Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
File: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft (raw, json)
Hash identifier: qWTCbcJMj2DY2i4TaG/FgIaBFwWOZFiHHDxXfBKmiS0=
Subject key identifier: C7:1F:92:E2:41:61:78:79:10:66:BE:36:0F:07:AC:43:57:0E:42:02
Authority key identifier: D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
Certificate issuer: /CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Certificate serial: 019D3865DC628B77B8089BB101C6C22A566A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
Manifest number: 038A
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl (hash: UfY6ulxwJ+d4CdmVhqMJryi7iw/Ur/rKBUrZNr8W0Mc=)
2: pdSStO6DCaJYyS956WyXq-lA8KU.roa (hash: pWxBYjsjh5LvNjhkNSAagaIsoVy58B8SoqT9s1TYRxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:dc:62:8b:77:b8:08:9b:b1:01:c6:c2:2a:56:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=c71f92e2416178791066be360f07ac43570e4202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:79:67:e1:74:97:20:ab:5a:8e:8a:7b:86:60:
60:34:8f:32:32:a4:10:2d:df:88:1c:29:7b:83:cf:
21:28:b8:99:9b:38:a1:5f:f9:68:df:fe:7f:b9:05:
01:04:72:02:53:16:1c:ca:c0:16:38:d1:0c:27:59:
ef:4f:cb:ff:f0:be:e0:3b:5a:5f:d6:60:08:5d:a6:
e0:49:38:7e:12:e5:1d:4c:15:5f:cb:40:5e:dc:fe:
2f:6a:aa:63:dc:0a:5c:24:6d:c1:d8:83:a1:36:f1:
99:c4:dd:68:54:85:78:25:69:cd:b7:ce:83:82:a6:
63:fa:71:b4:68:37:fe:32:2a:3e:f7:10:93:48:23:
38:91:f6:d0:cc:ed:82:71:3d:b2:93:da:67:40:f9:
33:fa:f5:7c:66:e7:37:31:bd:ad:75:27:a4:23:81:
75:73:00:a4:76:cd:39:f2:42:b4:9e:c8:de:16:12:
38:cf:20:b5:dc:90:3c:17:4b:3a:f6:35:5a:63:17:
12:da:97:f2:e5:5f:7b:c2:3d:7f:af:ea:cf:62:a9:
89:76:3c:8b:b2:c6:72:b1:b7:b4:c1:15:81:c4:da:
2b:8e:7c:fb:26:6f:f0:ca:48:ce:72:93:33:de:74:
6b:b7:68:3a:c3:77:71:77:88:cf:84:dd:4a:74:29:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1F:92:E2:41:61:78:79:10:66:BE:36:0F:07:AC:43:57:0E:42:02
X509v3 Authority Key Identifier:
keyid:D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:18:3a:60:2c:3b:a1:7a:e5:16:06:d5:dd:3f:84:25:1a:08:
1c:d2:93:7f:77:f5:02:f2:e6:ff:d8:ce:ed:3a:38:82:05:ad:
67:e1:54:dc:9b:b9:99:89:cb:0e:aa:d6:22:fa:b2:2b:58:94:
27:1d:b8:14:78:6f:bf:53:d9:f6:f9:b1:83:c4:c2:8a:51:31:
86:20:ef:61:82:ec:b6:06:26:34:25:ee:64:db:34:25:14:50:
b7:0f:32:9f:fd:7e:33:75:6b:54:69:5d:20:0e:0e:0d:90:f8:
71:9b:81:32:eb:c9:b9:73:df:8e:73:9d:d3:db:2d:43:e0:fa:
d3:7f:4c:b6:7b:7a:31:76:0d:4d:61:59:86:6d:5d:29:1e:7e:
06:ca:b3:f2:b3:51:fe:a5:7a:10:98:6b:15:c3:21:91:14:cd:
0d:1a:b2:8c:ce:b3:4c:30:d3:1f:d8:45:ca:39:67:9b:41:f2:
13:0c:37:fe:9e:37:b7:6f:25:08:e6:a6:22:dd:94:95:60:7c:
b0:6c:1a:94:ea:bc:43:20:09:4d:64:69:8e:9f:fb:67:13:bb:
a9:18:7b:ba:f3:be:02:17:a6:0d:d0:b5:02:87:a0:e3:9c:2c:
13:49:e3:a5:3b:6e:4c:da:8a:a0:f5:7f:f2:d6:5d:e8:31:04:
c5:15:7a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:00 2026 by rpki-client