Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: WOHIrkDWn/AWv6nEuiFgOr3l8ZQBU5txBWEQ72JAiLs=
Subject key identifier: 98:1E:4C:C4:2D:DA:9A:60:00:88:04:F1:A4:04:21:FD:72:25:9E:D4
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 019D390A211707E0DAAB5557F2E6E1395D08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 09F3
Signing time: Sun 29 Mar 2026 10:00:58 +0000
Manifest this update: Sun 29 Mar 2026 10:00:58 +0000
Manifest next update: Mon 30 Mar 2026 10:00:58 +0000
Files and hashes: 1: 5sg8jhdzeaiLeEp6wxZ_2JeXdD4.roa (hash: liGuxIjPN3BQno0UGJZyTCNg4Fr30OK1nNLU8WxYRpQ=)
2: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: 5EPfz1K8CdMeEQcsiE6/5LKD/TkucUJgDWIkp03dKM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:21:17:07:e0:da:ab:55:57:f2:e6:e1:39:5d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Mar 29 10:00:58 2026 GMT
Not After : Mar 30 10:00:58 2026 GMT
Subject: CN=981e4cc42dda9a60008804f1a40421fd72259ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:41:76:c1:80:fa:c5:f1:7c:5b:7a:2e:32:48:
44:47:7d:da:e0:dd:b8:53:c2:2d:76:e6:11:a3:94:
9b:62:04:8a:c4:82:3d:21:c3:65:d1:51:d8:f1:b3:
71:0e:e7:f3:0d:73:84:10:b5:ac:82:8a:e9:5e:15:
00:58:91:e3:09:ad:4d:05:5f:d8:77:5d:a2:20:25:
4c:8a:d3:3c:88:56:d1:85:76:df:93:e2:57:9e:99:
fc:8b:35:a3:60:5e:d7:52:2a:e3:3e:3f:5d:45:1c:
12:31:f6:5f:94:67:50:56:d8:7a:a9:47:fa:5a:5b:
40:84:8f:c4:cf:69:1c:50:bc:3d:75:e0:e7:86:2c:
e8:b2:a1:f9:3e:7c:e3:75:99:e9:40:eb:db:6a:e5:
1b:b1:fe:a6:1b:3e:08:87:9c:5b:81:f7:94:2b:bb:
f7:eb:14:a7:7a:2c:33:cd:6f:36:40:9f:79:7c:09:
ce:22:3f:22:23:a0:3e:4d:0c:e3:dc:50:87:6a:ba:
15:68:16:23:a1:cc:40:f3:d0:9b:3c:82:28:bf:4c:
ed:ed:a5:eb:eb:f0:64:98:b5:32:a1:e1:fe:59:64:
ac:02:df:e7:7b:c6:3c:2e:30:ef:0a:b0:0e:4e:92:
34:c8:f5:df:25:f1:5c:d7:8e:94:21:1f:93:42:d1:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1E:4C:C4:2D:DA:9A:60:00:88:04:F1:A4:04:21:FD:72:25:9E:D4
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:3b:44:85:70:11:ea:42:85:5f:90:97:e0:45:77:46:62:9d:
fa:e8:ad:e3:5f:09:f0:93:cb:b2:7b:61:eb:8b:e2:e7:4f:2d:
46:e0:49:5f:31:93:17:c9:65:15:49:26:3b:45:fe:48:9d:2d:
e9:26:c1:bf:33:1a:aa:ee:09:c2:cc:c0:8b:d2:e8:d8:1b:63:
55:72:e6:c4:89:db:6f:b2:fe:b0:2e:76:fd:c3:02:7e:f4:c9:
23:46:15:b5:8f:fe:37:0f:01:28:8a:d2:37:8a:05:06:0e:bb:
4e:8b:5d:07:b6:85:42:cd:f8:e4:65:44:c7:d1:d4:b8:9b:1b:
88:c0:8f:f4:20:6e:f5:5a:79:02:bc:11:10:3b:be:b5:82:2c:
4a:27:1a:9e:67:a3:fd:5a:df:3b:7c:3e:c7:a0:cb:a5:b3:e2:
f3:07:74:5e:49:cc:f4:90:f5:13:5c:00:b4:10:d8:95:cc:56:
27:fb:a8:a2:d2:3d:a1:76:42:ba:ae:f2:fc:2a:0f:e2:f6:5c:
fd:fb:1c:dc:58:0b:89:cb:e6:26:2a:80:1d:6b:2a:5c:3f:06:
fe:c4:4f:30:67:fb:65:89:4f:0c:06:f7:44:b3:fb:c4:0f:eb:
b5:87:f4:80:d8:bf:24:f9:a5:b0:08:32:6b:bd:23:64:03:23:
06:e9:17:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:28 2026 by rpki-client