Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.mft
File: p1f4f4bpOyXvTAQzZku-ctqY-_4.mft (raw, json)
Hash identifier: 04hv7OnpmJTg9dCN0Wc3t0xXlae9CAqpA7wGscSWPXY=
Subject key identifier: 4C:42:E8:39:21:19:27:E5:D1:A5:BA:FE:0F:92:67:5A:04:23:FE:C8
Authority key identifier: A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
Certificate issuer: /CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Certificate serial: 019D37899979505E6EE373B70801EE4488B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.mft
Manifest number: 06A6
Signing time: Sun 29 Mar 2026 03:00:57 +0000
Manifest this update: Sun 29 Mar 2026 03:00:57 +0000
Manifest next update: Mon 30 Mar 2026 03:00:57 +0000
Files and hashes: 1: SdRMQSisA3A52kvZfTcOqIZi7WM.roa (hash: FjVPIrI7M5sGkygChCHAIE+8f/f2VPSzrAXNL/N59yU=)
2: p1f4f4bpOyXvTAQzZku-ctqY-_4.crl (hash: FXNyyI4VNtbAkIBEsTGq8NeEG1Pez7VXTGRXoSNKQy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:99:79:50:5e:6e:e3:73:b7:08:01:ee:44:88:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a757f87f86e93b25ef4c0433664bbe72da98fbfe
Validity
Not Before: Mar 29 03:00:57 2026 GMT
Not After : Mar 30 03:00:57 2026 GMT
Subject: CN=4c42e839211927e5d1a5bafe0f92675a0423fec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:c6:0c:ce:b2:8f:e5:db:b7:86:7d:ab:58:
2b:8c:92:5a:5f:38:2e:fe:c1:f2:f3:b9:0b:d8:8c:
1b:dd:5d:f3:a0:23:4b:c2:54:ed:95:5b:16:16:cf:
9d:9d:30:2b:47:0c:cd:81:3f:80:34:8f:d9:e5:04:
7e:e2:79:ee:f9:53:66:33:ac:08:9e:22:2d:85:42:
56:9d:76:37:52:2c:8f:67:ce:91:73:fb:5a:87:aa:
c1:53:f8:38:3d:dd:21:7b:0b:be:61:34:f8:bb:af:
22:fc:df:73:b5:07:fb:e1:b1:92:7a:c3:f8:ae:cb:
f4:50:3a:4a:fd:a5:80:fa:e3:2c:b7:13:31:bd:da:
88:0b:6f:ce:7d:bd:a8:7c:82:fc:28:51:66:20:6e:
fe:e2:77:81:36:6c:26:79:d4:5b:11:3e:5d:b8:9c:
9a:d1:d4:dc:08:88:ef:92:cd:8f:09:04:74:86:c8:
34:ca:52:cf:54:68:72:4a:ed:93:b3:ef:ec:5a:b2:
31:08:8f:0b:af:82:dc:72:68:77:1f:2b:c5:37:c1:
d3:e5:c0:b2:64:d5:f7:f1:33:34:04:79:12:d6:de:
39:e1:45:fd:6c:f3:46:5b:a7:52:49:d5:0e:8d:d0:
55:d6:51:60:b8:a0:7e:10:a6:3f:c9:57:44:d2:cb:
0f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:42:E8:39:21:19:27:E5:D1:A5:BA:FE:0F:92:67:5A:04:23:FE:C8
X509v3 Authority Key Identifier:
keyid:A7:57:F8:7F:86:E9:3B:25:EF:4C:04:33:66:4B:BE:72:DA:98:FB:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1f4f4bpOyXvTAQzZku-ctqY-_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/86e40c-1563-40ea-8f4e-a178332533e0/1/p1f4f4bpOyXvTAQzZku-ctqY-_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:bf:63:27:d9:13:f0:35:0e:1d:8f:66:0a:cd:60:78:4b:ce:
06:13:f5:ba:e1:03:13:32:91:8b:22:39:9d:30:04:14:f2:37:
e9:1b:22:54:3e:16:65:18:10:d6:58:ef:67:b2:67:d7:b2:1e:
db:5c:5b:0e:cd:38:b0:5b:0d:92:96:53:8e:df:6a:1b:8e:b6:
76:a4:f0:c6:28:3a:f8:b6:16:00:09:d7:ef:34:de:5c:30:e3:
8f:8c:51:bb:bc:0e:52:3d:cd:20:7e:2a:0d:54:1c:fe:dc:ca:
91:f5:c0:ab:e5:90:7b:9a:0d:48:82:cf:92:bb:bb:f3:4a:de:
2d:60:4c:c6:e3:22:2f:a8:59:e3:e9:49:0a:ab:f6:f9:9d:fe:
35:41:5b:4a:ff:18:fc:ab:82:3c:6f:5a:74:ea:fa:11:75:ca:
b1:da:17:16:6b:96:6b:65:e6:86:11:5c:82:c5:3d:45:6d:f1:
76:42:f7:ce:ae:8b:a5:f7:11:6b:39:59:78:06:bc:b5:3c:90:
e1:e7:fb:07:50:0b:b0:8d:30:35:51:a8:b9:98:9a:1c:ca:16:
9d:d6:b4:a2:86:5e:41:ba:aa:6b:f3:8c:e5:2f:d1:56:fe:de:
0a:f9:5d:08:24:70:4a:4c:a5:82:00:81:d2:6c:db:98:96:a4:
1b:a2:96:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:09 2026 by rpki-client