Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: XkCOBWmvxojEtgEoT8L3P5Qy1hT7f5v6M/FoG4PPW5s=
Subject key identifier: C5:32:44:30:3E:4C:C3:C5:B1:C2:BE:AD:FA:65:7B:E4:55:16:C7:14
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019CAAC67F9B5018AD08D7A686E819E0FB82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 19:01:01 +0000
Manifest this update: Sun 01 Mar 2026 19:01:01 +0000
Manifest next update: Mon 02 Mar 2026 19:01:01 +0000
Files and hashes: 1: dhA92pR8NVPLyW6mzK0XHy6ZgWk.roa (hash: AS2PEdg4UVrkHexwfvP85NaTExj06DZhVZRZTbTSV2U=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: e9N7PBmbhJp/MqWtwr3APh2pvCOLiyBU1ZOtKfREf8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:7f:9b:50:18:ad:08:d7:a6:86:e8:19:e0:fb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Mar 1 19:01:01 2026 GMT
Not After : Mar 2 19:01:01 2026 GMT
Subject: CN=c53244303e4cc3c5b1c2beadfa657be45516c714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:86:af:5d:20:8d:dc:36:25:55:df:01:c8:fa:
2c:c4:83:c9:76:25:bd:7a:e0:4b:ce:dd:b6:33:d7:
53:80:df:ef:fa:de:d7:37:33:ee:65:f4:3e:ac:f5:
73:71:02:1f:13:59:18:8b:e0:97:df:be:41:ef:16:
65:09:77:d6:98:ed:8f:e1:d5:e7:39:12:fc:6f:b0:
f3:1c:53:64:d3:bd:11:28:c2:9c:d8:c1:b9:43:37:
6f:95:f1:e1:ac:a2:c8:1e:fc:c4:f8:ea:4f:39:27:
dd:1a:de:77:09:af:c8:e5:79:c6:71:53:17:52:e9:
67:31:fe:1a:92:5d:45:cf:1b:d1:7e:43:62:b2:b0:
1a:a2:aa:9f:96:61:51:a3:4f:ef:66:e7:22:8b:04:
31:20:02:03:3a:a2:3a:89:76:3e:c1:3b:6c:22:5f:
58:b6:ed:31:ae:d9:89:8c:d4:07:79:4a:19:59:56:
00:c2:eb:cc:1d:6e:03:a2:2a:59:1a:af:6c:88:14:
44:69:2b:f4:21:02:69:eb:93:48:cc:04:05:64:70:
c9:dc:8f:ae:ea:72:a4:3a:52:7c:9e:c3:c7:42:73:
b4:91:40:75:90:52:dc:ca:bd:96:78:78:7b:b2:cd:
ea:87:3c:86:d9:fd:9d:39:68:c4:1c:28:5a:dd:0e:
1e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:32:44:30:3E:4C:C3:C5:B1:C2:BE:AD:FA:65:7B:E4:55:16:C7:14
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:b7:64:23:8f:c4:a1:7d:04:8e:d5:dc:cf:3e:e6:4c:ae:a1:
47:b9:98:5d:08:86:59:11:53:8b:be:9a:72:4b:4d:49:2f:fc:
bf:0b:94:a2:23:9e:57:22:35:7e:fa:6a:83:a3:a0:90:39:77:
c5:d1:5d:80:f8:51:8a:3c:4b:ff:52:ab:57:be:48:c2:3d:09:
e9:3c:00:08:32:db:7c:5e:5a:bd:26:3b:2b:cf:b1:83:5b:52:
83:82:82:3d:e0:38:bd:c0:fb:98:78:ea:0b:85:c3:d6:01:7f:
ad:c1:c3:a0:c6:8c:63:7a:3a:93:6b:15:78:b7:2a:48:6c:f3:
03:4d:be:9d:32:27:0f:f5:be:2b:de:2e:3b:0b:bb:2c:d8:b3:
2c:1c:15:38:ae:79:77:67:14:c6:b1:6f:8c:8f:f7:c4:f7:3c:
32:d4:22:fb:5d:be:7f:38:85:7c:f0:34:50:f7:5e:49:80:0b:
a3:fd:14:e5:a9:af:26:d0:76:8c:35:88:7b:da:c1:a0:d5:b1:
0f:78:b8:c5:78:a7:4a:b7:3e:2a:cf:6f:fa:dd:81:86:df:b9:
b0:96:0f:8c:42:af:cc:66:e2:e1:cb:d1:ac:27:cd:86:e9:e9:
10:fc:87:28:4a:1a:1d:c4:e5:8c:71:39:90:09:b4:73:1d:37:
5f:67:55:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:40:57 2026 by rpki-client