Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: cQiaXjM681b1ia6h2GjAHwZwIiTIFmzDOSHqoX8zyNA=
Subject key identifier: EE:E3:1E:4F:82:03:95:6C:23:D2:30:B6:0F:42:A2:9A:13:83:45:AE
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 019D98BDAD2FE0FAF872EADF98F616EEE889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 1852
Signing time: Fri 17 Apr 2026 00:01:00 +0000
Manifest this update: Fri 17 Apr 2026 00:01:00 +0000
Manifest next update: Sat 18 Apr 2026 00:01:00 +0000
Files and hashes: 1: RI1PUJj0Q_MD3P8uweukuXuYhlU.roa (hash: Udb4Yel6QV6x+EojTVD0SPU2vkANJh/DkSOzlaEFuOQ=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: qjo3yi9CLqf9/498UOLjJcKXrbI0roXuGWGjF9Uj1Pg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:ad:2f:e0:fa:f8:72:ea:df:98:f6:16:ee:e8:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Apr 17 00:01:00 2026 GMT
Not After : Apr 18 00:01:00 2026 GMT
Subject: CN=eee31e4f8203956c23d230b60f42a29a138345ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:79:e6:fa:98:e0:90:e3:e6:87:d8:af:69:
2b:fe:b6:c2:c7:27:db:fe:a8:92:68:08:dd:31:43:
8c:0b:4b:6a:e9:bf:0b:ed:c6:1e:26:fb:50:49:20:
f3:4e:b3:b0:8c:73:98:29:fd:fc:7f:40:b5:f1:3c:
bf:67:1f:87:82:87:ad:dc:e9:9a:97:cb:69:35:a0:
db:aa:43:83:39:e9:1c:58:52:76:db:eb:bb:2e:0e:
a2:ca:b4:7a:ab:a3:be:f9:49:6b:b4:a0:09:d7:98:
0e:45:ea:27:f7:dd:3f:f7:e5:e6:5e:a2:fa:b1:2e:
d5:cf:c0:c0:a1:a5:29:5c:2d:fe:76:7a:b1:9d:d6:
0d:31:13:4b:bd:cb:7f:18:d5:7f:e1:bd:76:8b:9c:
ac:02:ae:21:fb:78:8e:03:90:e5:b0:50:f2:a5:81:
78:bd:2c:49:cd:02:26:bd:03:7e:37:82:47:c9:9d:
de:e1:2b:fc:4c:4d:c2:be:e5:91:5f:02:3c:8b:5e:
62:03:26:08:a0:b8:15:b1:21:e6:b2:34:8c:d3:bb:
87:15:bd:75:a4:19:eb:86:e0:05:26:0f:60:63:d7:
28:55:69:97:07:27:b9:8a:f2:da:62:a3:01:7f:8e:
4f:7b:ff:92:22:18:c0:26:00:c0:32:ed:2b:63:56:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E3:1E:4F:82:03:95:6C:23:D2:30:B6:0F:42:A2:9A:13:83:45:AE
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:f4:91:3a:a2:ff:34:c6:4e:76:d4:b9:87:e5:da:a4:93:9f:
76:e2:2e:fc:6b:f2:31:3c:10:d4:11:98:a1:6d:b2:b9:86:44:
34:8d:64:6b:e5:19:a3:57:e7:ba:e6:3b:32:25:21:06:76:8d:
6a:95:88:53:1a:67:dd:45:14:34:f8:b4:9d:60:6b:f8:40:f8:
7f:f1:7e:3b:d2:37:d4:50:1e:c4:6c:81:a8:0b:bf:41:82:89:
22:8c:12:f9:71:a1:1c:74:4f:3d:57:00:d8:96:40:27:f8:a3:
0f:57:69:e5:f8:34:af:9e:c3:71:12:f0:67:f5:1e:38:87:ae:
59:d5:73:9f:8d:92:43:1e:5c:df:d4:18:32:57:40:be:72:67:
b8:18:a9:41:04:2e:8f:a6:e5:8a:70:64:98:1a:b4:e6:2e:d8:
d5:45:ea:74:34:40:43:c5:4d:2c:fd:3a:c6:15:b8:bd:5b:6e:
37:b7:82:9c:2c:f2:4e:2a:31:65:18:1e:fd:75:d6:4b:e2:af:
47:77:cf:89:d4:51:5e:77:38:8e:14:77:d5:aa:0a:dc:97:83:
1d:19:44:82:c6:b9:ef:00:fd:5d:7d:ea:e2:86:0c:c7:03:9b:
53:b5:b8:04:50:5f:34:26:28:49:e9:74:e0:6a:21:0a:15:06:
c4:75:c6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:27:26 2026 by rpki-client