Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: orx0mX7oUkoG22cmlYouMtHua8sDAthPegwpoJgi3Ho=
Subject key identifier: D3:1B:C6:DB:07:51:89:53:4C:2D:2E:2E:24:7D:C1:2E:F7:17:65:4E
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 019D38D2974B13023A0837FEAE1122C7D46B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 0832
Signing time: Sun 29 Mar 2026 09:00:18 +0000
Manifest this update: Sun 29 Mar 2026 09:00:18 +0000
Manifest next update: Mon 30 Mar 2026 09:00:18 +0000
Files and hashes: 1: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: FylsTctE1M+FHNPh6ag2VO3oT/VF47b1Sbwo3peSbBI=)
2: cLRoM7XLCk4C31zvG0Wgt7yjUMo.roa (hash: u4HrWzSOjheYxRy02gM2rX531WbutVdizyrj+q6Vb4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:97:4b:13:02:3a:08:37:fe:ae:11:22:c7:d4:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Mar 29 09:00:18 2026 GMT
Not After : Mar 30 09:00:18 2026 GMT
Subject: CN=d31bc6db075189534c2d2e2e247dc12ef717654e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c0:92:18:45:b0:4b:03:37:80:25:cc:91:6f:
6a:73:71:87:77:d0:27:a3:45:69:1b:f4:33:63:bd:
f6:e5:aa:c5:e0:d9:16:eb:64:2c:ac:ad:e0:6a:00:
3a:dd:86:6f:91:7d:73:98:e8:64:96:1a:b4:55:93:
27:25:00:b9:6e:50:6b:48:e6:1b:6b:e5:f9:e5:9e:
de:28:04:16:3e:b0:c1:d4:f2:bf:76:e6:95:a4:a7:
55:17:0b:f6:4f:d3:94:38:c6:bf:2f:5f:0d:e6:0d:
72:5e:2e:01:cd:ef:be:96:eb:44:77:7f:90:cb:18:
64:b8:e1:54:72:3e:39:cd:63:13:db:aa:47:9f:57:
0b:22:85:7f:6e:54:41:4a:08:1c:6f:ba:70:3b:e1:
bb:33:05:a0:65:02:22:b3:51:ed:86:43:61:95:d2:
2f:cb:f8:4c:f8:72:96:ec:44:64:66:99:22:ff:e1:
80:32:17:a0:34:7f:b6:21:fd:2c:4b:ed:f5:29:bc:
ba:36:33:25:04:11:bd:b3:dc:e9:2e:0b:00:c6:77:
21:19:84:50:3d:2a:df:10:00:0c:ac:e2:2b:1f:57:
bc:ef:de:5f:ab:85:92:37:54:ef:f9:05:76:3b:05:
f0:ce:81:af:07:35:03:e1:4f:d6:6c:d0:49:fe:e2:
82:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1B:C6:DB:07:51:89:53:4C:2D:2E:2E:24:7D:C1:2E:F7:17:65:4E
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:81:b2:af:da:47:d7:2b:e1:ce:ea:be:08:27:97:3f:a9:3e:
1d:e0:68:11:34:d9:aa:c0:02:d3:1f:e4:fb:b4:bf:16:a7:45:
49:b8:55:b4:1e:b2:96:db:7a:07:45:d4:6e:81:22:62:e6:a3:
e4:8c:74:55:22:7c:b6:1a:41:46:28:92:1f:e3:9d:cc:aa:ac:
8e:b2:cb:f6:17:bd:43:2b:6c:d6:59:2a:75:d8:ed:43:56:34:
e2:e1:63:d7:fa:eb:cc:f2:2b:c1:bc:8e:41:53:1b:53:ed:52:
86:39:b5:12:65:dc:9f:a4:8a:f4:e5:b8:72:4c:62:85:2c:fd:
cc:0d:9d:cc:ce:d9:3f:4d:19:54:b0:e4:e6:0a:a7:71:a2:70:
06:33:cc:c3:b2:c2:01:2f:64:c3:85:d6:30:89:f3:b1:6a:c8:
d6:67:7a:12:50:64:fa:27:59:3e:ba:11:a1:63:ad:bb:4b:fd:
78:e7:95:99:3b:e8:ee:ea:c2:dc:c4:b4:1c:53:ca:d2:8b:0e:
8a:e4:36:2d:54:0b:9b:46:c0:f0:8b:4d:13:66:31:11:fc:a8:
77:1e:b9:3d:49:88:35:12:90:b3:42:ce:78:7d:ed:3f:19:1d:
71:04:19:c1:a3:c5:ca:1a:d1:58:5b:cc:f9:9a:df:1e:d0:6a:
09:80:c7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:17 2026 by rpki-client