Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: gKtjVpnN3vfP06kZzKTEfOCIRCWFr6AlxIQZ1+7mnrs=
Subject key identifier: 2A:DD:57:81:95:16:7A:BE:5D:1D:73:9D:DA:2F:C9:D9:99:2C:42:37
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 019D39775FBFC2016ED1DCE6D5B52E70BB07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 1525
Signing time: Sun 29 Mar 2026 12:00:17 +0000
Manifest this update: Sun 29 Mar 2026 12:00:17 +0000
Manifest next update: Mon 30 Mar 2026 12:00:17 +0000
Files and hashes: 1: N0lWMYy9L6tUgt5C_ALrdVgjFpM.roa (hash: 3TxHIvizHgvT9zapL1jqZMumyRmsqmWLMCRlhTI/E5A=)
2: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: 3gAfEzQb8RH5cHKkIUH3AlWKOtQl8dGO/u5x4aFtRmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:5f:bf:c2:01:6e:d1:dc:e6:d5:b5:2e:70:bb:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Mar 29 12:00:17 2026 GMT
Not After : Mar 30 12:00:17 2026 GMT
Subject: CN=2add578195167abe5d1d739dda2fc9d9992c4237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:8f:5d:71:3b:66:82:45:b3:a6:28:69:4e:
95:0d:9b:27:ba:3f:ed:70:00:91:b7:a2:75:62:2a:
3e:d1:3a:86:df:f7:89:f9:dc:af:b9:d4:7f:12:c6:
42:ed:d0:3b:2c:a4:37:28:20:ba:04:9f:31:9a:72:
f1:93:f5:d9:96:d4:33:51:a9:1c:2e:3b:db:aa:d5:
0e:95:ad:2f:a2:31:67:5d:73:0d:5b:87:d8:a0:8a:
48:d1:7a:fd:f3:62:55:ec:c4:a0:12:91:b6:3e:6e:
c5:e6:9b:8b:73:48:0a:f0:e9:72:6c:21:f5:11:e9:
4d:b1:4f:91:5b:eb:43:01:9e:31:4a:43:15:1a:8c:
9a:28:c4:0c:80:4d:f1:32:e0:7a:54:95:eb:67:2b:
1a:05:85:86:a2:30:83:6c:52:e9:52:7b:a0:d4:d3:
9f:c0:51:51:90:b3:ee:e5:78:81:be:91:de:60:cd:
36:ed:5d:71:5f:43:b9:78:07:29:59:f0:52:da:9a:
fe:e6:4c:f1:f8:d5:3f:25:c4:b1:b8:24:06:72:45:
dc:79:ef:5e:24:06:d8:7d:2b:8c:49:01:ca:45:b3:
dd:b2:94:08:f2:1a:64:47:34:1c:cf:68:21:1e:25:
97:3f:df:8c:30:83:7e:9d:cd:30:5b:87:3d:69:83:
bb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DD:57:81:95:16:7A:BE:5D:1D:73:9D:DA:2F:C9:D9:99:2C:42:37
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:64:c8:ac:4b:3d:c8:83:dd:d7:94:75:58:41:d4:73:8c:4d:
de:b8:a0:b8:51:9b:81:c8:30:c4:90:72:0f:6a:64:89:0d:76:
8e:9b:c2:34:ff:70:56:8e:38:20:45:26:4f:33:29:7a:a2:ca:
a0:ba:84:c8:f5:03:3f:84:12:30:74:bc:cf:3b:60:ab:e5:ca:
89:c8:f7:40:5e:dd:7b:6a:c5:ce:80:7c:b0:ff:b8:9e:f2:72:
d0:2a:0b:22:2c:a0:06:d1:70:a7:3a:fa:fb:e0:f4:6f:db:4e:
6f:1c:d0:e6:6a:e5:36:9c:24:a4:1d:d5:8e:cc:6d:5a:80:24:
c4:97:8c:81:0a:c8:59:be:cb:b4:3c:8e:9f:b2:06:81:be:bc:
e6:a8:0c:b4:9b:c3:50:7b:71:9c:78:40:3e:5b:92:43:67:7a:
4c:ca:ce:c0:b7:4d:fd:93:6c:e5:4a:7e:ea:ca:e0:e7:e0:cd:
a4:d8:4c:f7:ac:6f:3b:80:6f:d2:88:25:df:6d:74:68:15:77:
80:2f:3d:cc:77:29:9f:4b:e8:2d:ee:02:1f:d2:83:98:fc:76:
d3:b5:37:69:5a:d4:66:62:7a:2a:56:5f:32:c7:a6:4f:ac:c9:
d9:35:85:c9:d5:36:69:b0:eb:8f:f2:c1:2f:73:68:a1:80:56:
07:d4:36:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:51 2026 by rpki-client