Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: e5edwKN8dIUTgPG4QSOMGD+Oa++wH1ZPT97NKxgVoP0=
Subject key identifier: F2:09:58:84:62:57:BE:FB:17:10:64:89:A6:C8:BC:D7:37:65:CD:E4
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019D9A74EC371481B1F604F68F2FED857001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 15E5
Signing time: Fri 17 Apr 2026 08:00:46 +0000
Manifest this update: Fri 17 Apr 2026 08:00:46 +0000
Manifest next update: Sat 18 Apr 2026 08:00:46 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: uf2tMsK7l6mMXruYTjgkFEXoeN3t2i9VjseZNiZE4Y4=)
2: vTL1N_H41HNiNtowQy-zm9gl9aY.roa (hash: JtmrUvutZdfTDVqTi1wCPoFHIXdZTWrvXh0P19O7xN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:ec:37:14:81:b1:f6:04:f6:8f:2f:ed:85:70:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Apr 17 08:00:46 2026 GMT
Not After : Apr 18 08:00:46 2026 GMT
Subject: CN=f20958846257befb17106489a6c8bcd73765cde4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3d:58:08:ae:b6:7c:c0:cf:ed:d6:af:54:bd:
d7:4f:d8:a9:e4:a5:39:d1:1e:a4:e4:37:f1:e8:b0:
2d:e2:4a:31:a0:27:bf:d6:90:c5:8e:c8:e2:2f:35:
82:1c:b4:56:ed:1b:7c:d0:9a:a7:d5:2c:68:7f:5b:
88:7c:1b:75:15:1c:0e:b3:98:a6:b7:7c:21:2f:d9:
7a:80:c5:1f:6f:fd:8c:8c:6a:5e:21:fa:15:6d:fc:
a6:07:2f:da:de:59:2d:d5:db:fc:19:b8:38:0a:ab:
4f:f0:0a:67:98:33:7c:0a:2d:27:fd:f3:66:bd:64:
bd:37:3b:0d:80:b9:5b:14:f6:98:37:14:d8:5c:98:
73:19:8b:39:c9:21:0a:31:9b:e7:93:e3:31:2f:56:
38:7e:1c:3f:e1:92:5b:24:e0:86:77:80:65:50:cd:
8d:ef:4b:5c:cd:8b:cf:ed:f6:13:46:7f:09:66:f5:
ef:99:60:38:31:d2:ab:49:f5:7f:bf:29:0e:b9:3b:
d6:76:82:e5:5d:7b:af:9a:23:c8:aa:27:58:3c:51:
28:ca:f6:6a:59:8a:9e:ab:7b:a1:b3:1a:29:79:04:
f0:1f:27:f9:d9:51:41:b5:98:55:66:f2:5b:a6:6f:
28:1e:c5:61:28:9f:b2:c4:5c:44:1f:a0:6d:4f:e8:
fb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:09:58:84:62:57:BE:FB:17:10:64:89:A6:C8:BC:D7:37:65:CD:E4
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:d5:09:9b:8b:64:4f:cc:9d:ae:07:01:4c:62:39:ff:d4:1c:
f5:b0:ed:52:1e:5c:cb:84:53:db:5b:55:8a:6f:71:fb:5a:41:
f0:77:82:bf:43:99:84:c3:0e:49:5a:92:c8:b2:0c:8b:31:1d:
e5:e7:67:7d:12:ff:f5:98:0a:7d:4c:78:1b:1b:f6:a4:c2:6a:
18:d4:7f:09:09:51:dc:71:4a:74:39:5f:09:07:6b:93:c3:b1:
4a:a5:44:74:89:bb:0c:75:64:d0:73:d8:c1:86:07:68:35:64:
ca:3e:a6:6c:f8:14:cd:97:47:e7:65:34:83:06:60:80:60:62:
90:21:41:fd:e9:08:22:d0:fe:bb:f0:93:34:c7:31:22:d1:92:
75:c3:6c:53:01:0f:cb:43:00:10:13:c4:6d:0e:c2:8c:d8:8c:
80:96:1f:5d:91:37:46:3d:76:58:5a:c1:25:dc:0d:c0:09:39:
47:58:ac:bb:70:ef:68:c2:9b:a0:c0:f5:98:f7:50:b7:f2:27:
66:cb:80:77:e5:1a:fc:1e:6d:a0:9e:0a:d7:c9:2f:84:07:3a:
ef:00:4a:23:cb:c6:9d:34:16:46:57:5f:ac:99:68:97:10:74:
a2:5d:c9:6b:0a:de:dd:e4:60:33:22:a0:25:91:0e:bf:38:ab:
a3:e2:17:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:34:58 2026 by rpki-client