Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json)
Hash identifier: jwaZJQDWEFpbIuV0NbbsM0wNn8LiKc6pf9ihb2ievBs=
Subject key identifier: 2D:93:3F:ED:7E:5C:33:B1:25:07:B0:80:58:7C:D1:04:8E:0D:CF:D3
Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Certificate serial: 019D37F723F9C2C7D9248E4582A9DF76CC83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 05:00:36 +0000
Manifest this update: Sun 29 Mar 2026 05:00:36 +0000
Manifest next update: Mon 30 Mar 2026 05:00:36 +0000
Files and hashes: 1: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: cnJWJ7nyZOnSiTLT3Mo259sBXsJnUUaBB4QBu9rKgfM=)
2: vagnBvJ7GZHzOrybHsBa0u1gBGs.roa (hash: AHj1V+feefzLimbaTSC6tcBNqcISih6luVdAk+cmYzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:23:f9:c2:c7:d9:24:8e:45:82:a9:df:76:cc:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Validity
Not Before: Mar 29 05:00:36 2026 GMT
Not After : Mar 30 05:00:36 2026 GMT
Subject: CN=2d933fed7e5c33b12507b080587cd1048e0dcfd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:34:63:a8:71:7c:16:79:6f:d7:5f:bd:99:97:
f0:45:ce:05:31:0e:4e:dd:47:bf:35:aa:eb:cf:19:
0e:90:bd:82:8c:a2:32:d5:c1:43:2f:8d:c7:56:b6:
9a:95:63:e2:e5:6e:f1:48:a3:71:19:7b:97:cb:26:
ee:53:ad:47:90:3b:fa:6c:e1:6e:bd:6e:68:04:a5:
26:f2:57:b9:d6:ff:23:28:50:44:dd:23:3e:2b:7f:
9f:a6:66:2d:e1:08:93:9a:04:d3:8f:2e:96:74:26:
87:3c:e1:97:dc:8f:cb:d4:ab:13:57:eb:b1:b5:e2:
a7:6a:33:0f:75:c5:65:3b:a7:9c:6e:08:79:47:a3:
1d:97:00:8f:a8:0a:a5:1d:93:ed:34:60:43:88:16:
2b:60:85:52:27:ab:5f:d7:37:53:1c:c8:b4:d0:89:
13:44:42:52:6b:65:70:4e:05:ac:ec:19:b9:25:da:
28:d6:69:cd:d9:9c:de:61:fc:c2:9a:d0:19:05:21:
d5:95:3e:c1:b1:bd:d9:90:7b:ca:a8:b1:c7:b5:15:
2d:79:ef:48:83:89:cb:88:ff:ea:63:f6:30:05:32:
fe:84:9e:c6:67:12:8e:0b:07:e3:a6:43:26:7e:8e:
10:18:f0:9d:13:85:51:33:16:db:e3:39:74:e9:8f:
3e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:93:3F:ED:7E:5C:33:B1:25:07:B0:80:58:7C:D1:04:8E:0D:CF:D3
X509v3 Authority Key Identifier:
keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:24:38:f5:b4:d3:3f:ed:26:69:cb:38:98:a2:f6:f8:a2:23:
80:70:0f:c9:6c:29:57:17:0f:4d:80:ac:33:98:b5:41:53:8b:
e4:41:ce:c1:8f:7c:e8:35:67:8a:c1:09:9d:f4:0b:78:ec:f0:
c2:72:72:b5:28:ac:60:7d:29:2f:e7:4e:a6:7d:3e:4d:c9:dc:
60:b9:2d:3d:89:0a:e6:ec:c3:2c:21:5f:2a:2f:f5:e3:db:d1:
ef:ed:c4:c3:e0:22:f8:48:1b:c4:cb:d5:9c:df:9d:a4:e0:79:
73:4c:05:71:70:d1:cc:7b:2b:fb:27:53:90:8e:5f:cd:4a:87:
0b:fd:7d:61:0e:70:81:aa:92:93:82:ae:10:43:d9:f3:a3:02:
c1:86:4b:e9:cf:63:cb:98:af:6f:0c:87:3c:c6:ab:02:ea:00:
35:0b:1b:71:1f:e2:fa:a1:4b:08:fc:5a:13:d9:71:6a:15:d5:
26:c2:75:2b:d3:25:30:8b:43:02:6a:be:31:bd:a7:f1:aa:75:
3a:b8:c2:1f:df:8c:22:4c:e1:2c:64:66:13:b7:ea:dc:3f:af:
bc:0e:03:6e:f2:26:e3:59:c3:21:ff:84:4e:0d:77:30:8d:c3:
a2:e5:d7:7f:68:3c:fc:00:d0:97:cb:d6:c7:eb:5d:69:e0:37:
b7:3b:dd:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:21 2026 by rpki-client