Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: Kv4o37iXY0YI+llcdNjJXnJhIY45/2NgYXMdPxiNejQ=
Subject key identifier: 5A:7B:DE:55:1E:8E:02:EC:D4:B1:87:DE:5E:40:B7:E2:4C:77:F1:55
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019CAD2298BA90F8C0032B4AFE0F87E4E478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0C4F
Signing time: Mon 02 Mar 2026 06:00:51 +0000
Manifest this update: Mon 02 Mar 2026 06:00:51 +0000
Manifest next update: Tue 03 Mar 2026 06:00:51 +0000
Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: k9N2m9RayE9TPp8hhvuPvuW9tEstpHO/+hqf7t82zfg=)
4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:98:ba:90:f8:c0:03:2b:4a:fe:0f:87:e4:e4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Mar 2 06:00:51 2026 GMT
Not After : Mar 3 06:00:51 2026 GMT
Subject: CN=5a7bde551e8e02ecd4b187de5e40b7e24c77f155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f9:72:7f:b7:d4:13:d0:8d:ec:36:ce:42:6d:
6b:91:e6:6e:7e:68:2f:04:08:6a:56:89:e1:a7:66:
6b:56:61:dc:53:ec:91:13:22:bc:16:ac:d5:86:f0:
b0:af:2e:2e:fb:c4:93:30:aa:1e:a7:cf:ad:33:6a:
3a:b6:3a:d1:90:59:38:d1:f3:e9:3d:05:1b:a6:c4:
86:17:97:b1:0e:9d:c5:b1:3f:bc:95:ca:f7:a3:3f:
e9:4a:69:f2:1e:5e:58:1a:f9:63:8b:2f:a9:97:9b:
8c:45:17:fa:43:0f:14:f9:4c:1a:79:72:17:ba:bf:
4c:02:68:d9:f1:b9:1b:ba:08:ee:bc:76:1f:de:7f:
21:22:ef:ec:61:5d:11:54:bb:40:7e:51:c3:9a:2e:
69:e0:02:43:88:5b:4e:00:c0:7d:8b:8c:29:a5:d7:
4a:5c:a1:9c:62:31:17:a5:56:31:7a:7b:d2:79:1f:
fe:5b:cb:3c:40:02:cb:4c:0d:55:24:06:8e:cc:c0:
01:37:28:04:71:1f:92:64:53:f0:27:a0:85:f8:ef:
6c:4a:c0:1e:d6:7d:91:43:be:7d:cc:a6:34:ca:11:
0d:4e:d8:38:af:1b:b2:d5:77:2c:41:fd:d9:42:e5:
f7:df:57:10:55:a3:55:f8:ec:85:0c:a2:8d:58:32:
33:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7B:DE:55:1E:8E:02:EC:D4:B1:87:DE:5E:40:B7:E2:4C:77:F1:55
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e8:9c:d3:53:cf:90:82:ea:c7:32:a4:d3:5c:38:a5:44:11:
f6:f3:03:b3:94:d7:1f:f7:c1:e5:d6:dc:2f:9c:32:99:38:fb:
b5:ba:69:18:02:b6:7b:a9:fe:2f:99:33:2f:6e:36:8e:dc:7a:
dc:db:b4:02:07:88:c2:1c:6c:bf:15:6d:57:10:4c:12:5c:63:
9c:86:50:91:ad:39:21:42:41:d6:89:62:b7:36:c4:0e:05:4d:
a0:e4:26:19:3c:29:d0:51:32:4a:6f:d5:84:d4:8d:47:ee:bf:
a4:2e:a5:69:6e:fb:e3:a1:a1:c3:06:ba:c0:4c:3c:f5:91:41:
5b:d6:ee:07:81:ad:ae:9d:45:2d:f4:08:06:6a:8d:2c:b8:51:
dd:fb:10:6d:4e:e2:a6:1d:23:27:02:6b:4c:e9:79:b2:34:8e:
e9:39:71:db:97:3a:5f:e6:73:55:62:a6:d8:2a:7d:45:1f:f4:
ff:24:6c:87:ca:38:da:c0:92:8a:40:b0:9e:a2:24:41:97:b4:
af:48:a7:be:a0:2c:38:f8:e2:5b:10:b6:86:aa:b5:26:42:7f:
fc:8e:ff:05:1a:5f:08:eb:bf:eb:2f:6e:1c:c0:06:25:1d:0f:
65:99:04:1b:9d:7d:51:5c:3e:87:61:77:a4:38:c8:ee:48:61:
91:89:06:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:14:46 2026 by rpki-client