Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
File: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft (raw, json)
Hash identifier: 4+uIn41dbpxf2x24PJp2sf0r2i8yAOI2p7GHcsq1PPY=
Subject key identifier: 22:3B:FB:28:90:44:E0:2F:06:7A:38:C0:B6:9E:42:7A:CC:58:9E:70
Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Certificate serial: 019E2C288516772830529CFB704F8509EDD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
Manifest number: 05A1
Signing time: Fri 15 May 2026 15:01:53 +0000
Manifest this update: Fri 15 May 2026 15:01:53 +0000
Manifest next update: Sat 16 May 2026 15:01:53 +0000
Files and hashes: 1: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl (hash: wyJ2x24HP1hzr0GOIPWu85ARgKtphXf6lbVunKhaEhw=)
2: t83QwmnsF94N1e2quVeWFqxv3Q4.roa (hash: S00r80MkvAcmYicBdHFKql/0j/7ix5B+Lwxl0Q6uMXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2c:28:85:16:77:28:30:52:9c:fb:70:4f:85:09:ed:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Validity
Not Before: May 15 15:01:53 2026 GMT
Not After : May 16 15:01:53 2026 GMT
Subject: CN=223bfb289044e02f067a38c0b69e427acc589e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f6:6a:70:30:08:21:85:d9:ed:b3:77:5f:8b:
ea:1a:90:2b:9b:49:13:e5:ea:a5:23:02:14:c7:d0:
35:53:8a:85:27:0b:65:f8:a6:fb:50:46:c3:ed:32:
63:fb:1a:ae:0f:c9:0d:b5:22:eb:16:ee:5c:74:e1:
c3:55:b5:e0:08:2d:0d:58:a5:64:45:f5:95:70:be:
62:63:2f:1b:8e:90:a2:86:a6:f0:10:6a:6f:85:c9:
99:14:94:91:4c:4e:fc:05:85:e2:86:20:a6:96:53:
2b:3a:a9:3c:b7:2d:ba:14:02:12:e8:b2:d0:4e:bd:
90:a5:0a:ec:df:75:38:77:12:f6:1e:40:05:88:96:
0e:67:34:41:e9:15:49:b6:b8:0b:0c:db:9e:b5:6f:
7e:fb:90:2b:d3:84:ea:c4:77:8f:26:c0:87:50:7e:
7f:58:2e:90:71:da:d9:9b:b6:83:d6:2e:bf:0d:06:
3e:ae:c7:fa:98:43:39:d0:fc:f1:f9:60:5b:84:53:
de:3f:b5:21:0a:02:10:dc:4d:69:ff:89:6a:ff:9b:
46:f3:96:de:b1:1c:6f:fa:35:44:32:4a:77:2e:86:
05:f1:90:4b:42:0e:ba:8f:2d:67:53:02:84:31:5a:
23:9c:52:20:f5:78:88:ff:15:f2:18:4b:e8:8e:d4:
0f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3B:FB:28:90:44:E0:2F:06:7A:38:C0:B6:9E:42:7A:CC:58:9E:70
X509v3 Authority Key Identifier:
keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:83:90:7f:96:3e:1d:a7:79:a7:06:5a:28:fa:e3:88:7b:be:
42:42:09:a7:20:3a:3a:89:0e:21:8e:35:61:28:7b:f0:ed:a7:
7b:d8:08:56:ad:a6:ed:61:84:09:40:68:a5:58:b3:c5:30:12:
7a:08:b7:2d:a0:0b:b5:be:13:9a:18:d1:41:41:50:cf:e1:5d:
15:e9:43:1c:87:13:a7:29:e4:45:1b:85:fa:c4:94:c1:73:9b:
01:33:ca:04:00:91:92:a5:cf:13:aa:07:f6:17:54:3d:d0:04:
98:45:27:06:8d:79:fa:5d:05:dc:a1:5b:15:7b:2b:7a:5e:3a:
4b:50:cb:f9:97:79:41:41:db:38:4f:0a:4c:f5:3a:94:4e:c5:
e7:db:4b:7b:51:8d:ab:9e:17:fb:2b:4c:f2:75:32:c6:fa:41:
b1:79:84:51:ab:c3:29:08:f2:a9:29:42:ef:7e:ea:87:e2:d8:
a4:4e:5b:bb:bb:87:4e:2d:1b:7b:52:3d:55:6f:9c:d7:ac:82:
b0:80:10:88:06:43:65:b1:7b:d1:20:15:8e:f0:9b:2b:9f:18:
6e:2f:d0:4a:aa:2e:c1:7d:57:3b:3b:ad:ff:a7:0e:d6:42:b7:
7c:79:8e:6e:f8:ca:6c:f6:06:78:69:7e:17:fd:5e:7a:bf:bf:
31:7a:d8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:53:57 2026 by rpki-client