Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: jfZySmjqyVgnYq7PVTdK06/QA6aKiEV7mIHDLVz4CW8=
Subject key identifier: 8F:D0:04:AF:F4:A2:48:90:4A:B4:DB:9A:2A:91:75:F1:D7:03:63:76
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 019CFA622D7CBB512691F35D47EE5BDC396A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 099F
Signing time: Tue 17 Mar 2026 06:01:03 +0000
Manifest this update: Tue 17 Mar 2026 06:01:03 +0000
Manifest next update: Wed 18 Mar 2026 06:01:03 +0000
Files and hashes: 1: Kch5YnfnliI8NHiCA07xVEbQzV4.roa (hash: 6jE9VEbDYjIrbBsLXEa9CMfNyqfSxGZFUWK682Q2o9I=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: ij0/LrhJr/NVYXQ3+MdbLk/zuXo/KR85Wc0lrr1WnKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Mar 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:fa:62:2d:7c:bb:51:26:91:f3:5d:47:ee:5b:dc:39:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Mar 17 06:01:03 2026 GMT
Not After : Mar 18 06:01:03 2026 GMT
Subject: CN=8fd004aff4a248904ab4db9a2a9175f1d7036376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:84:01:93:76:d3:5e:1b:e7:11:ab:20:20:
4a:db:04:55:56:99:b3:3c:12:a0:1a:fd:1e:d4:d7:
aa:a8:24:9b:82:2b:54:d5:38:38:bb:6f:ee:8d:7c:
6d:2e:bc:ca:6e:0f:f3:b2:10:62:23:f5:2e:5c:92:
3a:8f:b6:d7:39:25:a8:b7:9c:86:42:e5:c4:59:25:
9a:e7:6d:dc:7d:5c:bd:5a:07:28:7f:f7:ad:23:95:
57:e4:64:63:48:fd:5c:e8:57:ad:4a:70:8f:8d:0f:
f9:42:08:a7:b0:d8:80:13:d0:22:d2:5a:5b:95:76:
83:1a:7d:9c:e7:8c:de:05:fe:9b:99:aa:d2:94:21:
2f:bb:04:dc:ba:f8:29:c7:05:5b:d9:bb:9c:40:65:
f4:82:61:2c:69:be:7f:95:53:fc:b7:65:3f:9d:58:
1a:a0:54:06:00:6d:87:a7:1f:f8:06:0e:43:34:c7:
fa:48:77:4c:5f:4b:ae:d8:4e:f6:83:ee:10:99:b4:
c4:d8:f9:18:ff:dd:c4:13:a2:c3:07:d2:6a:c9:4c:
91:8d:cd:67:04:6a:55:68:fe:63:5e:5a:d1:2a:f3:
b8:5b:46:5f:07:83:e9:69:60:77:81:54:e9:28:ea:
42:b6:fc:0c:f5:5e:5d:96:ce:10:61:d3:79:0a:04:
0c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D0:04:AF:F4:A2:48:90:4A:B4:DB:9A:2A:91:75:F1:D7:03:63:76
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:00:eb:41:6a:71:26:1f:07:5f:5f:9a:c1:c8:bb:fb:af:f0:
22:b9:59:3b:cc:7d:5a:7c:ca:5b:a1:e6:73:c9:a3:05:4e:fb:
85:58:fd:cd:15:aa:2d:64:a7:99:95:27:cf:80:2b:29:e3:c9:
ec:76:ce:9c:15:5f:fd:79:e9:37:3d:fd:80:26:a6:e9:7e:ac:
53:78:bc:8c:e0:d3:ba:dd:91:d2:eb:ec:a6:75:f7:b0:54:49:
f0:19:06:47:60:49:84:0b:04:4a:a7:d1:9b:bb:b6:89:cf:a2:
1f:1d:00:c7:2b:78:ba:87:c0:79:63:ce:1a:a5:d2:23:58:6a:
10:9d:2d:d8:db:3d:b5:07:2c:34:79:66:6a:25:84:9b:80:ad:
57:eb:31:da:1e:28:84:da:85:9b:4f:ad:af:33:3f:62:e2:41:
f1:67:4d:ba:84:d9:fd:9e:eb:66:33:c6:fc:ee:e5:2a:3e:6c:
cf:45:2a:83:eb:47:62:c9:20:e9:9d:bd:86:08:bd:0e:67:11:
87:b0:64:d6:5a:09:22:5d:99:e7:43:78:74:7b:01:7f:5f:a7:
99:dc:40:7b:70:4a:82:43:ad:b5:08:b0:24:29:cd:31:7a:06:
13:2f:b4:7b:70:05:78:d1:05:9c:35:39:63:5b:d8:12:0d:d4:
1c:9d:8a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 12:38:28 2026 by rpki-client