Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: qGzhMD3pyn3NL9mzonE0ukiqPjFre2zWhEPehE2olFM=
Subject key identifier: 4E:DA:FF:51:2D:DB:EC:90:C9:25:CB:24:92:26:A8:30:18:7D:6B:60
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019CAEDA1F8069F07B72A4403D35AFA9D54C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 156B
Signing time: Mon 02 Mar 2026 14:00:56 +0000
Manifest this update: Mon 02 Mar 2026 14:00:56 +0000
Manifest next update: Tue 03 Mar 2026 14:00:56 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: x/0tFjLv9mLzPqRO08p/v+HFdI1ma9Yn1GRJhdzoflc=)
2: vTL1N_H41HNiNtowQy-zm9gl9aY.roa (hash: JtmrUvutZdfTDVqTi1wCPoFHIXdZTWrvXh0P19O7xN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:1f:80:69:f0:7b:72:a4:40:3d:35:af:a9:d5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Mar 2 14:00:56 2026 GMT
Not After : Mar 3 14:00:56 2026 GMT
Subject: CN=4edaff512ddbec90c925cb249226a830187d6b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:29:a8:20:7f:57:52:90:a3:80:d5:dd:79:f1:
c6:a5:1d:cb:f2:c7:3d:a8:e6:f8:1b:6d:1b:33:00:
9a:d0:64:ec:91:0e:b2:1c:bc:cc:5d:ed:99:41:ce:
9f:16:7c:b9:4d:b1:e0:98:93:78:48:fd:7f:ea:84:
02:0c:89:1b:ec:a7:43:d9:59:9d:00:da:fd:de:4e:
5a:51:a8:9f:8a:73:ef:5f:bc:94:93:94:00:c6:f1:
8a:b7:80:bf:ed:d1:3f:24:51:c7:88:a3:46:23:a3:
ca:9b:8f:3c:8b:e7:84:81:65:81:8d:67:58:c6:27:
68:65:dd:a4:39:38:c0:03:a4:fc:ff:57:be:eb:ff:
a8:af:b8:f9:a5:62:15:97:d9:e5:9f:25:4b:8e:af:
2f:cc:97:c9:73:72:c9:54:ac:3d:ae:aa:2a:a1:3b:
0e:b8:04:6c:49:f1:3c:b7:ea:e3:df:24:37:4d:e3:
d8:b7:57:94:a3:6c:86:84:0c:ff:22:60:c5:f3:4e:
db:5d:4d:eb:d4:c3:0b:8d:70:2b:90:5b:ac:d1:0c:
65:d5:c7:b1:b9:cd:14:f0:2f:17:2f:17:57:fe:22:
7f:8b:33:ce:77:15:3d:c3:20:21:01:10:67:0d:aa:
50:97:09:8f:3c:76:26:93:49:cf:a1:d7:fe:b5:ab:
6c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DA:FF:51:2D:DB:EC:90:C9:25:CB:24:92:26:A8:30:18:7D:6B:60
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:1e:3d:e8:0e:4f:22:ac:ba:4f:cb:16:09:1e:ff:37:ec:08:
1c:0d:4a:c3:8d:24:73:dc:4a:c2:40:be:9f:97:43:ed:19:f7:
05:b7:9c:7a:37:89:2b:c4:77:dd:7c:16:10:66:f5:e0:27:e9:
7c:9a:19:e9:5b:ad:05:7c:78:1c:5d:61:dc:e8:49:26:ad:55:
e4:90:10:dd:89:3d:07:e7:8e:dc:ca:fb:6d:d3:17:4b:60:65:
8e:3c:41:d3:4f:fb:df:54:ee:b9:40:b7:82:69:58:3d:cf:3b:
b0:f3:fc:d4:a1:3d:43:88:39:d9:4f:c0:81:91:f3:79:15:d4:
58:2e:0c:d8:ca:80:5e:83:d6:44:1d:a4:27:d4:9d:5f:60:cd:
a8:dd:9d:fe:61:53:25:46:19:ef:da:f3:6e:7b:11:e5:91:a1:
cc:ed:6c:6b:e0:ba:20:13:a3:d9:2e:b3:18:40:10:d8:50:11:
b8:13:b8:1c:78:3a:6c:e4:9c:f0:b8:d7:f2:8f:3b:8f:b0:ab:
c9:69:05:8a:f1:09:bb:b0:e3:f5:76:af:6a:61:5e:21:2c:54:
39:92:9f:63:80:d2:9d:8c:67:34:f0:5b:cd:6d:d0:ce:ee:55:
b3:a9:14:1c:e1:18:9a:3e:7b:6a:5e:b0:df:91:47:bd:32:40:
f9:e7:67:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyu2h+AafB7cqRAPTWvqdVMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMjc2YWM1MWExMzI0MDFkYjRjZDc0MWQ4NjZhNTQ2MjJh
MGQxNWMwHhcNMjYwMzAyMTQwMDU2WhcNMjYwMzAzMTQwMDU2WjAzMTEwLwYDVQQD
Eyg0ZWRhZmY1MTJkZGJlYzkwYzkyNWNiMjQ5MjI2YTgzMDE4N2Q2YjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCmoIH9XUpCjgNXdefHGpR3L8sc9
qOb4G20bMwCa0GTskQ6yHLzMXe2ZQc6fFny5TbHgmJN4SP1/6oQCDIkb7KdD2Vmd
ANr93k5aUaifinPvX7yUk5QAxvGKt4C/7dE/JFHHiKNGI6PKm488i+eEgWWBjWdY
xidoZd2kOTjAA6T8/1e+6/+or7j5pWIVl9nlnyVLjq8vzJfJc3LJVKw9rqoqoTsO
uARsSfE8t+rj3yQ3TePYt1eUo2yGhAz/ImDF807bXU3r1MMLjXArkFus0Qxl1cex
uc0U8C8XLxdX/iJ/izPOdxU9wyAhARBnDapQlwmPPHYmk0nPodf+tatslQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE7a/1Et2+yQySXLJJImqDAYfWtgMB8GA1UdIwQY
MBaAFD4nasUaEyQB20zXQdhmpUYioNFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjIt
MWVlZjExYThkZGRmLzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjItMWVlZjExYThkZGRm
LzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACB496A5P
Iqy6T8sWCR7/N+wIHA1Kw40kc9xKwkC+n5dD7Rn3BbecejeJK8R33XwWEGb14Cfp
fJoZ6VutBXx4HF1h3OhJJq1V5JAQ3Yk9B+eO3Mr7bdMXS2BljjxB00/731TuuUC3
gmlYPc87sPP81KE9Q4g52U/AgZHzeRXUWC4M2MqAXoPWRB2kJ9SdX2DNqN2d/mFT
JUYZ79rzbnsR5ZGhzO1sa+C6IBOj2S6zGEAQ2FARuBO4HHg6bOSc8LjX8o87j7Cr
yWkFivEJu7Dj9XavamFeISxUOZKfY4DSnYxnNPBbzW3Qzu5Vs6kUHOEYmj57al6w
35FHvTJA+ednqg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:08:29 2026 by rpki-client