Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json)
Hash identifier: PhbR3UjrwfW2pFBcWZDccJO526BDkKhEgwu6GIWYSdk=
Subject key identifier: 8F:00:81:B2:D9:90:E9:79:9B:E6:C0:32:BD:87:69:14:B7:E8:32:51
Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Certificate serial: 019E7D4420D627A349C99C8EA939D0611F0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
Manifest number: 0EBA
Signing time: Sun 31 May 2026 09:01:17 +0000
Manifest this update: Sun 31 May 2026 09:01:17 +0000
Manifest next update: Mon 01 Jun 2026 09:01:17 +0000
Files and hashes: 1: Z8sIth2fuLtbZU5YZYofujl3N3Q.roa (hash: OuZ+DZI7vPFF2f+5cYLFAwbQ08o0C2E+Uzidod1oA7I=)
2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: VeOXmA7ujoMRq2zfWa/E/LedqA4O2GG9y63ZPDkBWbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 09:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7d:44:20:d6:27:a3:49:c9:9c:8e:a9:39:d0:61:1f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Validity
Not Before: May 31 09:01:17 2026 GMT
Not After : Jun 1 09:01:17 2026 GMT
Subject: CN=8f0081b2d990e9799be6c032bd876914b7e83251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b9:82:0b:f5:e3:a2:e7:0f:d1:d8:c4:65:e3:
31:0d:a2:c6:f2:74:0a:05:bd:d0:5b:97:61:08:d5:
2b:67:47:a1:6f:27:3a:47:69:40:be:91:3e:83:0c:
76:28:2c:99:c4:dc:ed:20:04:b5:ff:7d:2f:94:56:
4a:96:7c:f1:0f:0a:3d:cb:ad:5d:bb:bd:4b:f6:ac:
0e:21:0f:61:4c:f3:71:39:f7:d5:90:52:63:b1:eb:
fa:12:0d:74:bd:02:be:99:42:0b:7b:33:d6:78:9b:
a4:2d:4e:df:4e:01:25:ed:8d:3f:8a:28:a6:53:74:
f5:a4:15:89:e4:10:7e:fe:ab:4f:e6:04:12:a5:04:
d5:95:94:a8:8b:ee:10:2a:8a:ea:e3:f9:47:7a:f7:
b9:45:d9:35:31:a6:fd:8f:07:ee:4d:3c:7c:82:96:
a7:a4:3c:a1:e7:d5:c1:d4:65:3c:9e:c6:be:55:f0:
59:cf:88:22:6e:0b:39:24:81:d5:ce:57:4e:0f:d9:
b2:6e:9e:78:dc:47:ea:f4:97:3d:50:6a:e6:30:5f:
12:0a:c0:1c:0c:01:28:7c:83:14:95:9c:f7:90:bf:
df:e4:bf:54:33:12:8c:3c:fc:1b:a8:fb:1b:cd:db:
e9:d6:20:00:f6:5c:42:79:de:76:07:50:30:1f:eb:
93:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:00:81:B2:D9:90:E9:79:9B:E6:C0:32:BD:87:69:14:B7:E8:32:51
X509v3 Authority Key Identifier:
keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:22:29:44:e7:15:21:2e:18:42:f8:34:fe:40:0b:9c:bc:4a:
c8:85:1c:cb:30:15:30:b9:4d:a7:86:8b:fa:82:3a:23:51:e9:
39:94:85:81:45:d9:8b:33:fc:c2:5a:e9:a3:5b:95:1e:dd:73:
1f:9c:ad:49:d9:38:99:db:e9:d0:4e:c3:aa:d9:f8:ce:38:ac:
fb:80:88:86:bd:32:3a:70:af:7e:b2:10:c9:7e:0e:fd:18:5d:
56:88:11:94:fe:c2:11:b6:37:a4:3a:31:e7:b7:9b:a1:66:10:
cf:37:3f:0b:77:95:0c:86:be:aa:51:be:e7:d7:dd:0a:ba:39:
55:a3:ce:0f:be:f7:04:43:bc:fe:72:bd:88:78:65:a5:c4:a8:
70:e1:2b:64:a4:ba:ee:ea:e4:6c:8e:57:63:69:79:c0:b3:e4:
83:c2:85:e3:76:4b:9d:3e:22:3b:ab:9d:de:20:cb:c7:7d:4c:
ac:6e:bb:5d:7e:08:d7:ce:3d:61:62:83:16:a3:c9:e0:8a:77:
e5:ec:ec:94:8d:97:23:1b:66:70:10:53:43:fc:db:e3:84:b2:
c9:d8:c2:93:98:5d:e0:78:1b:e6:37:58:93:73:59:9b:c5:45:
94:a5:c3:7d:e4:83:cf:29:1c:3f:ac:5d:d5:54:f9:26:de:2f:
2a:b8:63:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 15:29:25 2026 by rpki-client