Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
File: pYQcxzKsc43B4_5nwS5RBL74Y7o.mft (raw, json)
Hash identifier: unamuOhp+kGVtqs1VF/jxUnG+MmRIZrREmPJDO3g2bc=
Subject key identifier: B6:DD:38:62:65:F8:B4:40:A3:FD:6F:BA:15:05:F4:87:13:69:91:19
Authority key identifier: A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
Certificate issuer: /CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Certificate serial: 019CAE34EF80D0DF3C0459A0BA4B01A64D10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
Manifest number: 0E32
Signing time: Mon 02 Mar 2026 11:00:30 +0000
Manifest this update: Mon 02 Mar 2026 11:00:30 +0000
Manifest next update: Tue 03 Mar 2026 11:00:30 +0000
Files and hashes: 1: pYQcxzKsc43B4_5nwS5RBL74Y7o.crl (hash: OF1bi0PsOkii6Eqv7jBHua1Xh9EYLo9DBTZOjvJW/po=)
2: uj43_HB0cbgfSBJ3pkw5WX0ctlA.roa (hash: Qg5heRt3GNKVhwS3i0/2Bg+iUo3g8NAjbX7YvfBxFzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:34:ef:80:d0:df:3c:04:59:a0:ba:4b:01:a6:4d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Validity
Not Before: Mar 2 11:00:30 2026 GMT
Not After : Mar 3 11:00:30 2026 GMT
Subject: CN=b6dd386265f8b440a3fd6fba1505f48713699119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:ff:1d:99:ad:0b:5a:45:6f:1c:1f:b7:2e:
a4:2a:e1:a3:49:1e:ac:f5:8c:2d:4f:cb:ad:5d:90:
3c:4e:b6:b4:03:c2:ac:96:c4:85:bc:4d:28:73:42:
a5:f6:7b:4c:6b:70:4e:fd:ff:9b:be:ae:1f:a6:07:
9e:fa:84:3c:ff:e4:9c:2e:c7:e0:2f:16:33:90:4c:
19:11:b2:cd:9a:64:8d:08:67:d5:7f:3b:d2:2e:29:
59:6f:c1:51:78:c0:8d:7d:95:df:19:2c:a5:d2:e7:
0b:ea:fc:64:69:02:69:57:c7:81:8e:de:0e:55:bf:
0e:ed:32:39:9b:8b:1c:cc:41:47:01:95:6f:0d:04:
2e:c5:db:7a:0e:22:7d:9c:79:f6:7a:4f:fa:48:6e:
d4:56:40:b7:a6:ef:2b:85:fb:e6:4c:fe:90:1d:12:
3f:a2:c8:60:b4:7c:50:89:d5:41:55:41:17:ed:95:
42:ac:2c:96:c1:ed:e5:7d:4e:31:a9:25:fb:b6:eb:
06:47:15:7a:5e:87:8e:82:2c:66:9a:15:9c:45:35:
c1:ea:54:40:d8:47:fc:94:be:dc:47:c1:d6:5b:65:
9e:60:12:f0:06:78:b0:59:ce:d5:de:77:df:1e:97:
2d:cc:87:00:45:e6:5e:40:b7:6b:3f:7e:85:f6:7d:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DD:38:62:65:F8:B4:40:A3:FD:6F:BA:15:05:F4:87:13:69:91:19
X509v3 Authority Key Identifier:
keyid:A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:5a:2a:8d:61:c3:41:df:af:a0:4d:a8:b5:64:55:37:d2:8d:
da:f9:99:5b:ac:ef:5e:7e:3b:78:ca:4c:b0:90:42:08:e5:fe:
34:96:45:8c:b3:c2:e1:42:96:78:26:ed:bd:ee:55:e0:22:57:
3a:2d:32:83:16:bc:46:91:87:35:79:92:db:71:63:06:10:97:
3c:64:db:bb:9d:6d:ec:96:2b:86:f1:87:2e:7b:58:36:f7:ec:
22:ed:61:f5:1e:8a:37:9a:f1:ff:ec:cd:b1:a2:1d:10:51:4f:
06:a0:c0:03:ad:0e:b1:28:f1:ed:56:ce:c5:a3:f5:e0:cb:ff:
09:86:64:0e:c4:13:c2:f1:91:b4:6d:87:a7:7f:be:63:ac:aa:
2b:59:5c:a8:78:a8:e0:ae:7e:b1:f6:9b:4b:08:2e:aa:b0:8b:
2f:7b:1d:df:9e:8b:81:21:fa:0d:c2:7b:88:fd:f5:0d:69:b3:
7d:41:c3:41:ec:99:18:3e:25:ff:a9:e7:89:7d:e8:8b:d3:3c:
80:95:7e:ec:ba:49:63:1f:de:95:98:ca:e6:66:cd:e2:2e:2b:
ad:12:1f:55:c3:c1:6e:0f:f5:10:1e:fc:1e:c6:3a:cf:10:20:
f4:1d:d8:94:f6:15:78:05:7f:e8:ec:d6:50:eb:e4:c4:5f:bb:
f3:7c:6c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:31:31 2026 by rpki-client