G+oLOnNhdxpzwju3D4Dan5
DKBOviAk3cWSaloMBdvo4f7Zyj3JQspkFZQj5sG56+1FUW/WH1yorg6/WYWzjxoC
RsSJ8jlBYPP51efiHTy/jp7U+oul6y8pdle1y5P3KahJKEJwAA1/gXtqy/sT4JXX
SlfChRUt42Pm8B+zrLTCV6f+5e6+whQBNEgc1aLzGiXTP2eFbm4pDtMsAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJML66Ezctx6CSBsOpWB7ZHVl2VhMB8GA1UdIwQY
MBaAFKUBPWsrVT3hdt1uyBznuQMlOcu6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFFFOWF5dFZQZUYyM1c3SUhPZTVBeVU1eTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC81ZDRhZTEtMTZlOC00ZmM0LWE4MWEt
MTNmZDJjY2Y4NzkwLzEvcFFFOWF5dFZQZUYyM1c3SUhPZTVBeVU1eTdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC81ZDRhZTEtMTZlOC00ZmM0LWE4MWEtMTNmZDJjY2Y4Nzkw
LzEvcFFFOWF5dFZQZUYyM1c3SUhPZTVBeVU1eTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdYYbL9EA
4Cucqkfckmkr0hS7POUDcKHo623TuNm/1U5ZZD2aNliqNeSAkhRpEqvTeTbwkEpK
OqwxpsOxRYaXicAv2Xm6NjlJ5NTAJWoyp/QRsvjiNBRxHGzkRSa0A3Rt3y0Fj63l
hJU/P9wuXgOz7klQRShHPKitDPNjdujAekZ0kUVF2JurCMHGmFSb6+KICibtFKO0
3DnXoP6Rvtf2Dlie+VWIg/xI13owCOHkNoQow0NQlFD4MA6udFmscvGNJ6XwhIgs
oiJOEFIuWuuqrnECjfc3xLSSGnaGWebmgOmABgvbHB77ii/qtv6CBCLoyHBBG0zx
nMudluSwaz7yLA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:41 2026 by rpki-client