Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: tn2nJJor9dpkEk3ySj2qb7WWcMBBv8yapLp67j8jXOA=
Subject key identifier: 27:B8:26:1D:86:D1:D0:9D:D1:C6:87:2F:18:46:3D:10:45:E4:11:A0
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019EB6C560755A40E344A1F814490BABC274
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0AC7
Signing time: Thu 11 Jun 2026 13:00:49 +0000
Manifest this update: Thu 11 Jun 2026 13:00:49 +0000
Manifest next update: Fri 12 Jun 2026 13:00:49 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: WeQCsglJM8bm+/PgSClK+5VUQP5N3KJo/EOsOcES1jY=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c5:60:75:5a:40:e3:44:a1:f8:14:49:0b:ab:c2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Jun 11 13:00:49 2026 GMT
Not After : Jun 12 13:00:49 2026 GMT
Subject: CN=27b8261d86d1d09dd1c6872f18463d1045e411a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ae:53:cc:a6:9b:60:a7:36:7f:4e:a2:4e:9a:
27:b2:e4:97:6a:3a:90:14:4a:05:5a:61:7e:26:7a:
96:e9:34:4e:65:c9:04:39:a0:06:9b:65:a0:40:26:
18:44:79:c0:09:9e:0a:56:99:8b:8c:55:d1:3f:5a:
8d:42:ca:7e:ac:a7:11:ee:6c:02:ff:ee:29:30:a4:
77:a8:8f:3c:6c:ac:df:a7:1c:9c:ab:f0:91:23:b2:
74:0c:1b:e4:67:46:a1:8f:05:08:e9:36:ab:01:58:
d2:af:05:4b:f4:8b:e4:cb:7b:52:a7:03:c8:7f:30:
47:cd:bc:b3:68:5a:16:54:c8:d5:d2:cf:dd:9a:74:
dc:27:a7:9d:f0:d5:23:29:4b:1c:37:82:42:30:52:
f1:c6:ba:c8:ca:63:7e:d6:80:09:85:77:51:7e:2c:
85:29:0a:96:98:40:48:ad:0b:bc:70:79:a1:ac:89:
0c:40:07:44:1b:26:84:75:d8:f3:29:50:40:14:19:
d5:59:f8:29:6a:85:c4:99:ff:ae:4b:6c:54:71:09:
c0:19:93:e8:e3:56:66:c0:46:61:fd:a5:6c:39:ac:
c5:eb:d5:48:9c:0a:b3:0e:d5:14:02:3a:d6:0f:d7:
8b:72:67:3c:3f:50:67:67:b9:67:ac:3a:3f:96:c5:
b0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B8:26:1D:86:D1:D0:9D:D1:C6:87:2F:18:46:3D:10:45:E4:11:A0
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:1d:fe:7f:01:f1:7c:44:0b:ab:de:26:e0:81:b2:b6:f3:0d:
72:06:8e:1a:90:55:e3:3c:61:05:b1:3d:fd:32:03:36:73:d9:
f1:1d:ba:b8:f0:bf:14:81:5f:2d:3c:b8:e6:09:46:92:99:17:
95:c5:ae:cc:12:9c:4a:11:24:ea:1e:b1:9a:29:d9:ee:90:12:
9f:e8:db:e3:f5:72:18:70:cf:df:fb:d3:7b:74:7c:84:28:cf:
8f:77:82:a2:62:e8:8e:d6:47:9f:b0:4e:a9:90:4e:1a:af:28:
56:d4:b5:db:7f:54:c9:a1:5f:40:9a:63:68:9c:5f:2f:4a:df:
55:31:45:36:1e:a5:91:47:c5:43:02:2b:6d:0b:a2:ed:13:26:
ab:27:8b:73:f6:b2:b7:ec:fb:e7:68:03:d9:d5:86:b5:c0:08:
d7:77:bb:35:4b:45:a4:50:65:22:71:f9:2e:15:65:cf:60:26:
13:71:4d:96:14:10:73:38:07:02:7e:c5:05:48:8d:5c:ca:65:
49:0b:5f:94:53:80:94:50:e1:25:c5:35:17:c2:83:5a:4a:c8:
72:ab:8b:78:14:ac:d4:86:03:c1:4e:75:69:cd:e7:cd:5f:88:
7f:c9:b0:3b:8e:07:f4:2c:72:ae:5f:3f:7c:ad:d8:d7:ff:df:
f9:1a:c8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:41:34 2026 by rpki-client