Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: iOMN3RlYNC5yeIqY/eze96+red/+D7dGZLzZ/afNzik=
Subject key identifier: 08:27:8F:5D:9E:BD:FD:F0:EA:FE:3F:E9:38:65:E3:92:53:3E:8E:A0
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 019F11C057E19A30AADF7F2D94A9207944F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 0E9C
Signing time: Mon 29 Jun 2026 05:00:45 +0000
Manifest this update: Mon 29 Jun 2026 05:00:45 +0000
Manifest next update: Tue 30 Jun 2026 05:00:45 +0000
Files and hashes: 1: C9VfmyBoyBG--3Zr3s8ERPvb0L4.roa (hash: AyN3qqD/8tiCfn+7UUC8E6XJPPe6XPYGtMnnz4+mJrI=)
2: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: 8v5/XpM2HcLBV6hWXJ9or+3pOxR0UA9f74pW9n8C52w=)
3: gnrpn7YumTfm3sZV07Z4M4h7UKE.asa (hash: RP6nKvtvBYTlAn9huMeoEhELwop/otfq7uqLtTZTFxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:57:e1:9a:30:aa:df:7f:2d:94:a9:20:79:44:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Jun 29 05:00:45 2026 GMT
Not After : Jun 30 05:00:45 2026 GMT
Subject: CN=08278f5d9ebdfdf0eafe3fe93865e392533e8ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6b:18:c8:8b:76:87:45:03:72:16:68:44:03:
1a:bd:60:03:4b:c1:07:44:b2:e7:61:7a:21:2b:4b:
84:da:81:71:cb:44:70:19:2a:c8:b1:bd:d4:04:83:
39:80:9c:ce:60:7f:fb:21:84:ec:06:09:02:74:7a:
39:c5:b1:e0:97:a1:49:dd:a7:3e:a5:18:fc:df:e3:
3e:f4:66:20:ad:e5:9c:6e:72:0c:18:c0:e6:c1:ae:
46:e2:e6:fa:b2:0f:7e:3b:56:82:1b:7f:58:0d:cd:
f6:ef:bf:9d:88:91:10:96:2b:66:b3:f1:ce:29:12:
c4:49:64:d6:81:07:45:54:a4:c2:3b:22:e0:08:bd:
5d:33:d5:2f:a4:36:ec:eb:49:ad:c9:d5:88:4f:3b:
a0:79:31:58:d4:3b:4c:09:6f:cc:2e:b0:b1:3f:d4:
a5:b4:c9:39:cd:4b:c4:f9:d2:4a:3b:21:ad:da:6e:
e2:16:b2:d0:fb:29:8b:46:98:cb:a2:ed:20:73:78:
0a:6c:8b:7c:ec:4e:7c:4b:e7:3e:1c:fa:4b:f3:01:
e2:84:f5:b7:4c:3f:08:6e:ef:29:de:41:d7:6f:35:
22:e8:53:16:39:75:fa:92:78:b1:d7:08:d1:c9:2f:
cf:c1:49:20:dd:c3:a5:87:07:ce:e9:41:a3:c8:2d:
28:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:27:8F:5D:9E:BD:FD:F0:EA:FE:3F:E9:38:65:E3:92:53:3E:8E:A0
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:ce:cf:ae:f2:8d:3b:4f:bf:92:24:b6:5d:63:15:52:99:df:
79:e9:eb:c1:eb:0d:09:d4:bc:97:7d:a4:ac:21:f5:9f:99:10:
be:93:f5:e9:84:bd:d4:60:80:ed:83:9a:96:fc:6a:c0:f2:c9:
e4:64:c0:cd:39:d1:07:97:9a:1c:6e:3f:2b:31:c8:36:f6:36:
dc:e5:b1:3a:50:fd:de:9b:38:77:2d:e9:63:5b:dd:3f:e0:fd:
05:a7:ff:31:3a:51:a5:3b:b5:8a:05:b2:df:51:ad:69:bc:d8:
19:49:20:25:2e:df:28:f7:72:98:4f:e9:19:05:89:60:a1:10:
8a:05:0b:88:72:ca:79:21:ce:46:f9:ea:26:03:c4:0f:20:8c:
1c:ed:13:a3:18:f7:84:1c:2d:c5:b5:4c:64:c3:45:f5:29:03:
88:7b:61:fd:54:02:b2:ba:89:f4:66:ab:1a:ba:b3:22:69:7d:
61:ac:93:d3:13:f1:59:03:da:94:3b:d9:82:ec:f0:8e:cf:ac:
5c:7a:d6:3b:3d:92:56:8c:ea:37:67:89:37:d6:1a:1b:41:3e:
c0:c0:87:27:b8:24:22:1d:04:6f:08:b8:06:7c:78:4b:f9:89:
25:93:3b:65:6a:cc:3c:f2:bb:35:4b:db:d8:ad:0a:ab:60:eb:
7b:58:34:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:33:55 2026 by rpki-client