Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
File: pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft (raw, json)
Hash identifier: R/4PUOBovHvtTXWGo1YUBc357I3xTF+nXsDZzqmlPwU=
Subject key identifier: 9F:F7:06:F5:CA:B3:52:95:48:AF:C9:17:68:91:2F:E0:FD:8A:EF:0B
Authority key identifier: A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
Certificate issuer: /CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Certificate serial: 019D37527FE66A361A79A790BAD489D53EFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 02:00:46 +0000
Manifest this update: Sun 29 Mar 2026 02:00:46 +0000
Manifest next update: Mon 30 Mar 2026 02:00:46 +0000
Files and hashes: 1: C0jIgMcLTHgqOBjTV2Pk_I0UXpE.roa (hash: Vnmpnxzb5d888xy3LtJLua3mvD0ti0N+tPvmlqaYeqw=)
2: pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl (hash: Y7/HtkjsjvN/JiAs1dAcPu5QxTLrkviJfNfdWVRrldw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:7f:e6:6a:36:1a:79:a7:90:ba:d4:89:d5:3e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Validity
Not Before: Mar 29 02:00:46 2026 GMT
Not After : Mar 30 02:00:46 2026 GMT
Subject: CN=9ff706f5cab3529548afc91768912fe0fd8aef0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:47:e1:25:2d:0c:ac:9e:a8:f7:2d:45:b3:8b:
7f:35:36:1f:b0:66:84:28:35:96:06:86:bc:59:cc:
ad:20:ef:5d:d4:da:34:37:04:b8:93:42:11:9b:83:
f5:ca:66:71:29:ab:96:51:ed:52:3c:a8:eb:98:c0:
e0:11:30:ba:df:3e:3e:1f:a8:1b:29:c9:ef:21:68:
a4:0d:46:f5:c8:6f:55:e7:df:4d:f1:eb:63:b1:ad:
da:be:e0:ed:18:21:2e:a1:0a:c9:27:17:d3:a5:23:
e2:f2:0d:7f:bd:13:45:b6:af:e0:bf:d0:b5:f8:eb:
55:f6:32:f8:46:f3:56:d2:62:47:9f:a3:d6:85:83:
2b:74:71:5c:fe:9d:41:09:2f:87:08:2f:3e:42:84:
e8:bb:fa:1e:09:e8:ae:1e:8a:18:cf:a2:3b:bf:f4:
89:3b:1f:91:7f:d8:53:61:d7:90:b8:00:72:88:4f:
5e:5b:a6:c9:3d:00:ab:6b:22:63:04:28:c0:9a:b7:
b3:4a:c7:83:7a:69:42:0c:5c:f1:44:57:e8:1c:e1:
b4:d4:d3:6e:13:a7:38:cd:e2:6a:68:6d:44:22:9b:
98:00:83:58:01:ea:86:10:b1:9b:bb:c4:15:30:f7:
9a:21:32:87:7f:f2:c9:49:f0:47:b1:9d:aa:cb:22:
11:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F7:06:F5:CA:B3:52:95:48:AF:C9:17:68:91:2F:E0:FD:8A:EF:0B
X509v3 Authority Key Identifier:
keyid:A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f4:6f:5b:ec:d8:7a:c9:4f:16:ec:41:56:62:5a:1b:48:60:
70:58:86:0c:a7:f7:9c:66:75:d1:ac:de:0f:41:e7:9b:03:f6:
b4:a9:6d:06:a2:55:c4:92:7f:90:99:af:ca:6e:7d:92:a6:58:
3d:a8:5e:6c:a9:52:9b:dc:a1:66:8f:5b:11:7b:32:79:b3:1e:
8c:4b:32:89:6d:1d:f1:5f:1c:27:6b:47:2b:5a:f3:74:8d:7b:
71:7a:a0:7d:9d:6f:55:ca:7c:10:b2:70:38:78:5e:3e:2a:f8:
ce:4d:73:7b:a0:c6:1c:2a:e3:65:0f:28:ab:df:7c:6f:07:9e:
f4:63:da:cf:43:00:f4:6b:8e:cd:8f:ab:e2:95:fa:53:30:9d:
6b:3c:f2:4a:7b:e5:69:1e:ec:e9:0f:12:b6:19:16:e0:aa:3c:
86:a0:03:ac:1b:2e:0a:13:d2:2a:92:41:75:1a:5a:5a:86:c8:
af:84:2e:d4:df:99:3d:e5:cf:3c:9f:67:db:bc:e2:c8:6e:83:
66:aa:36:c2:86:61:9f:7f:0e:f3:3c:bf:11:af:a2:60:03:e1:
ae:fc:f5:d3:10:9e:43:eb:ad:80:15:3c:9c:78:80:10:8e:d8:
91:2e:fb:90:98:f1:7c:e6:2d:4f:22:cd:a8:a7:36:ad:0c:76:
47:f6:ab:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:21 2026 by rpki-client