Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: 9fLIwzXXmIRcmt8fGBijIy7UCEmFtkoR+Qx3+qlRMRA=
Subject key identifier: 19:BD:33:A7:F3:24:2C:44:7C:42:77:0C:10:09:4F:EF:F4:D4:D1:42
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019CAC102F6AFE4871873BCBC162269E527B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 04E2
Signing time: Mon 02 Mar 2026 01:01:07 +0000
Manifest this update: Mon 02 Mar 2026 01:01:07 +0000
Manifest next update: Tue 03 Mar 2026 01:01:07 +0000
Files and hashes: 1: XQv7wEz4cC45Y-u3Csa_kFWZP8A.roa (hash: Rg6Z2DsQeZ19hmYMspcAw/07/1QRuxsRYhNWi/fAiwc=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: iTvheVUtUtE5jMUPISKMIEzKZB1DYI1IRofRejW+uHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:2f:6a:fe:48:71:87:3b:cb:c1:62:26:9e:52:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Mar 2 01:01:07 2026 GMT
Not After : Mar 3 01:01:07 2026 GMT
Subject: CN=19bd33a7f3242c447c42770c10094feff4d4d142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c8:89:84:9b:1c:2a:44:6d:3e:9a:19:bd:c0:
77:b5:17:18:36:e4:b7:82:f7:6a:89:75:f1:64:a4:
66:31:f7:43:7b:6b:11:8d:6f:8e:ac:4c:03:00:6b:
a9:cf:23:75:35:5b:51:55:02:2f:a5:2c:16:22:e0:
25:53:ee:b5:e0:0b:07:08:bf:da:07:6d:c7:45:46:
83:a1:68:4e:56:4c:26:52:d8:0f:a6:fa:2a:d5:17:
d1:ef:8b:23:98:65:c0:b1:ad:fa:a4:46:19:c7:90:
9b:71:7f:48:63:2a:ac:a7:b4:f4:68:44:9f:fc:d7:
35:48:a3:6e:ef:1b:74:96:4b:65:bb:7b:eb:b1:4e:
62:ce:c2:ed:0a:36:90:dc:b1:66:70:32:bb:ba:c7:
ca:45:71:eb:3b:09:2c:da:bf:18:db:a1:b6:23:13:
f7:38:0e:39:e6:90:90:79:f7:7f:4d:90:47:6b:0d:
64:e0:4e:02:1a:1d:7d:01:6e:8f:49:80:60:c6:68:
05:e0:b8:e4:8c:82:50:56:bb:a6:4e:ca:d5:d1:7b:
9b:95:66:3c:92:c2:16:8c:ee:fa:5a:e5:5a:67:00:
45:9e:1b:85:2d:02:62:10:5f:0b:63:57:59:e4:b5:
d0:71:2d:d2:47:6c:b6:77:80:6f:0f:67:a0:58:e7:
10:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BD:33:A7:F3:24:2C:44:7C:42:77:0C:10:09:4F:EF:F4:D4:D1:42
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:91:8f:d4:c8:c7:58:ea:9d:f1:ad:67:ea:78:c5:a8:4c:11:
c8:d0:64:4f:16:fa:31:05:bd:43:c1:b9:34:7b:98:11:e4:94:
79:60:ca:59:af:e1:ef:87:22:df:28:e5:1f:b7:f5:36:cf:0d:
0b:2b:06:77:83:7c:8f:41:f0:99:f5:ce:a4:1f:e5:5d:75:f2:
bf:09:cc:7a:b7:17:7e:12:b8:3f:64:4e:5f:f8:75:eb:c6:2c:
5a:0a:bb:ae:60:c0:56:18:14:52:14:7d:a7:7f:90:ef:ee:ae:
b7:db:3b:d7:fb:1c:43:6c:ea:b4:93:68:6f:e6:51:83:b9:e2:
1d:7e:f9:18:85:e1:d9:ee:7a:7a:38:85:57:5e:db:2e:75:82:
ca:25:8d:bc:2b:f2:2c:15:37:8f:48:16:89:a0:28:f0:c7:50:
87:ce:6f:60:95:50:0a:bc:e0:5c:1b:48:fc:fd:3d:e6:cc:bc:
63:b2:ed:21:01:80:ef:8b:89:6e:88:aa:e2:48:42:bf:4b:f1:
6c:c0:80:ad:5f:ce:66:d7:3d:dc:d9:33:8a:b2:7f:89:f8:99:
eb:36:97:11:0b:0b:90:a5:af:72:2a:a0:ce:74:8e:6c:dd:a4:
f8:1b:a0:21:5d:67:04:be:04:68:d7:d8:d2:fd:91:23:af:fb:
4a:2b:cd:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysEC9q/khxhzvLwWImnlJ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NTA3NWI4ZTQyZTQ1MTRlZjQ5ZDNmZWEyZjE4NzI2NGU3
NGZiMmUwHhcNMjYwMzAyMDEwMTA3WhcNMjYwMzAzMDEwMTA3WjAzMTEwLwYDVQQD
EygxOWJkMzNhN2YzMjQyYzQ0N2M0Mjc3MGMxMDA5NGZlZmY0ZDRkMTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8MiJhJscKkRtPpoZvcB3tRcYNuS3
gvdqiXXxZKRmMfdDe2sRjW+OrEwDAGupzyN1NVtRVQIvpSwWIuAlU+614AsHCL/a
B23HRUaDoWhOVkwmUtgPpvoq1RfR74sjmGXAsa36pEYZx5CbcX9IYyqsp7T0aESf
/Nc1SKNu7xt0lktlu3vrsU5izsLtCjaQ3LFmcDK7usfKRXHrOwks2r8Y26G2IxP3
OA455pCQefd/TZBHaw1k4E4CGh19AW6PSYBgxmgF4LjkjIJQVrumTsrV0XublWY8
ksIWjO76WuVaZwBFnhuFLQJiEF8LY1dZ5LXQcS3SR2y2d4BvD2egWOcQywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBm9M6fzJCxEfEJ3DBAJT+/01NFCMB8GA1UdIwQY
MBaAFKVQdbjkLkUU70nT/qLxhyZOdPsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUt
N2JmZGE2MjU0NGNlLzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUtN2JmZGE2MjU0NGNl
LzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaJGP1MjH
WOqd8a1n6njFqEwRyNBkTxb6MQW9Q8G5NHuYEeSUeWDKWa/h74ci3yjlH7f1Ns8N
CysGd4N8j0HwmfXOpB/lXXXyvwnMercXfhK4P2ROX/h168YsWgq7rmDAVhgUUhR9
p3+Q7+6ut9s71/scQ2zqtJNob+ZRg7niHX75GIXh2e56ejiFV17bLnWCyiWNvCvy
LBU3j0gWiaAo8MdQh85vYJVQCrzgXBtI/P095sy8Y7LtIQGA74uJboiq4khCv0vx
bMCArV/OZtc93NkzirJ/ifiZ6zaXEQsLkKWvciqgznSObN2k+BugIV1nBL4EaNfY
0v2RI6/7SivNCA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:46:36 2026 by rpki-client