Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: aFUcTNb0tF5wHfjo50uJ/45VH3rytJ23OvsLKSP3hRw=
Subject key identifier: A4:1F:3B:4B:01:8A:14:2A:C1:F3:41:2D:89:24:AF:48:65:DF:15:5B
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 019EDB409DE5D6690930F3504D664C393E67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 0A98
Signing time: Thu 18 Jun 2026 15:01:45 +0000
Manifest this update: Thu 18 Jun 2026 15:01:45 +0000
Manifest next update: Fri 19 Jun 2026 15:01:45 +0000
Files and hashes: 1: Kch5YnfnliI8NHiCA07xVEbQzV4.roa (hash: 6jE9VEbDYjIrbBsLXEa9CMfNyqfSxGZFUWK682Q2o9I=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: AH1l4U/GPFuOwaD9Utb9wYPd3c6YDp6LzEFLBB1AHnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:db:40:9d:e5:d6:69:09:30:f3:50:4d:66:4c:39:3e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Jun 18 15:01:45 2026 GMT
Not After : Jun 19 15:01:45 2026 GMT
Subject: CN=a41f3b4b018a142ac1f3412d8924af4865df155b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7c:a6:c5:db:9b:de:cb:43:cc:8e:ff:a1:21:
d6:ed:5c:28:42:a8:ab:d9:93:3c:8b:2c:f0:46:fa:
3f:f7:fe:cb:79:86:83:ec:ee:d2:d2:a1:0d:f7:83:
17:0e:98:97:e6:7b:fd:04:7a:e1:de:18:b6:93:a8:
07:c7:01:23:09:11:48:54:de:4f:f6:f3:59:2f:26:
6b:13:8c:d4:f1:82:37:a6:d2:c2:03:9a:5c:63:f6:
dd:90:f5:f3:ce:a0:e8:19:d0:88:46:bb:70:4f:3a:
17:34:38:3f:de:ed:9e:58:93:7a:7b:d3:f5:e7:2b:
93:64:f2:24:fb:da:f3:f7:d2:a1:c0:7c:f3:7c:fb:
0f:b5:38:56:ca:77:57:9a:8c:27:72:ae:0b:19:48:
2c:4a:bb:6f:64:7f:fb:c3:35:91:4f:88:d4:37:21:
8f:93:21:8a:7d:c7:31:d8:a9:a3:4b:53:d8:6b:ce:
27:43:fb:67:92:a4:d4:f2:bb:36:a4:2f:f7:91:79:
4a:5d:1a:3f:23:b8:96:d1:58:d5:8c:b4:d6:d0:d8:
f4:fe:9c:b3:57:b7:b8:ac:13:27:c6:5c:42:8e:91:
93:96:26:a2:2a:ec:af:5b:be:13:c6:8e:03:88:d7:
af:f3:41:d3:8b:0a:98:ee:aa:74:17:69:cd:19:0d:
09:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1F:3B:4B:01:8A:14:2A:C1:F3:41:2D:89:24:AF:48:65:DF:15:5B
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:19:ee:af:af:99:7c:18:cf:34:42:5b:5c:bc:18:30:22:a4:
eb:65:5f:63:e2:a3:dc:59:24:07:af:ac:96:ca:2d:d4:72:00:
c8:3d:33:64:c8:d4:df:3b:5b:ab:9d:40:fc:dc:8d:59:bb:77:
96:1e:33:92:ed:ac:25:16:4d:f0:30:90:37:65:46:68:cb:21:
d4:3f:d3:68:d5:59:46:5f:35:9c:fb:9a:40:c4:a1:ee:f4:e2:
28:3c:41:4e:94:a4:f1:a2:25:91:b2:5f:d0:4e:69:18:8b:d4:
dc:42:19:84:e4:74:64:46:5b:bd:74:52:d1:78:be:8f:f1:79:
f7:44:8e:aa:b2:23:32:54:13:97:4e:2b:fc:b4:d6:44:95:d1:
7f:4c:f5:5e:71:db:35:22:f1:d9:3c:2c:ad:6a:77:60:2a:8b:
0e:43:dc:65:db:92:68:9b:66:28:69:9d:2e:a5:39:45:00:d1:
2b:44:b7:31:c2:48:de:b6:20:17:07:4b:94:d7:f8:7b:f6:a0:
ec:ed:e2:17:15:e4:f3:83:9d:be:a9:d0:4f:3f:b7:e7:58:f4:
a6:a1:d4:d0:83:73:ef:e0:75:93:58:0a:07:17:5e:db:dd:48:
f5:16:2e:f1:b9:8e:2f:bd:ce:f6:15:0c:ac:0b:34:e5:b2:c6:
86:62:dd:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 18 19:25:32 2026 by rpki-client