Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: PujitnO0g5sRoE1gNuRNLhEDMmCCyE23peQjzzAZFpM=
Subject key identifier: 00:94:64:43:EA:58:9F:A2:F7:B3:9E:3D:4D:B5:1D:6E:9C:06:85:E2
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 019E2A02CE2658234F01D7BA4B10B6542C6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 0E24
Signing time: Fri 15 May 2026 05:01:27 +0000
Manifest this update: Fri 15 May 2026 05:01:27 +0000
Manifest next update: Sat 16 May 2026 05:01:27 +0000
Files and hashes: 1: C9VfmyBoyBG--3Zr3s8ERPvb0L4.roa (hash: AyN3qqD/8tiCfn+7UUC8E6XJPPe6XPYGtMnnz4+mJrI=)
2: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: DPrVA+D9bItu7o176KX/oE3eju8qDCC2c5lc9ne4GsU=)
3: gnrpn7YumTfm3sZV07Z4M4h7UKE.asa (hash: RP6nKvtvBYTlAn9huMeoEhELwop/otfq7uqLtTZTFxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:ce:26:58:23:4f:01:d7:ba:4b:10:b6:54:2c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: May 15 05:01:27 2026 GMT
Not After : May 16 05:01:27 2026 GMT
Subject: CN=00946443ea589fa2f7b39e3d4db51d6e9c0685e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fa:c2:11:2e:30:70:38:7f:eb:7b:02:06:4d:
8f:43:ec:40:57:cf:ed:ce:a6:ad:b7:32:cf:9c:ac:
ef:87:be:5f:d8:d7:d8:42:8f:98:e4:6b:fb:69:0e:
8e:fb:0a:ad:7f:d3:f4:bb:c6:21:fb:15:6f:f3:12:
8c:0d:79:5b:7f:7d:d2:38:f4:98:71:9f:bc:c3:de:
1a:ca:2f:a2:5f:04:58:07:8f:c6:6e:3e:05:4e:de:
82:91:a8:cf:ca:b5:79:34:7e:51:37:d6:b0:49:1f:
f1:06:02:c0:61:bf:06:56:50:d8:45:e0:7e:1b:24:
7a:5b:ab:dc:44:60:f7:62:5f:63:0f:39:5d:28:1c:
8f:5f:98:30:8c:2a:a9:ac:ae:b1:1f:84:3f:d4:85:
bb:66:d6:f6:21:ce:9c:54:27:18:33:8a:4a:e7:fa:
6e:58:47:69:83:2b:8c:6e:f2:0a:50:54:87:e9:50:
73:b9:7f:2d:79:57:86:1f:ee:2b:2b:86:73:b0:10:
f6:1d:ee:61:48:09:c7:cb:d4:9f:7c:24:c8:0c:47:
1c:a9:71:74:dc:47:e9:a2:67:ea:fc:2c:c0:94:95:
92:f5:9e:9a:e5:f7:7b:85:ae:ed:f7:da:eb:6f:ec:
bb:b8:3d:61:93:f3:b8:a8:74:86:2c:de:49:eb:02:
bd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:94:64:43:EA:58:9F:A2:F7:B3:9E:3D:4D:B5:1D:6E:9C:06:85:E2
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:79:31:29:e3:f7:6b:15:54:08:4d:92:b9:b0:13:6d:39:26:
0b:16:03:f7:18:1c:e9:5d:8a:2a:b5:de:76:28:8d:5a:dd:8b:
89:8e:c9:21:66:2b:6d:0a:bf:7f:fd:e3:24:d2:c1:bb:9e:7c:
b9:68:5a:21:9d:00:72:f2:16:21:55:38:c3:93:81:cd:b2:2f:
0b:2e:53:29:78:ce:15:58:95:4f:84:7a:e7:89:b9:8b:3a:3c:
fd:12:f8:24:7d:72:a3:65:bc:0a:dd:45:fb:a4:a6:94:7b:ea:
14:8b:7f:6a:8a:93:5c:cf:3f:08:e3:d5:c7:e7:45:36:14:c7:
dc:90:ac:d4:56:fd:58:89:39:ca:47:21:81:39:2e:3a:85:54:
95:41:26:36:6f:39:e2:d4:6c:01:7c:67:bf:c7:62:be:94:49:
0d:a0:42:3b:31:27:ef:c3:fe:4e:af:51:13:df:e9:72:83:50:
76:32:5d:da:73:26:41:ec:68:ca:2a:d9:6f:14:76:18:49:dd:
54:51:17:a5:ea:a6:39:4f:48:aa:b9:64:57:51:7e:db:39:0a:
67:d1:c3:3b:31:92:c6:fb:b7:6e:24:c0:b3:fc:bf:73:18:76:
26:5f:6b:d3:54:7d:ca:1c:ea:0d:8c:9d:f4:f9:2b:6c:54:d4:
b5:a0:ef:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:58:09 2026 by rpki-client