Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
File: pavEOvztcvuSd4covuVxxnj1OFM.mft (raw, json)
Hash identifier: j8kDKgFiSSpZkOrLOomUtT6FdcQ0hvY7gk9FX4RKtCQ=
Subject key identifier: B3:3A:23:06:A9:81:AA:BF:6C:95:B5:76:10:58:DE:61:E9:3F:B8:B4
Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853
Certificate serial: 019CE59167245752E63336A6E5F8B8428A0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
Manifest number: 1866
Signing time: Fri 13 Mar 2026 05:00:37 +0000
Manifest this update: Fri 13 Mar 2026 05:00:37 +0000
Manifest next update: Sat 14 Mar 2026 05:00:37 +0000
Files and hashes: 1: 7lnc40Qf7cmKBKbjZfYqwpwmGoI.roa (hash: BeI1VtCjRkNwuAsQq6REw2kbuVRCtpMkqUU7iZWA1og=)
2: BGZv9D_VhejCl-jfPTnDgqEd_C8.roa (hash: 24tOC1DrpPlHEZKfZuWIAXFtAWXcsMjorM9au3Z+HuM=)
3: pavEOvztcvuSd4covuVxxnj1OFM.crl (hash: jIzGcKw7cSNMQzDqalJz2LeawbOVGVRvC4KRB9doaQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:67:24:57:52:e6:33:36:a6:e5:f8:b8:42:8a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5abc43afced72fb92778728bee571c678f53853
Validity
Not Before: Mar 13 05:00:37 2026 GMT
Not After : Mar 14 05:00:37 2026 GMT
Subject: CN=b33a2306a981aabf6c95b5761058de61e93fb8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:60:bf:38:ba:d3:b5:ea:53:f6:a9:b4:1a:
1a:c9:f0:1f:d0:6a:bd:8c:0f:b2:93:7e:4d:28:1b:
2f:4e:ca:dc:a2:70:88:97:67:d7:c4:39:ff:2e:ca:
b8:0b:eb:64:01:9e:ba:98:fd:07:c9:1b:a8:1e:00:
ca:bc:77:7d:b0:e3:48:2c:81:85:27:5d:39:b3:3a:
98:48:fe:72:68:f1:99:ac:ab:e6:b7:ec:b5:f0:c4:
83:b3:fa:40:8d:3c:55:70:2c:4d:6d:41:3d:f8:3b:
78:7f:d1:4e:0c:a8:de:df:cf:4f:22:bc:99:dd:f6:
85:d6:96:92:f6:0e:ad:de:b6:44:92:75:ad:40:7c:
5e:d1:c6:ff:72:f0:d5:3e:bb:92:fd:fa:cb:87:75:
04:91:70:d1:67:fa:7a:20:8d:0b:a2:5d:4f:5f:fe:
58:17:f6:11:33:53:11:df:71:e7:4f:f4:0d:2e:1e:
2b:2d:4f:ff:87:9b:9f:cb:b5:43:d7:a2:fd:af:73:
69:ea:1e:b9:f2:43:2c:a3:02:cd:71:a9:91:ff:6d:
99:50:3b:7d:4c:50:a6:fd:35:c7:c9:ca:86:37:a7:
18:38:c8:29:3e:f6:8e:4a:86:88:c1:95:54:50:71:
02:ec:9f:4a:18:3f:6c:86:c1:6b:da:3b:e2:18:9c:
d4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3A:23:06:A9:81:AA:BF:6C:95:B5:76:10:58:DE:61:E9:3F:B8:B4
X509v3 Authority Key Identifier:
keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:a9:78:04:ae:b4:86:45:72:5b:aa:6b:8b:8c:2e:34:4c:6a:
d3:65:42:62:4f:23:04:0a:f7:2a:ed:94:0b:e9:b6:3c:cf:22:
36:3c:42:e2:46:ba:bf:0c:e5:fb:0a:be:24:a8:16:07:68:23:
0c:2d:69:13:6d:ae:27:16:58:41:a2:b9:81:2d:00:5e:82:3f:
67:da:35:0e:99:c2:a8:68:92:63:5a:cf:11:97:b4:e9:a1:f3:
1f:f8:f1:0e:d7:db:03:86:e7:a7:11:0d:38:5f:51:a0:ec:b0:
c0:b8:e8:58:06:9f:a1:08:7f:ea:90:c1:b5:c0:9b:b7:c6:b5:
56:13:13:75:5f:dd:85:77:26:57:9e:75:94:de:48:74:98:1b:
a5:f1:9c:0e:fd:21:62:d5:50:6a:1c:e1:82:7a:e5:5a:6e:24:
6a:de:84:5d:45:51:e8:61:f8:67:32:f7:bf:bc:8e:fd:1f:74:
03:bf:5b:34:65:9a:f6:5b:64:8b:16:04:83:cf:83:b5:42:81:
f6:a7:ea:7f:9c:1e:d2:0c:ef:63:01:81:27:de:ea:f8:22:75:
c2:fd:73:1f:31:61:60:b7:13:0f:d7:a8:80:87:44:18:e9:26:
0b:76:2b:cc:53:b2:80:46:d7:ec:d3:ef:96:3b:9a:78:5c:ce:
d1:9e:85:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 10:39:56 2026 by rpki-client