Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: V4JRnaC4AvjwmR4CIUaw2lnaloHT133gb52rFkM6W5g=
Subject key identifier: DB:FA:56:97:08:21:3F:84:5F:BF:7A:17:65:7E:6A:00:98:55:E0:F6
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019D9BBF04D99A14E958C7F286D1D478FB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0B4A
Signing time: Fri 17 Apr 2026 14:01:20 +0000
Manifest this update: Fri 17 Apr 2026 14:01:20 +0000
Manifest next update: Sat 18 Apr 2026 14:01:20 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: vkaBETI3uVXznwTwQRkId4LMr9hcNTuYsNbTkujr1SQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:bf:04:d9:9a:14:e9:58:c7:f2:86:d1:d4:78:fb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Apr 17 14:01:20 2026 GMT
Not After : Apr 18 14:01:20 2026 GMT
Subject: CN=dbfa569708213f845fbf7a17657e6a009855e0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:21:2f:90:1d:51:96:dc:6d:e8:70:16:7a:4b:
2a:aa:3b:31:72:1a:74:29:bf:e3:23:45:37:0a:c2:
cd:b0:2d:ed:ca:be:02:8e:1d:bb:b5:50:84:11:39:
15:3a:a3:15:47:fb:52:4a:ec:60:b7:25:c3:94:bf:
fa:23:b7:94:a9:93:82:b1:b5:36:45:98:a6:9d:89:
23:61:8c:ef:76:48:c0:cc:e8:73:38:09:a1:fb:c1:
67:74:cb:50:b3:2f:d6:49:13:bd:f7:fc:25:db:b6:
c8:89:f3:95:22:25:d8:90:a8:ba:48:89:fd:42:4f:
c3:56:7c:29:16:d7:56:ba:39:32:bc:da:b1:58:fe:
01:b0:86:55:0c:5a:6c:f2:a2:23:3b:1c:79:13:7b:
0b:95:a9:30:7f:0e:9f:2d:05:52:ec:ba:58:21:a0:
af:9e:ca:f0:68:b3:74:c8:fa:8d:c3:b5:e0:38:6f:
17:b4:7b:fe:2e:61:b3:da:db:25:0a:a0:76:62:47:
36:4c:49:73:b1:5e:aa:28:5d:95:4c:85:03:3c:83:
fb:63:9a:26:6b:63:30:db:38:d6:f7:79:ab:37:df:
53:24:25:b8:83:c4:2a:1c:3a:82:e1:88:10:4e:f7:
e0:cd:3e:0c:cc:e4:28:48:f4:4f:53:c3:42:71:81:
af:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FA:56:97:08:21:3F:84:5F:BF:7A:17:65:7E:6A:00:98:55:E0:F6
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6a:50:52:75:4e:16:1d:44:11:1e:87:dd:bb:d6:4a:85:fa:
c4:1f:19:45:4c:65:18:ab:d0:aa:74:5f:f9:d1:50:8d:2d:31:
0b:11:1f:b0:88:8d:1e:d2:14:d9:67:db:52:a3:2a:d3:85:4a:
cf:fb:fb:21:cd:4d:67:cf:61:0f:ff:75:3e:f5:29:88:88:21:
b9:be:02:dc:3e:c6:e5:84:42:4c:ca:78:2c:f7:a2:99:82:ed:
5f:7a:85:80:95:cb:44:ba:97:7b:d4:f1:47:93:0c:2e:82:70:
be:55:b8:5c:1c:a0:b3:2e:ff:4c:09:df:bb:9b:86:ee:54:35:
90:10:24:19:70:a6:3a:05:ac:da:79:80:0a:f9:30:ef:7c:c2:
15:02:ae:bd:5f:74:9f:d1:13:48:fa:ec:c0:88:4e:3c:4f:50:
79:42:9e:dc:cd:82:c6:de:a6:fd:3c:46:5e:38:db:a6:8a:9e:
41:3b:bc:35:4d:7a:c7:58:ab:7d:4b:89:b1:e4:61:76:e6:5e:
00:4c:33:05:83:4f:66:a6:81:43:15:27:b6:70:11:15:08:19:
18:b4:54:08:0a:9c:a7:ec:6c:f6:e9:0d:07:b2:8c:f3:8b:96:
0d:e8:54:4f:91:b9:2f:b6:81:cd:9a:02:02:f0:6f:75:5b:d9:
aa:98:4f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:05:07 2026 by rpki-client