Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json)
Hash identifier: ahcg9Drzzcs+M1vT4tiVgrJjRYlgKWQ/lLqIgrrvLV0=
Subject key identifier: 42:EA:08:61:24:EA:91:80:D5:9B:53:20:B0:3B:4B:28:C9:91:C8:4C
Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Certificate serial: 019CAAFD58660A30105256548A64A89EA277
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
Manifest number: 0F17
Signing time: Sun 01 Mar 2026 20:00:55 +0000
Manifest this update: Sun 01 Mar 2026 20:00:55 +0000
Manifest next update: Mon 02 Mar 2026 20:00:55 +0000
Files and hashes: 1: 1y-vwZVrMYSQ5PEHPoi2QvehQzI.roa (hash: cYggAnbxJcT3dfayKBFM1pT3DCCSeOQKuJH//n4lQos=)
2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: z3vQGrfP0kJ+tp4XBDmiEaCz8tfs4v8HMliNbOFO1D4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:58:66:0a:30:10:52:56:54:8a:64:a8:9e:a2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Validity
Not Before: Mar 1 20:00:55 2026 GMT
Not After : Mar 2 20:00:55 2026 GMT
Subject: CN=42ea086124ea9180d59b5320b03b4b28c991c84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8d:52:2e:bf:e5:25:16:c3:1c:15:b1:88:c1:
b5:cd:dc:72:fc:a3:f6:f8:a3:8c:21:ee:dc:dc:9f:
7f:bb:98:2b:37:e1:e6:7e:8f:a8:2e:70:a4:5f:c5:
e8:22:84:6e:4a:d7:41:31:44:5d:10:43:e3:95:d2:
87:0e:a6:77:84:a0:20:8e:a6:97:91:ac:85:b7:54:
9d:bd:26:50:22:eb:04:bb:71:fc:5d:b3:9e:8f:80:
38:fb:ed:70:f2:0b:f2:47:b3:65:42:af:f3:9a:f4:
d2:3e:f0:56:96:7b:7b:7b:5a:5c:d5:93:ef:88:97:
df:1a:5d:80:7f:4b:c8:1c:64:80:b1:83:cf:77:44:
74:36:13:ac:26:f8:f5:53:30:f5:bc:44:b0:70:73:
ee:5f:49:bb:51:49:bd:db:ca:a5:b7:59:a2:b9:e8:
a2:9c:e8:61:22:19:ff:32:57:2c:ca:a1:f8:d9:38:
c6:ca:db:1e:4d:df:a5:6f:fd:8f:f4:31:00:b9:52:
93:8b:0a:ff:7c:cb:b9:87:0d:9f:0a:40:29:f2:8a:
bf:70:04:43:66:70:28:f1:7b:ea:09:8d:c9:bb:83:
c6:54:2f:37:a5:db:3d:a4:32:dc:fd:3c:57:8f:c6:
66:33:83:12:ba:21:26:34:f9:b5:50:f3:59:f8:19:
79:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EA:08:61:24:EA:91:80:D5:9B:53:20:B0:3B:4B:28:C9:91:C8:4C
X509v3 Authority Key Identifier:
keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:97:7d:83:2d:2f:cf:e8:4d:cf:67:35:df:a1:07:91:e6:a9:
83:c4:06:23:f4:95:bb:eb:63:02:2b:e6:32:1c:ed:23:fe:15:
c2:33:47:e9:46:0a:82:69:10:c1:e5:73:4e:d6:4d:02:ae:7b:
39:e5:5e:0b:c3:4e:61:7a:44:22:09:81:0e:31:d0:fc:71:ca:
6d:80:40:3f:1b:ea:37:e9:74:0b:88:36:ad:37:2d:10:f7:7c:
ac:7f:a4:04:40:42:b7:3c:1d:54:fa:88:87:f8:38:5c:c2:c7:
49:d9:d3:a0:3f:b0:c6:6b:ca:5e:05:85:04:ac:a1:61:18:c2:
a1:1e:e3:ab:e8:59:98:7f:2d:b8:7b:9d:6c:7c:10:64:2c:df:
5d:51:87:e8:e9:75:c3:6c:f9:de:2d:a2:36:a7:a7:06:70:1e:
c0:9a:45:c1:ab:0e:02:53:f5:f7:99:a3:57:f8:cd:25:f5:8b:
1a:be:e4:0d:7c:f5:ca:b2:d5:e2:1b:51:c1:d3:31:d8:ba:61:
08:5d:80:09:27:67:56:a6:af:0f:eb:29:15:e5:bf:ec:6a:e7:
5c:e8:e3:ec:7e:0a:d0:e6:e5:c4:1b:46:5f:e3:61:dc:38:2c:
06:88:8e:85:91:f5:6a:0d:67:dc:da:78:d6:91:cf:42:c9:69:
41:8a:eb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:41:29 2026 by rpki-client