Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
File: pHFXAbAK3kiVo5p2oNgQDsleq-M.mft (raw, json)
Hash identifier: my64IXwnuiDwzcqcWU8WDMrRetHVz1yaE9qrgle5g/o=
Subject key identifier: 1E:B0:01:FB:DE:99:A9:8F:AB:F5:DD:39:02:F4:51:D5:D0:3B:11:08
Authority key identifier: A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3
Certificate issuer: /CN=a4715701b00ade4895a39a76a0d8100ec95eabe3
Certificate serial: 019D37F7769AAF5F849B52F142D0DAA91C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
Manifest number: 04E0
Signing time: Sun 29 Mar 2026 05:00:57 +0000
Manifest this update: Sun 29 Mar 2026 05:00:57 +0000
Manifest next update: Mon 30 Mar 2026 05:00:57 +0000
Files and hashes: 1: pHFXAbAK3kiVo5p2oNgQDsleq-M.crl (hash: P3gQ9J2ykCwesHKVAbkqwPgkseGxkng6+GqQU4Q4dH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:76:9a:af:5f:84:9b:52:f1:42:d0:da:a9:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4715701b00ade4895a39a76a0d8100ec95eabe3
Validity
Not Before: Mar 29 05:00:57 2026 GMT
Not After : Mar 30 05:00:57 2026 GMT
Subject: CN=1eb001fbde99a98fabf5dd3902f451d5d03b1108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:b8:4d:cd:ed:5b:60:43:82:74:3a:c0:57:
18:40:ab:ba:30:40:e9:fc:7e:30:3c:d3:96:6e:ce:
35:cc:3d:7d:e6:c0:85:e7:9b:06:e3:78:75:91:de:
8b:7b:65:4e:db:f9:d6:de:94:41:68:23:4a:7e:a8:
96:dd:d5:e3:d3:4a:0c:66:19:c8:c9:0f:5e:0d:1f:
6e:1a:80:0b:70:b4:d3:e1:cc:19:39:4f:62:83:30:
bf:22:5f:b1:ab:11:42:04:fb:0f:cb:d8:a1:8d:4c:
dd:c0:4b:d8:4e:db:16:5d:29:55:44:3a:0a:b6:54:
58:ed:0f:b4:60:73:fd:3e:09:4a:2e:a7:af:2c:b5:
e8:19:90:d0:b0:ec:f7:a4:31:77:7b:75:c4:93:8e:
d4:13:46:1d:19:9a:9a:9d:67:6e:9a:65:c9:47:09:
dd:28:b5:03:34:7b:52:66:59:06:c4:7a:46:e1:a1:
ff:cd:ce:94:75:7b:3d:dd:e3:25:63:23:82:7d:f7:
88:da:39:0c:59:0e:5e:85:a2:44:6b:de:c7:7c:0e:
6f:a8:09:db:b7:d0:eb:71:07:30:f4:27:fe:24:f8:
1a:f5:43:08:d6:80:3d:4b:66:1e:ac:f0:ec:62:ab:
88:26:87:87:f1:48:a5:e6:e5:a8:8e:94:85:b7:eb:
f2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B0:01:FB:DE:99:A9:8F:AB:F5:DD:39:02:F4:51:D5:D0:3B:11:08
X509v3 Authority Key Identifier:
keyid:A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:92:05:63:f0:ad:6b:a7:09:06:01:d4:76:a7:4b:ce:80:9c:
15:a7:22:4c:7c:61:b2:52:b4:0b:dc:6f:0c:ed:65:4f:bf:50:
d7:85:08:f2:84:5a:b7:18:6f:74:6e:75:63:6b:fc:5a:88:83:
9a:fc:12:5d:a2:18:ea:20:ac:9a:0f:6f:56:95:52:97:d9:0d:
9f:b4:46:ee:94:72:9e:cb:3b:c2:e8:84:53:87:3a:ed:04:c2:
b9:0f:eb:0d:e6:9b:fe:ce:61:7e:c8:03:8d:a7:37:e5:46:c8:
63:de:40:67:89:d1:a7:ad:89:8f:52:d0:ff:45:e4:4d:0f:88:
47:fb:da:05:ad:aa:53:8e:4d:2a:30:de:cd:b4:d2:b7:0d:f5:
c4:d7:67:4f:f7:5c:25:3c:70:ae:4e:82:42:62:4f:62:9a:a3:
00:7b:3d:26:c9:9b:8e:36:68:a2:fe:a6:01:33:50:62:c3:53:
e4:49:02:87:bc:66:bc:78:75:65:2c:27:44:a7:87:97:36:f5:
56:ea:bb:87:d1:02:c5:d6:73:65:b3:90:d6:3e:33:08:d9:ee:
b3:b3:5e:4e:6e:3f:af:2e:ee:2b:89:20:49:eb:96:27:98:c4:
b2:d7:07:f4:92:54:20:6a:0e:a8:fa:03:d6:56:5e:e3:99:c8:
dc:50:fe:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:08 2026 by rpki-client