Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
File: pavEOvztcvuSd4covuVxxnj1OFM.mft (raw, json)
Hash identifier: wlA/kRgWY8qTJT69a/CdcTIvAI9q4nNz1NNDvyuw2xA=
Subject key identifier: E1:98:72:05:24:67:E8:B7:47:C6:2E:BA:88:BF:AF:89:EF:93:88:C6
Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853
Certificate serial: 019EB6FC149F9CF16D96E81A7DA51C83861E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 14:00:34 +0000
Manifest this update: Thu 11 Jun 2026 14:00:34 +0000
Manifest next update: Fri 12 Jun 2026 14:00:34 +0000
Files and hashes: 1: 7lnc40Qf7cmKBKbjZfYqwpwmGoI.roa (hash: BeI1VtCjRkNwuAsQq6REw2kbuVRCtpMkqUU7iZWA1og=)
2: BGZv9D_VhejCl-jfPTnDgqEd_C8.roa (hash: 24tOC1DrpPlHEZKfZuWIAXFtAWXcsMjorM9au3Z+HuM=)
3: pavEOvztcvuSd4covuVxxnj1OFM.crl (hash: hWLyQip2qwhbjm1KIhJk3AmcEVZepV9fld/bqdQ3FGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fc:14:9f:9c:f1:6d:96:e8:1a:7d:a5:1c:83:86:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5abc43afced72fb92778728bee571c678f53853
Validity
Not Before: Jun 11 14:00:34 2026 GMT
Not After : Jun 12 14:00:34 2026 GMT
Subject: CN=e19872052467e8b747c62eba88bfaf89ef9388c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:c2:e0:88:27:b2:08:96:86:33:3a:9d:89:
c9:f7:a8:8f:23:9a:16:2e:1e:4b:6a:72:38:85:38:
f6:8c:bb:12:9a:16:29:28:97:d6:f4:dc:41:59:1e:
18:02:13:57:b2:e9:a4:fd:cc:4b:1e:f1:a2:26:a1:
cb:40:1d:14:48:e7:b1:ce:40:c0:f3:fd:85:5a:df:
7c:be:25:46:62:84:6b:0b:d3:cf:e2:77:76:2b:ea:
70:39:07:8a:c9:41:a4:32:c7:20:08:c0:aa:fb:b4:
da:f1:ba:b0:6f:46:2a:05:6b:35:38:3e:12:8f:27:
75:10:c9:05:1c:c7:06:e1:47:d0:b5:dd:9e:36:e3:
20:3f:ef:ec:e9:1b:1e:23:ed:d4:34:02:c4:3c:af:
15:73:43:13:9d:7b:f2:71:7e:9a:d9:e6:ce:63:98:
db:4d:ad:f9:42:f9:01:84:bc:05:fe:e5:15:b4:4e:
ec:96:5c:bf:f5:22:03:7d:fd:c1:5e:e2:67:e8:68:
99:b2:0a:95:96:59:90:f7:23:d1:50:ed:7e:72:d3:
2c:8d:51:e9:78:e5:0d:ef:a8:a7:14:ae:c8:23:41:
14:df:29:89:56:3e:64:e0:f5:b7:de:44:d1:ec:d5:
d5:f4:61:10:33:be:f3:ba:ef:ad:8b:46:be:c6:1c:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:98:72:05:24:67:E8:B7:47:C6:2E:BA:88:BF:AF:89:EF:93:88:C6
X509v3 Authority Key Identifier:
keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e4:72:10:a3:35:f5:8b:33:2d:e4:a0:09:d0:82:b6:ff:c3:d5:
03:0d:a1:e5:fa:07:db:51:bb:fe:bb:6c:8e:e3:a2:6b:8a:47:
df:84:df:4b:b5:e1:42:c2:c7:3e:1b:ac:a8:b8:0c:de:1e:50:
ca:f7:a5:24:d9:0b:df:c5:e5:f7:4e:5d:df:1f:65:f8:5d:f6:
67:d4:a2:b7:fe:44:c0:3f:da:47:4a:ff:4e:4d:2f:19:89:b4:
9d:f9:7b:e7:56:1c:8e:10:2b:fa:07:33:c5:08:3b:c4:11:39:
75:1b:98:7b:55:d5:9e:cf:b5:3d:d6:36:33:bd:e4:fc:4c:bb:
45:8f:86:d5:3f:32:a1:94:fd:bd:e0:dd:f3:d9:2e:e2:5f:53:
e8:15:c8:a7:a1:18:66:98:46:b9:8c:b2:35:7f:63:82:32:86:
a2:6d:75:f1:60:2e:1a:7b:ce:18:2a:c8:66:0d:0f:83:cf:1b:
c0:02:2d:e3:ef:35:2d:e6:0e:79:59:f2:a5:63:44:3c:e4:b0:
1d:4b:7f:45:1d:29:2e:1f:3b:95:2e:a7:6d:25:9c:48:47:7e:
cc:08:58:52:8f:0d:4e:f8:d2:5e:95:1d:3f:fa:34:82:2e:b0:
74:28:15:32:5d:c8:7b:f4:a5:ca:09:e5:fa:3c:69:c6:df:88:
24:d9:e4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:56:21 2026 by rpki-client