Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: WG0s/MaMw1ep/yNvRIeiI5cDcYX/DvFbXwPRs2jpFw8=
Subject key identifier: 61:31:62:90:64:C9:C5:E6:C3:22:6A:20:F8:DE:D4:13:B9:F2:4E:50
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 019D39782C9F4F4AF73B9A3FE120E76BA325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 0DA7
Signing time: Sun 29 Mar 2026 12:01:10 +0000
Manifest this update: Sun 29 Mar 2026 12:01:10 +0000
Manifest next update: Mon 30 Mar 2026 12:01:10 +0000
Files and hashes: 1: C9VfmyBoyBG--3Zr3s8ERPvb0L4.roa (hash: AyN3qqD/8tiCfn+7UUC8E6XJPPe6XPYGtMnnz4+mJrI=)
2: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: S8IUR4+tvswDuLSgzgk0d/vV+MAIF2eWniStHXsK0Cs=)
3: piQLCnB2P_Ziu_cu-vigeTnpkCU.asa (hash: cn2oaHr5CFE2Bng3VhPMgV26fdtMuwLaMTiwxHB9DSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:2c:9f:4f:4a:f7:3b:9a:3f:e1:20:e7:6b:a3:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Mar 29 12:01:10 2026 GMT
Not After : Mar 30 12:01:10 2026 GMT
Subject: CN=6131629064c9c5e6c3226a20f8ded413b9f24e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8b:e1:99:7b:bd:b2:00:89:82:dd:73:a7:ab:
ac:2d:d5:2b:44:84:b7:47:10:42:5e:51:00:5d:cb:
b7:ab:68:c2:1a:77:c1:96:2b:84:be:c4:42:52:f7:
64:33:56:72:25:5c:ae:48:10:db:ba:c9:9d:44:ba:
90:29:bb:b6:b1:7c:bb:4d:6c:88:39:65:d5:23:c0:
83:43:4a:25:7f:60:bc:e3:48:58:64:0c:1b:85:3f:
99:71:6e:80:89:d0:4d:3b:71:f9:d8:4c:4a:48:6a:
4d:a6:02:a6:11:2a:9d:95:22:a7:47:f1:7c:1a:90:
e2:ea:b5:09:8d:85:94:a4:e6:33:e1:39:7d:57:68:
0d:f5:fa:d3:29:62:dc:df:76:c6:1f:a1:a5:20:34:
5b:45:9c:76:b4:eb:fb:55:47:f2:b1:fe:fc:6a:54:
58:2e:fc:10:83:eb:c4:52:d1:09:df:7c:93:aa:4f:
b7:4f:29:fa:6e:e2:61:5c:79:07:75:d5:3f:e6:40:
0c:5d:ba:4e:69:0a:3c:08:36:b1:21:d1:f6:c9:56:
09:37:7b:4d:e3:c0:ee:5b:40:a2:ea:18:16:f0:58:
ba:40:6b:58:b2:bc:e1:db:59:e8:17:0e:59:68:f5:
3f:4f:2e:45:b5:fa:78:46:3f:00:e1:a3:ba:21:37:
df:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:31:62:90:64:C9:C5:E6:C3:22:6A:20:F8:DE:D4:13:B9:F2:4E:50
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:42:09:1f:4d:02:00:c3:80:3b:85:2f:87:f3:48:9c:92:4d:
6d:a3:4e:76:ae:19:2f:e6:9c:33:8b:f0:de:17:f0:59:34:ca:
d8:39:bb:ee:0d:4f:6b:89:9d:86:d1:bb:22:a6:d6:4c:2c:4c:
f1:fa:3e:b1:df:d3:cc:90:82:48:8f:d4:aa:00:dd:af:5b:b4:
d5:48:e7:c7:fc:d9:8b:30:eb:3b:39:0e:d4:bc:eb:62:17:81:
cc:09:61:a2:4e:2f:76:b5:98:b1:fc:ca:8c:0f:ea:9c:88:9e:
1b:87:0d:86:6c:8b:f1:14:7b:29:64:72:74:3d:8e:65:af:6a:
9d:9f:4f:f2:5d:45:bd:e1:be:1b:fd:54:81:3d:62:c5:81:cd:
1d:46:40:10:06:92:78:09:cc:64:26:45:76:3f:d0:c5:dc:6b:
cd:ff:27:19:79:18:64:70:ba:dd:93:00:5d:dc:fe:31:bc:93:
ad:4f:74:8c:a2:f5:25:07:87:46:ee:56:2e:67:02:97:cb:9f:
0a:f0:85:d1:38:2e:54:b1:0b:bb:d8:60:86:df:44:24:55:4c:
b7:10:e4:03:77:1c:6c:6a:d8:28:f8:20:e3:fe:ee:b4:fb:5d:
2f:ad:5f:71:90:5d:a0:95:d4:be:0d:13:b4:e0:78:74:88:e6:
e4:88:2c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:13 2026 by rpki-client