Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json)
Hash identifier: 2wp82v9RXFXwcWB4ovG9FcLfx0hAYhsoBjvagw+dzjQ=
Subject key identifier: 15:7C:4D:FE:06:17:0A:5E:A4:4B:E6:C2:4A:06:71:2B:EA:3D:B0:FE
Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb
Certificate serial: 019CA9EB8C52951FF0272DE826BD93955D95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 15:01:51 +0000
Manifest this update: Sun 01 Mar 2026 15:01:51 +0000
Manifest next update: Mon 02 Mar 2026 15:01:51 +0000
Files and hashes: 1: 6v2it1qTQM_G9sWb1tDinWYpODY.roa (hash: kiBDfwv0URUTmxQqj/IJZu5OTfVLSt/qbBsgaeH3VdA=)
2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: NT+zOUG8UH31d3+c5fobDZPyT+AnwZKHRRcy2Y9zASs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:8c:52:95:1f:f0:27:2d:e8:26:bd:93:95:5d:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb
Validity
Not Before: Mar 1 15:01:51 2026 GMT
Not After : Mar 2 15:01:51 2026 GMT
Subject: CN=157c4dfe06170a5ea44be6c24a06712bea3db0fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cf:3b:f1:57:04:7a:31:7f:36:8c:14:d3:30:
49:8a:ab:56:5c:4c:07:c8:ed:ba:55:d2:ca:f8:e8:
dd:c4:55:19:c4:55:cd:11:50:b8:9b:02:a6:9c:89:
8a:61:fc:cb:8c:d8:3c:97:19:20:89:70:1c:75:ae:
a4:58:4d:bf:e6:2a:ff:37:db:81:aa:8a:48:37:78:
45:23:94:0f:98:99:88:26:0e:be:cd:9c:c9:50:b5:
a6:1f:af:71:7b:57:3b:7c:f1:78:82:73:ce:53:78:
4e:a7:de:cc:62:6f:b0:94:af:58:33:c7:fb:0f:ed:
d0:1e:91:d4:27:df:ee:f1:b1:18:12:1b:c5:da:65:
d8:d9:b9:0c:98:06:d4:53:6b:53:39:4f:40:8d:b7:
e1:4e:b0:85:8b:4e:d8:25:e5:7a:ef:30:f5:8c:0a:
ea:91:af:39:ce:26:47:c2:d1:c3:ab:00:c2:bb:4d:
2c:63:39:f4:76:7a:c2:6e:49:30:a0:1d:1f:04:f9:
87:d5:66:d0:84:56:d3:d7:a7:8b:97:0e:bc:c6:9e:
fd:42:f0:ed:97:41:81:b0:c1:fa:f5:46:cd:49:a6:
da:7f:95:21:dd:44:b2:c7:aa:5c:30:f5:25:50:12:
d1:11:66:4b:57:40:a6:a4:05:4c:94:62:82:ec:b7:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:7C:4D:FE:06:17:0A:5E:A4:4B:E6:C2:4A:06:71:2B:EA:3D:B0:FE
X509v3 Authority Key Identifier:
keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:8d:b5:69:bb:df:de:70:af:da:3e:fe:16:c8:7e:04:38:16:
3a:b9:82:cb:4b:85:d1:22:27:6d:3d:7b:05:5f:6d:e2:93:2c:
0e:a6:b3:f8:af:f0:c8:11:1d:f0:a2:d4:b7:5c:bb:41:a2:a7:
b5:47:56:80:40:d4:33:5c:21:4d:f7:3c:77:5c:49:0f:bf:b6:
49:6e:89:d4:47:6a:af:cb:51:fa:28:88:78:32:f6:36:14:f5:
27:49:f3:6b:5d:bd:3a:c0:df:2e:2d:a0:96:b6:81:04:34:41:
6d:1f:ab:45:f7:ae:7a:c5:c6:35:3b:9a:86:9d:f6:32:b6:33:
4e:e7:8d:82:de:4f:7f:38:47:a6:73:86:4f:13:6a:74:fb:23:
de:58:77:ed:19:87:e2:f2:0f:b1:26:bc:31:1f:91:09:87:24:
ba:18:bd:10:e9:9c:b5:68:42:85:ab:bf:b1:4d:b6:18:98:32:
d3:47:cc:a5:8b:44:7f:fd:d1:cc:bf:b1:43:cc:9d:d6:7c:3b:
d7:0c:7e:4c:1c:a1:a0:2e:b5:24:a3:85:fe:99:0d:f7:37:0c:
d7:16:8e:67:f4:0e:4a:49:24:78:cd:1e:98:60:18:e1:1b:7a:
c6:c9:a5:23:2e:b2:a1:ad:ba:6b:f6:2c:14:c6:46:c9:c4:17:
a9:4d:4d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:36:53 2026 by rpki-client