Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: zkRCiUo+n0/KGrl33PoC2py7nvx8kQ+Ciu5A/FsMgBM=
Subject key identifier: D0:A6:46:95:AA:45:70:99:0F:5A:CD:AC:30:66:57:7A:19:05:7B:43
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 019CAA8FE94E646753E6AD0E6F1E7CCD12F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 14DB
Signing time: Sun 01 Mar 2026 18:01:23 +0000
Manifest this update: Sun 01 Mar 2026 18:01:23 +0000
Manifest next update: Mon 02 Mar 2026 18:01:23 +0000
Files and hashes: 1: N0lWMYy9L6tUgt5C_ALrdVgjFpM.roa (hash: 3TxHIvizHgvT9zapL1jqZMumyRmsqmWLMCRlhTI/E5A=)
2: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: oKTwAXVp/B6HfrGNWFLA1CZdWk9avxPdVPONS8XAlw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:e9:4e:64:67:53:e6:ad:0e:6f:1e:7c:cd:12:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Mar 1 18:01:23 2026 GMT
Not After : Mar 2 18:01:23 2026 GMT
Subject: CN=d0a64695aa4570990f5acdac3066577a19057b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7d:03:8c:48:43:fa:7f:cb:c5:fc:ab:98:54:
c3:52:8c:51:b1:f8:3e:86:bc:85:3f:2f:12:33:c3:
16:4a:a7:73:bb:4b:41:56:0f:ad:4a:67:55:f8:9b:
39:26:20:f0:84:70:dd:9e:c1:19:5f:2e:63:65:a4:
ce:11:fb:f1:36:b0:8f:28:37:1b:af:87:c0:86:a2:
5c:d8:9d:c3:be:85:48:b0:3c:7f:4c:18:31:f7:a5:
aa:7a:84:0f:14:67:26:7f:46:b2:4b:8c:c1:b9:56:
33:13:24:14:26:54:7d:33:e7:52:10:28:1b:38:88:
7f:12:12:b3:a9:72:62:5b:1f:c6:78:50:26:7e:fc:
87:27:35:af:2e:72:54:54:a3:ae:79:08:5d:6e:20:
39:8e:0c:f1:8b:7b:8b:76:75:5c:bb:5d:ce:f0:9d:
fb:2f:13:04:c5:54:cb:84:e7:71:9a:32:6b:8f:26:
ef:84:3d:82:b6:00:cf:b3:97:4b:0f:d0:f9:ee:0f:
b0:44:c0:ea:30:49:2f:27:98:e2:b7:c3:3f:e9:1a:
29:9d:f7:19:5c:a0:b8:b4:e7:8a:08:56:9f:5a:68:
d2:30:37:f8:e3:36:9a:2d:b9:86:ab:d4:2a:f6:62:
00:68:93:17:52:23:b9:75:8b:56:dc:c6:e1:0c:73:
6b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A6:46:95:AA:45:70:99:0F:5A:CD:AC:30:66:57:7A:19:05:7B:43
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a0:35:e8:62:71:1d:c1:14:7f:e5:49:70:b2:b1:aa:ef:7d:
05:be:84:5f:b3:c9:41:c6:a5:d4:42:e6:5e:9a:36:32:77:ee:
69:68:07:77:79:21:57:43:4b:08:c8:20:ed:b4:22:98:44:16:
38:66:3c:d1:d2:ed:06:10:07:db:90:9d:77:c5:4a:a0:f8:1f:
8c:fa:f4:d6:ed:e8:8b:4a:83:ea:a4:97:eb:a9:67:7a:c1:4a:
0e:f0:e1:d2:73:34:85:0c:51:d8:9f:66:ab:f8:51:f3:b0:aa:
43:cf:9a:c8:17:d6:60:b8:68:ef:3f:35:af:6a:92:31:53:6a:
f7:4b:97:0f:92:cb:2e:17:68:01:e4:63:0c:71:50:ce:e9:1f:
71:0f:51:97:20:2c:d4:ea:66:46:69:ee:9d:51:ac:30:4a:09:
97:a7:a7:52:ae:5b:b8:07:ad:35:3d:44:11:b9:97:f3:e7:e1:
66:3a:44:c2:4e:04:e6:8b:a5:96:f5:31:07:9f:ed:ea:cf:c8:
c4:25:89:4a:26:33:74:17:e9:28:11:bb:1f:57:48:a2:44:be:
9f:20:d1:dd:5a:c0:03:07:7f:96:b5:c2:19:ac:fe:66:29:5a:
55:3c:7e:d4:e2:9d:86:49:98:af:50:cf:d4:37:6a:06:96:81:
f1:14:91:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqj+lOZGdT5q0Obx58zRL2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZGVlMGFlODgzNDcwNTA4ODgwNTA0NGJlNzVjNzQwM2Ix
ZGM3ZTIwHhcNMjYwMzAxMTgwMTIzWhcNMjYwMzAyMTgwMTIzWjAzMTEwLwYDVQQD
EyhkMGE2NDY5NWFhNDU3MDk5MGY1YWNkYWMzMDY2NTc3YTE5MDU3YjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH0DjEhD+n/LxfyrmFTDUoxRsfg+
hryFPy8SM8MWSqdzu0tBVg+tSmdV+Js5JiDwhHDdnsEZXy5jZaTOEfvxNrCPKDcb
r4fAhqJc2J3DvoVIsDx/TBgx96WqeoQPFGcmf0ayS4zBuVYzEyQUJlR9M+dSECgb
OIh/EhKzqXJiWx/GeFAmfvyHJzWvLnJUVKOueQhdbiA5jgzxi3uLdnVcu13O8J37
LxMExVTLhOdxmjJrjybvhD2CtgDPs5dLD9D57g+wRMDqMEkvJ5jit8M/6RopnfcZ
XKC4tOeKCFafWmjSMDf44zaaLbmGq9Qq9mIAaJMXUiO5dYtW3MbhDHNruwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNCmRpWqRXCZD1rNrDBmV3oZBXtDMB8GA1UdIwQY
MBaAFD7e4K6INHBQiIBQRL51x0A7HcfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUt
NzlhYjQ4ZDgzYmFiLzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUtNzlhYjQ4ZDgzYmFi
LzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFKA16GJx
HcEUf+VJcLKxqu99Bb6EX7PJQcal1ELmXpo2MnfuaWgHd3khV0NLCMgg7bQimEQW
OGY80dLtBhAH25Cdd8VKoPgfjPr01u3oi0qD6qSX66lnesFKDvDh0nM0hQxR2J9m
q/hR87CqQ8+ayBfWYLho7z81r2qSMVNq90uXD5LLLhdoAeRjDHFQzukfcQ9RlyAs
1OpmRmnunVGsMEoJl6enUq5buAetNT1EEbmX8+fhZjpEwk4E5oullvUxB5/t6s/I
xCWJSiYzdBfpKBG7H1dIokS+nyDR3VrAAwd/lrXCGaz+ZilaVTx+1OKdhkmYr1DP
1DdqBpaB8RSRfw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:17 2026 by rpki-client