Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.mft
File: ph_nf7eOlJzUa5jca7nILIGKOtA.mft (raw, json)
Hash identifier: 5oq9OvfB3z3x1KdrAxTHN6wPH6rrEuDntkFXckIcprc=
Subject key identifier: 95:8D:9E:11:32:71:DF:B9:B4:CC:2A:4C:9D:31:99:1F:CD:1F:F9:34
Authority key identifier: A6:1F:E7:7F:B7:8E:94:9C:D4:6B:98:DC:6B:B9:C8:2C:81:8A:3A:D0
Certificate issuer: /CN=a61fe77fb78e949cd46b98dc6bb9c82c818a3ad0
Certificate serial: 019D3940C46245AF160C34D638E90DCF93B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ph_nf7eOlJzUa5jca7nILIGKOtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.mft
Manifest number: 2B
Signing time: Sun 29 Mar 2026 11:00:39 +0000
Manifest this update: Sun 29 Mar 2026 11:00:39 +0000
Manifest next update: Mon 30 Mar 2026 11:00:39 +0000
Files and hashes: 1: PrBQZObLRS8-7Om1E1-4U8i6lWo.roa (hash: JBCAfiaAJXri8pwh7MhRNEqe9ZCw5YBOEy5ZcQRbRYk=)
2: ph_nf7eOlJzUa5jca7nILIGKOtA.crl (hash: n0a/SFB3mtYO7kU6CRffeeX7EuECz4b2yJ26En5YevI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ph_nf7eOlJzUa5jca7nILIGKOtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:c4:62:45:af:16:0c:34:d6:38:e9:0d:cf:93:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61fe77fb78e949cd46b98dc6bb9c82c818a3ad0
Validity
Not Before: Mar 29 11:00:39 2026 GMT
Not After : Mar 30 11:00:39 2026 GMT
Subject: CN=958d9e113271dfb9b4cc2a4c9d31991fcd1ff934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:66:51:8d:0d:cf:e1:27:68:97:57:4b:8d:ad:
27:27:bf:8f:d6:22:13:65:bc:a7:e2:37:b0:70:fd:
6b:a5:cd:62:4b:02:0a:ba:19:d0:37:01:35:40:9b:
23:1b:91:61:8c:2b:e1:a4:fc:3f:a0:22:fd:79:21:
2c:5a:36:fb:cd:5d:f5:7d:a4:fb:a8:0a:d4:f9:b8:
40:7e:83:3a:01:1b:6f:99:92:c8:e9:39:34:75:95:
22:c3:9f:6b:47:25:f8:29:a1:ed:96:89:d0:93:88:
9d:b3:fa:45:57:1b:c9:bd:7e:34:b5:62:47:99:1a:
ac:8d:4c:05:6f:39:51:0e:bb:45:fc:21:19:b9:38:
1a:ba:9d:2c:3b:8f:49:7b:21:36:d9:d2:a9:91:4e:
28:5e:7c:d3:80:fb:1e:63:aa:55:95:20:18:01:85:
51:43:ef:12:71:a7:21:22:6f:f9:87:e3:a7:69:33:
64:8e:6b:ac:01:5f:2a:84:d9:f9:82:d1:e3:a0:a8:
68:a4:05:4f:7f:5d:f4:ea:a1:0b:1e:a6:f3:51:1b:
01:23:55:73:16:e8:ca:dd:c0:55:1e:53:c3:82:b2:
eb:56:80:55:38:72:5e:50:29:ea:68:e2:44:58:3e:
f9:39:0c:7a:e6:d1:f8:13:87:1b:6a:ac:49:9e:e4:
b0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8D:9E:11:32:71:DF:B9:B4:CC:2A:4C:9D:31:99:1F:CD:1F:F9:34
X509v3 Authority Key Identifier:
keyid:A6:1F:E7:7F:B7:8E:94:9C:D4:6B:98:DC:6B:B9:C8:2C:81:8A:3A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ph_nf7eOlJzUa5jca7nILIGKOtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/674dcc-2b5c-417a-8ef9-544c38317564/1/ph_nf7eOlJzUa5jca7nILIGKOtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:2d:3d:aa:b3:6e:a0:9a:d8:25:e8:a1:85:39:3f:6b:17:9b:
e9:b0:71:1b:37:4d:03:8a:1e:01:c8:67:70:3a:14:cd:0b:bb:
e5:26:62:03:0e:34:b0:e2:3a:f8:0f:29:0d:00:4f:c1:bb:c5:
f2:0f:c2:28:f3:e7:f9:38:ab:58:e5:ae:19:7a:70:b5:fe:16:
71:cb:e9:40:8a:40:2c:5c:db:d5:fd:0b:07:9e:9f:74:e5:b7:
8a:3c:b9:73:ad:26:80:44:7e:e6:54:c4:d7:85:04:ab:02:01:
79:06:9c:e5:2c:66:9a:56:c1:94:a9:50:c7:59:ac:75:4d:e1:
d8:d8:1c:b1:a9:ae:ed:ce:24:12:ee:db:d6:59:1d:a4:7b:5b:
89:92:ac:da:28:7a:6c:04:db:78:ba:e0:f7:36:6b:5d:2a:ef:
dc:5d:07:73:24:1b:74:01:bb:27:dd:ac:bc:93:09:70:58:14:
a9:34:60:05:10:0d:29:87:9a:5d:43:bb:2d:32:05:d1:ee:2c:
ed:59:4c:3a:17:a7:06:5e:ef:fc:e5:23:86:07:34:78:8f:51:
6f:51:d4:62:8c:6a:60:3c:5a:32:a0:19:11:ed:6b:9c:c0:fe:
6b:6c:cd:d3:c1:c2:54:4e:5d:0b:09:08:32:f6:cc:39:69:ed:
46:96:82:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:26 2026 by rpki-client