Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
File: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft (raw, json)
Hash identifier: hVdRDaSg04tQDq36Wwn3UumFi7guzv7FGUomDFY7GFc=
Subject key identifier: 4E:3E:7D:65:8D:4E:40:B0:BF:A2:B0:7D:9B:46:EB:4A:FB:75:1A:6F
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 019D394134248E0541545727D3BFA0256EE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
Manifest number: 0C83
Signing time: Sun 29 Mar 2026 11:01:07 +0000
Manifest this update: Sun 29 Mar 2026 11:01:07 +0000
Manifest next update: Mon 30 Mar 2026 11:01:07 +0000
Files and hashes: 1: jbAqNXtEEA5VMmJmYWIDy0wpLeE.roa (hash: heA9ElftnVcEx/Z56cUQXfy2JpdBhi/Gw5ToPa737lc=)
2: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl (hash: 54TJFxnnMWx4M0baWDmyfPIeTUMTYOtb1UUwvvJa/Hk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:34:24:8e:05:41:54:57:27:d3:bf:a0:25:6e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Mar 29 11:01:07 2026 GMT
Not After : Mar 30 11:01:07 2026 GMT
Subject: CN=4e3e7d658d4e40b0bfa2b07d9b46eb4afb751a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:37:18:a1:c1:57:5f:d6:a7:eb:7e:ce:d5:
51:97:95:88:0a:57:56:7e:d6:ac:5c:ad:10:e1:a1:
22:3e:ad:3b:18:c6:a0:23:f0:d6:77:d2:dc:b1:05:
d2:cd:bb:46:13:fc:90:1c:99:0c:1f:ee:31:af:44:
26:47:74:dc:9a:1e:1c:58:a8:d7:b4:42:8f:d3:d2:
4f:43:eb:c4:16:67:cb:d6:61:42:67:1c:21:88:aa:
0d:ce:05:86:6d:42:3e:c8:e8:55:2f:f6:b4:e2:cd:
99:95:61:45:44:44:a5:42:7e:8b:22:5a:b3:77:b3:
2c:67:35:38:91:2a:f1:58:41:b6:9d:ef:d2:8b:66:
4d:92:f8:9b:42:f3:13:37:11:07:78:6c:4b:2f:f9:
e9:12:1c:e6:0b:98:23:38:15:b5:12:ae:75:ad:65:
14:95:e2:1f:01:a6:c7:f6:eb:2f:b2:11:2e:75:03:
6f:95:65:84:64:53:5b:ca:fe:b6:f5:48:c2:6c:4a:
01:0c:60:51:ca:49:52:52:ce:0c:2b:95:b5:8c:02:
e2:a5:33:e6:97:48:35:58:73:c9:c4:12:9a:c7:05:
52:6e:e8:59:a8:37:70:ca:b1:60:7e:0e:f7:0c:7d:
ef:ec:48:65:a8:3f:0d:ba:e3:b7:30:c0:80:45:74:
4e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3E:7D:65:8D:4E:40:B0:BF:A2:B0:7D:9B:46:EB:4A:FB:75:1A:6F
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:ce:56:c8:4c:2c:9d:7d:08:bd:e3:e6:06:a2:97:cf:ed:a2:
33:95:ef:4a:bc:fa:3c:1f:01:d5:83:0b:e3:22:b3:c1:a5:65:
e1:08:50:61:1b:4b:38:c7:b7:1a:f5:fd:01:7d:6e:c3:29:32:
ab:74:98:c7:18:1e:d8:6e:64:4b:9d:d3:42:ef:a3:0c:67:ba:
fd:68:95:67:80:ba:cd:c7:29:0a:94:4c:da:ee:b8:48:55:0d:
70:d6:d0:48:6d:0f:52:1a:56:69:66:7b:f2:fa:b5:75:cf:71:
74:fb:89:be:e9:ce:bb:fd:84:59:23:48:33:e1:34:fc:16:3b:
a5:f0:c2:07:7e:ac:d9:48:14:8a:b6:45:ec:fc:44:0c:da:03:
47:65:76:93:2b:38:a4:1b:ee:c7:45:6c:12:0f:be:74:27:6e:
d7:d3:19:be:9c:91:fb:7a:9b:d7:90:b9:5b:db:34:94:18:23:
70:c7:3e:ca:26:72:17:9e:69:25:b7:8f:a4:60:4a:69:8f:82:
48:57:00:1c:49:e9:bb:c7:41:b3:0f:89:16:3a:3e:53:22:65:
3a:27:c3:35:ac:21:89:a1:87:15:28:9a:bd:d1:aa:dd:1a:3b:
96:e3:8d:d3:4f:27:a8:64:93:b3:79:36:8f:83:f0:23:3e:1e:
4d:d3:49:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:23:59 2026 by rpki-client