Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
File: POsgUJhzLLkIgjBF79XXQCUMayc.mft (raw, json)
Hash identifier: 9Xia1v30jmhlwWFLy/MC7o4/s43/tPlBZhzKgGCM+QI=
Subject key identifier: F8:53:83:07:C2:84:88:4C:28:6A:F9:01:6B:EA:02:6A:4E:09:8D:8E
Authority key identifier: 3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
Certificate issuer: /CN=3ceb205098732cb908823045efd5d740250c6b27
Certificate serial: 019D39781412CAF4B44CC6787D6FE658F8EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 12:01:03 +0000
Manifest this update: Sun 29 Mar 2026 12:01:03 +0000
Manifest next update: Mon 30 Mar 2026 12:01:03 +0000
Files and hashes: 1: POsgUJhzLLkIgjBF79XXQCUMayc.crl (hash: +1eoRmLQPxFhlf0gTnD0BHEqaaXXeaFI8tNA8i8+1A4=)
2: pp4dxt_v1A7idhETx472Fe15Gfk.roa (hash: we1iOucBiqHe+rmZf6gCAUUM5mZ0MLpY0KQ1hHxgDkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:14:12:ca:f4:b4:4c:c6:78:7d:6f:e6:58:f8:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ceb205098732cb908823045efd5d740250c6b27
Validity
Not Before: Mar 29 12:01:03 2026 GMT
Not After : Mar 30 12:01:03 2026 GMT
Subject: CN=f8538307c284884c286af9016bea026a4e098d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ed:c6:f3:53:e7:25:62:07:88:02:8f:73:79:
9b:fc:22:82:c3:d8:ad:83:a0:b6:35:37:26:e4:8c:
0c:66:ff:45:8e:f7:a4:ef:8a:a1:ef:85:d8:c5:d1:
cf:78:de:bf:2d:a7:07:8d:9f:d7:33:98:f6:66:fa:
12:c7:a3:31:28:95:d4:d9:9a:82:4f:be:5b:bd:72:
5b:e7:4e:d5:a0:d6:d5:4d:0b:c0:c2:c3:b5:b5:00:
5b:14:f4:d2:aa:60:ba:9d:11:c8:95:3e:e8:9d:a3:
7b:d0:28:19:3f:bf:e4:7b:4d:4c:f8:75:dc:bc:8c:
0e:32:2e:00:32:47:70:f3:e7:ec:3b:39:a4:d1:2f:
fd:5a:02:03:bd:3f:0f:01:b1:ad:b6:21:90:de:93:
8c:69:e7:97:82:a6:bd:6f:26:f3:fa:a5:16:6f:90:
30:89:92:b4:3d:e2:bc:31:3b:95:62:aa:d3:15:db:
81:dd:ad:96:93:48:c0:a1:19:25:ad:4f:ac:c4:56:
fc:1d:9b:87:66:1b:d4:1a:e0:2d:e6:06:fd:b6:51:
d7:45:59:59:f9:2c:35:a6:35:88:e7:fc:40:95:1c:
d5:7d:4e:ab:83:27:ab:46:68:d3:84:f7:d0:90:64:
2f:72:fc:d5:ea:c9:00:17:ac:d8:51:69:38:9f:0a:
f2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:53:83:07:C2:84:88:4C:28:6A:F9:01:6B:EA:02:6A:4E:09:8D:8E
X509v3 Authority Key Identifier:
keyid:3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ee:b7:84:d0:17:9e:50:5d:0d:f2:a2:4d:bb:68:5d:d0:12:
96:21:77:8e:96:5a:ca:b5:c0:05:be:b8:e8:16:9a:38:af:41:
9f:56:08:e1:b7:b4:ac:a1:5d:30:fb:c6:7b:a7:e1:cf:2d:18:
b9:60:47:fa:c6:0a:3c:4e:57:7c:87:e3:65:49:50:b9:c9:fc:
53:04:91:9d:2c:09:e8:4b:b4:47:d9:9b:e5:87:83:9b:a7:39:
a3:fd:8e:86:8b:66:d4:6a:02:a6:66:ea:88:9b:d5:f2:3f:06:
83:b6:16:8e:55:8f:cc:29:d8:e5:84:09:d7:bb:3c:cd:99:83:
69:d2:85:70:f0:11:37:1d:55:af:01:04:00:bf:1d:cd:0f:dc:
4f:50:89:c0:c8:3c:0b:28:45:ff:f7:75:72:92:e1:90:74:5e:
9f:44:82:8a:cb:1c:12:61:ce:b7:d8:79:c8:6c:b2:f9:2d:80:
c9:26:6d:42:10:23:24:c4:0e:0b:db:fc:ed:a3:e1:ee:f4:1e:
5d:18:b2:9c:9b:1c:95:0d:9a:6e:3c:3d:c7:83:2a:af:ac:48:
03:47:f6:13:c5:07:f3:e9:06:d0:b9:54:ef:9f:89:dd:1e:4e:
60:26:4e:4f:74:85:f2:33:b2:40:96:85:eb:48:0f:85:7d:8a:
14:f8:7c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:13 2026 by rpki-client