Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
File: P5oSEPUJkiOdOn8uXoATtatJH_8.mft (raw, json)
Hash identifier: nGAEtU6p90E5iYrkHHrBHe/uV/fWKLLh1JXBIv8e4wo=
Subject key identifier: 12:5D:F8:9A:DA:29:50:79:D9:47:79:6C:C9:82:3E:99:D0:42:96:1B
Authority key identifier: 3F:9A:12:10:F5:09:92:23:9D:3A:7F:2E:5E:80:13:B5:AB:49:1F:FF
Certificate issuer: /CN=3f9a1210f50992239d3a7f2e5e8013b5ab491fff
Certificate serial: 019D37C0A8F11C03277EF7D2B3342A0FC506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
Manifest number: 145D
Signing time: Sun 29 Mar 2026 04:01:06 +0000
Manifest this update: Sun 29 Mar 2026 04:01:06 +0000
Manifest next update: Mon 30 Mar 2026 04:01:06 +0000
Files and hashes: 1: P5oSEPUJkiOdOn8uXoATtatJH_8.crl (hash: Rcph6kP4t5ztop26vkGkLu5txhrPuj5wUTrxIxP/ZqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a8:f1:1c:03:27:7e:f7:d2:b3:34:2a:0f:c5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f9a1210f50992239d3a7f2e5e8013b5ab491fff
Validity
Not Before: Mar 29 04:01:06 2026 GMT
Not After : Mar 30 04:01:06 2026 GMT
Subject: CN=125df89ada295079d947796cc9823e99d042961b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:f2:ce:b8:c7:54:69:14:81:17:83:82:a7:
6d:8b:65:f5:30:24:7e:c7:3e:40:e8:8b:8f:d1:55:
1c:3c:9a:2a:f1:bb:0f:6d:d6:81:bd:f8:35:29:97:
d1:c4:f5:a7:fa:9b:96:f5:cb:1a:7e:aa:14:5f:f7:
2b:71:fd:d6:a6:32:15:ba:83:40:f2:8a:b8:0c:78:
35:3d:3a:c5:51:0a:28:a2:98:04:42:63:d4:1c:01:
92:8e:1e:d5:e3:e4:1c:16:ec:bf:d4:08:04:f4:23:
b3:cf:b9:db:36:e0:03:16:30:f5:e1:6a:46:b2:a1:
d1:81:2d:4f:38:c7:43:74:4e:7a:4e:6a:46:f0:d4:
7c:f9:48:9e:c9:58:1f:6d:e0:08:c1:07:25:f9:6d:
59:88:ad:5e:53:f6:15:c8:31:a9:42:bc:0d:60:27:
72:3f:83:ed:d8:6f:e3:58:98:26:19:59:da:fc:b8:
db:fd:a8:76:d2:8d:4b:75:23:6f:70:d7:72:ad:86:
42:94:ee:e7:3f:30:13:95:7f:cc:40:25:a2:e0:33:
74:25:14:1d:76:a7:07:34:32:a0:8a:7b:ea:29:82:
0e:12:28:3b:5d:63:10:58:f8:d9:60:2f:81:3a:7c:
0d:1c:14:d9:55:9e:76:fd:e1:90:36:fe:20:33:96:
bd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5D:F8:9A:DA:29:50:79:D9:47:79:6C:C9:82:3E:99:D0:42:96:1B
X509v3 Authority Key Identifier:
keyid:3F:9A:12:10:F5:09:92:23:9D:3A:7F:2E:5E:80:13:B5:AB:49:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:9d:03:07:19:08:57:cc:f0:f3:e2:76:c2:61:6f:7c:11:ce:
17:49:d9:2c:0a:65:c8:d4:d4:1b:60:f4:d2:87:d9:7c:6a:4a:
a1:ca:41:6e:e4:fd:08:0b:7d:01:13:c0:85:03:cf:33:7b:40:
a1:48:36:e1:93:7f:be:a2:c8:b3:09:88:4a:a0:50:1e:d2:30:
4e:ca:4e:f5:8f:9e:7c:c6:74:30:65:4b:70:12:f4:30:7d:99:
b4:0f:42:fb:09:54:87:c0:5e:1e:96:09:55:61:35:44:f1:3a:
ae:c0:2a:91:12:94:95:03:de:d3:e1:07:25:10:32:ab:60:3b:
98:44:75:59:e3:07:0e:34:6c:4f:15:5b:1c:9d:84:37:54:f5:
cd:7e:cd:32:cd:63:31:b3:1e:52:18:ca:5d:0f:c5:8c:b9:0a:
7c:36:bf:c1:01:f1:49:89:f0:42:fe:b1:23:67:01:ed:bb:3e:
73:c1:4d:99:60:66:16:b2:f2:fb:54:bb:12:89:e3:43:7b:0b:
35:04:a8:cd:f2:52:09:93:ff:7f:16:a3:2c:55:ae:71:bc:29:
a1:94:94:7c:49:61:00:12:3a:43:2f:e0:cd:7e:c4:29:97:1e:
8b:39:a4:be:91:ae:d1:c6:e9:33:95:f9:86:af:d5:3a:4a:66:
5b:c2:40:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:05 2026 by rpki-client