Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: +DG6k/gLgzOR7puS1ZZB5JvX5naOaP/IBrzzlXLHBtA=
Subject key identifier: 94:32:58:D2:F0:D8:09:C1:5B:14:6D:E0:3E:F3:D0:70:84:85:E5:7F
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 019DE7EC009D1F101F35227A94F637FE9069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 0A1A
Signing time: Sat 02 May 2026 09:01:36 +0000
Manifest this update: Sat 02 May 2026 09:01:36 +0000
Manifest next update: Sun 03 May 2026 09:01:36 +0000
Files and hashes: 1: Kch5YnfnliI8NHiCA07xVEbQzV4.roa (hash: 6jE9VEbDYjIrbBsLXEa9CMfNyqfSxGZFUWK682Q2o9I=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: fdAD9pwOdxzN6tNKFKH6PdZC4M5vEqfzDf7nMGZPU8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 May 2026 09:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e7:ec:00:9d:1f:10:1f:35:22:7a:94:f6:37:fe:90:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: May 2 09:01:36 2026 GMT
Not After : May 3 09:01:36 2026 GMT
Subject: CN=943258d2f0d809c15b146de03ef3d0708485e57f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a8:ca:95:c3:c0:bb:c2:c9:8b:aa:b1:ed:76:
2f:81:ee:f5:3f:78:26:6c:2c:42:f0:4b:aa:f3:14:
a1:99:e3:54:bb:96:a0:66:40:cd:45:6e:16:6f:d9:
27:9d:48:e0:1a:04:6d:06:8f:e7:c1:da:38:ee:63:
00:d7:17:7e:43:fb:95:5b:f3:e2:31:4f:d6:0e:14:
6b:29:6c:07:36:38:4e:31:67:d3:0f:33:de:70:14:
02:13:ec:2e:0a:96:c9:ab:0c:bb:fd:bb:68:89:90:
1b:41:e9:f7:0c:d8:6c:6b:b4:5d:9b:16:e3:a3:9e:
43:e0:7e:18:1f:67:ca:a9:5d:6f:4e:b9:19:83:e1:
e7:2b:5a:26:df:9b:2f:30:75:7d:6a:e2:77:8f:09:
64:7e:88:df:f5:b2:4d:17:cd:6f:dd:5e:6f:4a:07:
68:aa:4e:eb:25:ac:95:7b:98:bc:a3:97:ea:81:ad:
65:9b:c3:da:21:60:33:49:61:31:75:7b:57:77:61:
06:dc:af:31:83:33:c1:33:43:2d:ee:f3:90:4c:f7:
99:bc:ba:db:b0:09:f2:e6:28:a4:8a:bf:60:1f:01:
54:3e:71:e4:e7:61:19:2e:54:d2:0a:ff:d9:f9:c3:
ab:38:cc:99:4f:1a:aa:8a:28:23:93:c4:43:ac:e3:
4d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:32:58:D2:F0:D8:09:C1:5B:14:6D:E0:3E:F3:D0:70:84:85:E5:7F
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c3:f9:90:05:d2:47:38:88:56:6c:78:f2:50:a3:5f:e3:bd:
13:0a:a7:ec:33:46:30:f3:d1:a5:bc:da:01:70:52:18:38:9f:
00:a4:2f:b4:88:2d:4f:44:00:94:c3:b2:86:26:18:4b:b8:44:
41:49:44:0e:79:93:e6:0c:74:a7:4e:04:e7:3f:95:bf:cb:fe:
cc:1e:03:e7:21:d3:22:91:10:34:30:4c:db:37:2c:27:9a:85:
82:68:8d:ef:9e:5c:66:c8:05:21:d3:a5:ed:a9:15:60:04:34:
74:f0:ab:7e:d8:ed:ca:ae:40:b0:8f:c9:ac:c6:af:1e:13:87:
f8:bc:15:db:66:7d:94:34:1a:61:6d:28:4f:6e:c0:6f:76:e8:
0e:db:2f:01:be:69:4a:dc:ca:ad:6c:bc:3f:60:d4:99:29:e7:
7a:2c:24:ed:db:53:52:e5:bc:01:5c:7a:b1:f7:39:1e:70:49:
7d:da:87:23:ef:37:bb:11:ba:88:97:7b:52:1c:69:1c:0e:09:
dc:f9:48:36:23:b3:3c:91:5c:e4:6d:c9:42:40:62:15:59:95:
b8:a2:de:c8:f2:2e:26:e3:d7:90:61:22:a2:48:4d:ef:9d:e2:
39:85:e4:9d:cc:65:08:13:b8:30:e0:07:e5:0b:7c:43:61:40:
ae:e2:65:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 2 20:16:27 2026 by rpki-client