Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: a4LD+62+1AFV3E8vG6QYzoFH5ISvo2Te6VGH9wGT2Nk=
Subject key identifier: 30:06:E5:9C:23:32:DE:D0:C0:78:DD:53:60:6A:15:35:E1:EE:DD:43
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019CA9EB933D9CFA80F7EEA77140B40C6084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 17D3
Signing time: Sun 01 Mar 2026 15:01:53 +0000
Manifest this update: Sun 01 Mar 2026 15:01:53 +0000
Manifest next update: Mon 02 Mar 2026 15:01:53 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: hVWyILyOPsE9/BrqiMJ+IHt9WTMnslsUaIG360vElTY=)
2: ugGgjfrNMaOwuHgQR5J_mmnCoSw.roa (hash: N5PN03imR/rPD+0R00oOm/EBGbZntmCDYE46dLOAj4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:93:3d:9c:fa:80:f7:ee:a7:71:40:b4:0c:60:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Mar 1 15:01:53 2026 GMT
Not After : Mar 2 15:01:53 2026 GMT
Subject: CN=3006e59c2332ded0c078dd53606a1535e1eedd43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:35:14:2c:ff:8d:ff:b6:2f:80:86:37:00:cb:
7a:aa:a9:51:41:1e:d8:1c:3f:03:04:21:5f:de:21:
50:ee:33:2c:5a:15:3a:d4:37:7f:f4:d2:57:fd:a2:
3b:3c:74:8d:b5:92:77:38:69:ea:69:5f:df:4d:97:
1f:78:6b:99:29:71:24:f1:59:44:21:1c:37:8b:e7:
79:78:72:19:e4:a7:48:66:71:73:57:63:e7:01:d7:
f7:a2:21:bd:58:fe:2e:01:d4:1b:55:a2:b6:5e:b8:
35:28:e2:da:63:71:0c:96:2b:67:e6:dd:49:11:de:
34:e5:36:97:c5:db:cb:76:70:da:56:b3:87:cb:45:
71:9a:3f:64:c6:85:b2:af:6d:80:d7:ea:d3:8d:c5:
31:b9:65:85:50:f6:c7:a7:66:72:57:47:c4:2c:ee:
90:39:f3:1d:9f:d0:b6:8e:75:98:10:75:aa:88:ae:
71:26:bf:b9:f2:2a:70:aa:dd:ac:79:0d:35:ad:d3:
74:ba:05:12:70:f6:71:87:42:87:ec:07:82:a2:04:
50:a5:c0:3b:b5:d1:6a:53:9b:49:f1:45:65:c9:35:
f0:1c:a2:f8:1e:bb:03:e2:f4:67:a9:bc:76:98:d6:
81:25:f1:37:cf:a2:5d:71:d7:89:24:08:a2:ee:05:
91:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:06:E5:9C:23:32:DE:D0:C0:78:DD:53:60:6A:15:35:E1:EE:DD:43
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:46:ba:3f:4f:53:3d:1f:9b:51:8b:8e:dc:fe:be:77:79:7b:
a5:97:87:e5:93:7d:7d:f7:68:4c:9c:ca:d6:c7:56:13:c6:ca:
a3:07:30:a0:bc:4e:38:be:0c:58:90:aa:ca:96:96:d0:e4:e4:
8c:90:5f:0b:ec:69:d5:0f:4f:fe:16:59:54:fd:18:ef:53:13:
98:74:16:00:e7:56:6d:ab:30:6c:b6:46:4a:fc:fe:7d:e5:0f:
ce:0a:da:46:d6:cd:16:7c:aa:9c:c1:af:f0:2c:ca:b9:d2:22:
98:00:e1:ab:6e:84:6d:a3:b0:42:34:e4:05:c7:96:4e:27:b9:
24:66:85:d0:30:62:15:c6:f4:3b:f3:eb:0d:f0:0f:24:90:e3:
c3:97:ee:d6:f3:1a:a8:b8:bc:63:14:0e:7e:63:f6:99:45:9c:
2c:5d:f8:70:fa:46:9c:6b:a5:d2:11:e7:72:40:3c:82:81:80:
1f:fe:46:5f:23:ec:ed:62:b3:3f:9b:e4:d5:fb:66:24:c8:31:
40:4e:1d:cd:d6:4b:b3:f2:01:f0:bf:5b:9c:e2:ce:8e:2b:70:
24:44:2f:6b:33:81:1a:40:86:89:45:fa:76:d1:ce:a9:01:e2:
90:d6:9d:72:97:a0:58:7c:48:ed:2f:0d:e7:09:6f:66:98:a9:
81:a1:e4:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyp65M9nPqA9+6ncUC0DGCEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYTUzYWM5YThkYzQ0NmZiN2UwMTEzYjY4YjM4ZTk3MGMx
OWY3Y2MwHhcNMjYwMzAxMTUwMTUzWhcNMjYwMzAyMTUwMTUzWjAzMTEwLwYDVQQD
EygzMDA2ZTU5YzIzMzJkZWQwYzA3OGRkNTM2MDZhMTUzNWUxZWVkZDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjUULP+N/7YvgIY3AMt6qqlRQR7Y
HD8DBCFf3iFQ7jMsWhU61Dd/9NJX/aI7PHSNtZJ3OGnqaV/fTZcfeGuZKXEk8VlE
IRw3i+d5eHIZ5KdIZnFzV2PnAdf3oiG9WP4uAdQbVaK2Xrg1KOLaY3EMlitn5t1J
Ed405TaXxdvLdnDaVrOHy0Vxmj9kxoWyr22A1+rTjcUxuWWFUPbHp2ZyV0fELO6Q
OfMdn9C2jnWYEHWqiK5xJr+58ipwqt2seQ01rdN0ugUScPZxh0KH7AeCogRQpcA7
tdFqU5tJ8UVlyTXwHKL4HrsD4vRnqbx2mNaBJfE3z6JdcdeJJAii7gWRjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDAG5ZwjMt7QwHjdU2BqFTXh7t1DMB8GA1UdIwQY
MBaAFD6lOsmo3ERvt+ARO2izjpcMGffMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHFVNnlhamNSRy0zNEJFN2FMT09sd3daOTh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9lNzNjYjUtOGJmYy00MTM5LTlhMjct
MzUxYzIxMTkyYzY1LzEvUHFVNnlhamNSRy0zNEJFN2FMT09sd3daOTh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9lNzNjYjUtOGJmYy00MTM5LTlhMjctMzUxYzIxMTkyYzY1
LzEvUHFVNnlhamNSRy0zNEJFN2FMT09sd3daOTh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABka6P09T
PR+bUYuO3P6+d3l7pZeH5ZN9ffdoTJzK1sdWE8bKowcwoLxOOL4MWJCqypaW0OTk
jJBfC+xp1Q9P/hZZVP0Y71MTmHQWAOdWbaswbLZGSvz+feUPzgraRtbNFnyqnMGv
8CzKudIimADhq26EbaOwQjTkBceWTie5JGaF0DBiFcb0O/PrDfAPJJDjw5fu1vMa
qLi8YxQOfmP2mUWcLF34cPpGnGul0hHnckA8goGAH/5GXyPs7WKzP5vk1ftmJMgx
QE4dzdZLs/IB8L9bnOLOjitwJEQvazOBGkCGiUX6dtHOqQHikNadcpegWHxI7S8N
5wlvZpipgaHkuQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:31 2026 by rpki-client