Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json)
Hash identifier: Le/1fOHhbxFQqYxcAEBvEB+TcCUe0hGjJB4FbU3yXXw=
Subject key identifier: 71:26:55:5A:8A:03:61:24:79:D9:0A:2F:8D:80:11:4B:64:7B:2C:73
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: 019D992B4917BBE6E639089D964FC3E47BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
Manifest number: 122D
Signing time: Fri 17 Apr 2026 02:00:43 +0000
Manifest this update: Fri 17 Apr 2026 02:00:43 +0000
Manifest next update: Sat 18 Apr 2026 02:00:43 +0000
Files and hashes: 1: UBGkKBFV2Aa7JBw4pAiIxve4fn0.roa (hash: 9cBrWgFQDzVn82NDm23DCCjfy/yynDnSQwWNQi58HvU=)
2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: g8AFrZ5jiKH+rGPiOgR+BxxF6Z6Io7M31/YdnslXt+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:49:17:bb:e6:e6:39:08:9d:96:4f:c3:e4:7b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Apr 17 02:00:43 2026 GMT
Not After : Apr 18 02:00:43 2026 GMT
Subject: CN=7126555a8a03612479d90a2f8d80114b647b2c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:af:0d:43:3b:b4:00:0c:8e:83:e8:9b:e6:e9:
ef:99:91:80:ff:e3:6f:92:4e:9d:4c:51:1e:c8:ea:
09:60:98:ea:4f:57:34:4e:49:73:d8:e6:d5:22:4f:
17:ba:2d:7f:42:e0:24:7b:0f:91:09:36:79:04:e4:
54:51:16:37:69:8e:94:24:0c:00:e2:0a:62:49:29:
73:0e:7f:de:81:ea:db:4f:37:b0:c4:ea:39:42:3e:
27:e3:aa:3f:9f:cf:07:d6:e4:96:48:76:ba:94:35:
c4:b1:79:a7:b2:cf:01:69:b9:f7:0f:7a:14:74:24:
a7:9d:32:12:07:d0:83:76:de:f6:fc:bc:fc:11:84:
ce:89:54:5d:67:05:11:91:4d:d2:1c:6b:4c:c5:c1:
5e:eb:0d:0c:f2:9e:eb:2b:9b:0e:56:a2:16:12:80:
07:09:e8:0a:3b:8e:87:9c:ec:c2:4b:fc:b2:1b:5a:
63:5a:ed:c9:82:05:95:15:7f:d6:f1:c0:bc:fc:95:
a7:4e:2d:08:41:a3:93:66:18:b9:15:6b:d6:0d:59:
5e:f0:eb:13:0f:d2:4f:46:e0:3a:18:02:01:c8:70:
10:03:5e:f8:17:72:62:a1:41:0c:ec:0c:3d:ac:4e:
d1:09:d9:58:cf:fd:bf:34:5f:58:62:e2:23:2a:56:
63:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:26:55:5A:8A:03:61:24:79:D9:0A:2F:8D:80:11:4B:64:7B:2C:73
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:7e:7f:81:36:61:07:7a:94:e8:98:2a:2f:da:e6:1d:89:3b:
7d:14:48:c0:c0:98:28:96:72:a2:5a:ff:51:f3:fe:2a:5c:46:
42:f6:58:cd:9c:c2:74:a9:d5:8c:2d:0e:69:7c:47:3b:59:c9:
d6:55:71:8a:13:e6:63:3a:4b:eb:4d:5e:18:64:29:83:93:dc:
07:e1:5c:3c:96:62:9f:c0:3e:8b:24:3b:90:18:2a:cf:85:68:
f3:e2:d7:68:88:da:20:12:7a:48:ad:9a:04:8b:90:ec:85:a2:
3c:f5:04:5f:25:35:b6:cc:b4:4e:aa:d6:f0:41:9f:8c:4c:8f:
e4:b2:b7:06:fa:a4:89:f1:ea:97:1c:f2:08:40:0a:4a:f5:e3:
7c:a7:88:6d:1a:85:9b:92:ab:b3:6c:58:6a:44:f3:6d:7e:55:
43:d0:2e:39:3f:da:cf:f5:6f:42:b3:aa:29:37:ed:e4:62:d1:
dd:ea:74:1f:3e:53:40:fd:18:f3:6a:05:2e:63:70:be:b0:ef:
d8:e2:f3:2f:b4:6f:06:04:46:7f:8d:82:3f:6b:4a:b3:8a:8d:
c1:c8:29:6e:ed:c3:72:46:f2:af:76:a4:05:bb:db:09:df:0e:
e0:e1:bb:68:97:72:ec:12:50:06:29:fe:77:e5:aa:1a:44:f8:
57:37:e0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:11:08 2026 by rpki-client