Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json)
Hash identifier: VS3OFOIXQAm0G0lyK/q6HYyJb9Agk5MPcpLyl0iAH+8=
Subject key identifier: B5:29:E1:0A:85:00:0E:B9:26:C3:0E:62:2E:E5:4A:D3:C5:CF:2F:F2
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: 019CA9B3C7D3B6B76DC4DA67F14E1451B6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
Manifest number: 11B1
Signing time: Sun 01 Mar 2026 14:00:57 +0000
Manifest this update: Sun 01 Mar 2026 14:00:57 +0000
Manifest next update: Mon 02 Mar 2026 14:00:57 +0000
Files and hashes: 1: UBGkKBFV2Aa7JBw4pAiIxve4fn0.roa (hash: 9cBrWgFQDzVn82NDm23DCCjfy/yynDnSQwWNQi58HvU=)
2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: ImwvBFxcGKNmbCNhunL4/xIeT+hiGlkp2LtrRTI8vhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:c7:d3:b6:b7:6d:c4:da:67:f1:4e:14:51:b6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Mar 1 14:00:57 2026 GMT
Not After : Mar 2 14:00:57 2026 GMT
Subject: CN=b529e10a85000eb926c30e622ee54ad3c5cf2ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ed:e0:01:e2:17:6f:9b:eb:8c:97:c9:0e:9a:
3f:4e:75:c9:8b:af:09:52:e9:a9:56:71:73:65:2f:
49:73:28:5c:12:01:2e:d0:24:78:ba:eb:54:73:24:
1b:de:6e:c5:ef:c7:9e:cc:11:af:86:41:c7:5e:6c:
23:4f:68:1d:11:c9:7c:e4:38:24:7f:c8:cf:a9:5f:
5a:f5:33:e8:8f:9e:c2:37:46:27:23:64:72:3a:10:
ce:ca:80:70:a3:84:96:2e:f9:35:f1:5c:8a:c8:d0:
e1:85:b1:e7:28:a1:ba:be:06:6d:36:ff:5b:60:fd:
ac:7d:03:c0:a3:1e:4a:8e:0f:bb:40:87:c8:7a:5a:
83:22:6a:22:fe:fb:4c:62:88:b9:0f:87:47:8a:0a:
81:e6:a8:6d:4b:11:98:9f:e0:83:5d:46:96:7e:41:
68:34:c5:5c:54:e6:28:45:15:59:6a:ec:dc:6d:c0:
f1:00:60:f5:b7:27:ad:83:ca:bd:b1:79:e7:33:7d:
5e:7d:10:0c:6d:7d:e5:06:b5:1e:b7:10:0c:33:c7:
db:23:ae:e9:e1:fb:ce:fc:56:73:77:f8:3d:c8:ed:
3a:d4:c1:9f:89:6e:34:32:ed:a1:bb:07:97:ce:e2:
d0:ed:42:cf:2a:46:76:30:f1:a7:2d:3c:34:12:0d:
72:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:29:E1:0A:85:00:0E:B9:26:C3:0E:62:2E:E5:4A:D3:C5:CF:2F:F2
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ee:c2:78:25:c0:0f:a3:1f:62:d2:a2:a0:8b:64:81:fe:43:
4b:d3:b9:6c:7e:75:c1:ba:30:26:25:1d:72:62:06:55:9d:f0:
9f:4a:85:aa:a0:f6:ca:f6:ba:1b:b7:b2:98:e8:3d:79:c5:c6:
18:f5:bc:36:bf:45:d4:91:90:69:43:15:85:ce:ec:4c:48:70:
ff:8a:22:38:f3:7b:15:93:d6:e1:c7:e2:de:a1:51:a9:d9:bc:
95:f0:81:d2:a9:33:bb:86:3f:22:08:27:8c:d1:84:79:43:94:
c8:45:25:e6:51:6c:23:8c:36:34:c6:a2:70:67:6d:9b:2a:f9:
78:bd:1c:bd:04:bd:39:2c:a5:d0:2c:07:75:d4:72:16:87:98:
a7:ae:f2:04:3b:a8:13:ed:62:3a:2e:34:f7:da:52:0b:07:be:
ca:71:d5:c5:77:9f:55:31:9c:ba:69:f0:9f:ca:32:39:2a:b8:
7c:f0:f2:99:fa:d1:de:4b:02:f4:36:03:20:f7:ea:78:45:83:
28:ba:e7:82:cf:a9:3c:23:ea:2a:14:2f:44:f3:82:bd:25:b8:
bf:00:cb:68:03:4a:f6:a3:d6:d4:36:d9:31:3e:5c:9c:db:4c:
a8:3a:ea:c2:f7:8d:ce:9e:8f:57:72:bd:9e:41:b6:9f:b2:d0:
21:ae:bf:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:43 2026 by rpki-client