Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: ugydruChsKsM4+CN6TRyQieyT/+7gcICbyLcTT6xe7o=
Subject key identifier: D9:B2:4A:25:CF:B5:CF:C3:FD:01:B4:BF:EB:12:6D:BC:01:41:31:D1
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019DCD194B27992991EC73EDB9EE496CCC6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0A4E
Signing time: Mon 27 Apr 2026 04:01:20 +0000
Manifest this update: Mon 27 Apr 2026 04:01:20 +0000
Manifest next update: Tue 28 Apr 2026 04:01:20 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: 8K6UGEmicmcuwBMVWvsLc7RsFNoqrfAG9rvuArXC3o0=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:19:4b:27:99:29:91:ec:73:ed:b9:ee:49:6c:cc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Apr 27 04:01:20 2026 GMT
Not After : Apr 28 04:01:20 2026 GMT
Subject: CN=d9b24a25cfb5cfc3fd01b4bfeb126dbc014131d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:1f:8b:10:2c:fa:34:55:81:3a:e7:9a:21:
b9:09:44:13:6c:2f:07:0a:86:d3:48:03:15:c3:4f:
9a:1d:16:38:85:fb:73:e5:f9:5a:37:12:08:7c:b0:
27:22:2c:e3:6f:0f:e4:af:d9:be:bc:7b:fe:ab:c0:
b3:a8:c4:49:3a:28:21:83:d9:dd:47:37:7a:be:75:
e1:83:23:4b:76:07:ab:f7:20:ce:33:14:24:c8:5c:
f6:f4:43:7d:aa:ee:01:19:39:6a:53:66:58:13:6e:
ab:b0:3e:fe:65:de:5d:1c:6a:d0:b5:95:f6:30:e7:
98:f7:ce:c9:61:cf:9b:31:76:28:d6:53:20:91:ee:
a3:1d:39:7c:c7:52:85:e3:f8:03:73:c5:ea:10:79:
34:54:8f:39:b5:37:33:ca:73:20:f7:1a:df:13:1b:
d0:ba:d7:b0:41:16:2b:9c:75:4b:96:4d:d8:eb:d6:
f5:57:c4:66:af:ca:7a:bb:ba:ea:59:19:7a:12:a3:
93:78:f6:d2:35:71:1a:8c:8f:33:7d:37:05:37:dc:
8f:f6:e9:2e:eb:a9:a7:b3:2f:a0:ae:da:27:0b:f8:
e3:9a:9c:ac:6c:4e:a4:d1:03:a9:ca:de:af:67:11:
b1:ba:f1:e8:4d:71:28:cf:ef:01:ff:fb:c9:ee:63:
fe:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B2:4A:25:CF:B5:CF:C3:FD:01:B4:BF:EB:12:6D:BC:01:41:31:D1
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:37:1e:f5:e0:3a:0a:07:00:aa:1e:6c:a8:bf:63:c2:49:20:
1c:cb:2b:1f:1f:24:eb:7f:7f:68:6d:17:7b:19:53:42:54:de:
4c:27:98:9a:22:3f:12:34:3c:b2:bb:c2:d5:0d:1c:f4:dd:71:
2a:2c:65:ab:9a:34:de:7e:91:90:7f:f3:c1:89:00:18:68:2d:
b3:c9:f3:95:04:5a:5f:09:db:4b:6b:cc:74:3f:3c:47:6c:94:
b8:49:fe:95:3b:8a:ee:c1:ba:db:72:6a:56:d0:f1:e0:cc:42:
05:ca:b1:b8:b6:43:30:15:97:c2:8a:52:74:af:ad:34:73:0f:
3b:aa:f1:30:83:75:f9:8e:5b:e4:59:5d:41:91:57:cf:15:78:
04:98:ab:3a:5e:c8:e7:3c:80:02:cb:64:22:9d:7c:3b:3b:d7:
dc:4c:59:2d:ba:ab:85:ea:97:24:1e:17:29:be:c4:7f:11:5d:
35:15:6a:65:d2:1c:c9:21:68:af:d3:58:94:ed:b7:87:17:82:
78:22:b3:13:5f:69:3a:a8:5b:e1:8f:7c:75:d5:e1:98:cb:3c:
ef:f6:4e:a6:dd:87:59:a1:1f:68:b8:c0:4b:58:83:3f:50:f6:
72:91:bf:e4:69:a1:90:2e:cf:d3:c9:01:a1:5d:12:d0:29:20:
3e:2a:db:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:56:26 2026 by rpki-client