Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
File: pnYhghhEiOf3hxIqcYCZfOjpDUw.mft (raw, json)
Hash identifier: IiMjsD4vcnQnTS583q7a1ietD5SL1CdHuQWCtqTdN/4=
Subject key identifier: C4:71:31:C9:49:A7:8F:A6:58:4B:10:82:EB:BA:CD:FB:46:2A:E6:6D
Authority key identifier: A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
Certificate issuer: /CN=a6762182184488e7f787122a7180997ce8e90d4c
Certificate serial: 019D37C09FF6A24D4CE385383B3896B933C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
Manifest number: 0554
Signing time: Sun 29 Mar 2026 04:01:03 +0000
Manifest this update: Sun 29 Mar 2026 04:01:03 +0000
Manifest next update: Mon 30 Mar 2026 04:01:03 +0000
Files and hashes: 1: VChK6W8_i7KzNeJCYx2BZhWr3Us.roa (hash: W4XLdsDcBYlIZCoLkL1ahtz4JOKN4o+Rhjw4JGtYoSA=)
2: pnYhghhEiOf3hxIqcYCZfOjpDUw.crl (hash: o95IwIrPbSpWqcp1OORGjiCgf+J3oYdS6BiC9TQlopo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:9f:f6:a2:4d:4c:e3:85:38:3b:38:96:b9:33:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6762182184488e7f787122a7180997ce8e90d4c
Validity
Not Before: Mar 29 04:01:03 2026 GMT
Not After : Mar 30 04:01:03 2026 GMT
Subject: CN=c47131c949a78fa6584b1082ebbacdfb462ae66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:71:d6:da:8b:5f:71:2e:2b:24:77:af:f5:39:
57:9c:40:a7:ca:46:bc:23:85:b1:2d:0e:17:e9:f5:
c8:4b:a3:d3:ea:fc:ae:54:39:94:2a:77:4d:ca:6b:
05:ac:2c:aa:26:b2:06:d5:c4:4f:1b:fb:9e:c8:7c:
4b:b8:1d:9a:e9:81:dc:70:ac:72:82:cc:f0:ee:11:
b4:0d:b9:2e:62:9e:1a:aa:ae:b7:24:25:c0:0d:b7:
34:4a:1c:0c:f0:7d:7b:cd:2c:26:f1:e5:06:61:b3:
2e:47:59:58:4f:7f:5f:d2:47:a2:d3:8a:50:e9:08:
14:9a:44:7d:b5:33:27:32:b7:58:61:2d:14:71:c0:
3e:01:8f:92:e0:a9:be:0b:5e:ef:be:05:fe:b6:66:
70:21:50:fb:cf:8a:e7:04:9b:40:e5:d7:c7:1a:02:
d7:1e:c3:ba:24:f9:cd:de:75:6c:32:4b:a8:81:c9:
88:d4:3f:0e:f0:90:90:c4:3a:69:8a:f7:8b:5a:6e:
7b:0b:43:95:5e:92:31:f7:0f:d5:37:a6:66:7a:11:
c6:9d:21:47:36:28:22:22:00:8f:19:1a:92:bc:07:
d0:16:2f:49:f5:92:e1:6b:8f:ca:f4:e1:7a:43:9d:
0b:66:bf:61:42:ff:93:cf:87:56:41:05:46:d0:fe:
9f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:71:31:C9:49:A7:8F:A6:58:4B:10:82:EB:BA:CD:FB:46:2A:E6:6D
X509v3 Authority Key Identifier:
keyid:A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3e:3c:e3:2d:2d:5d:2c:58:fa:70:5a:3c:8f:42:45:51:07:
7e:37:f7:c1:9d:69:6d:28:47:31:dd:dd:a6:0c:f6:1f:3e:0c:
97:ed:a8:fb:99:51:bf:d7:a3:3e:11:51:06:a1:31:a8:d2:9c:
81:02:56:98:fc:d6:8d:9e:80:32:0a:8c:56:a2:e3:3d:af:77:
70:f1:db:a6:72:e2:25:d5:ed:14:ff:e5:b1:1f:be:87:82:b4:
95:94:c8:af:a5:f6:fb:0c:8a:4f:84:da:e1:f4:c3:5a:c0:85:
92:9a:09:92:75:c5:35:a6:aa:fa:e4:de:10:20:b8:39:a1:2e:
2e:ef:f5:16:c0:ad:7a:2b:47:9d:5b:5b:ab:89:1c:05:be:e2:
c7:d0:b5:57:a4:04:fb:28:77:3c:d3:e7:bc:30:5c:0c:72:e3:
d2:c5:55:f2:80:83:84:fd:8e:33:d8:b8:09:99:ad:94:5c:e7:
50:8f:da:9f:da:7f:26:da:65:7c:26:bc:1d:7c:19:c5:58:64:
3c:06:a8:ce:41:1d:45:d7:30:78:94:b2:86:29:06:bc:bd:c2:
59:87:f0:f6:57:d8:54:3c:11:3f:bc:69:69:d3:3d:cd:50:9d:
58:95:bf:8d:52:30:2a:81:ba:88:02:d3:d3:76:6e:78:98:78:
43:2d:04:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:16 2026 by rpki-client