Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: P6EWmJaUywVO30jUIWngxxMhoDvBbLY7B2FK3P7Is5Q=
Subject key identifier: 7A:A1:13:BD:D7:B2:EA:0E:33:A0:27:DB:75:75:89:1E:99:F9:85:89
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019CAD5978AA824A310B0ABF6F2DBB04B028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 09B9
Signing time: Mon 02 Mar 2026 07:00:47 +0000
Manifest this update: Mon 02 Mar 2026 07:00:47 +0000
Manifest next update: Tue 03 Mar 2026 07:00:47 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: scm2Nue7hLTdV7JyTGkh56pDUMUT/nAvVNITppU+poo=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:78:aa:82:4a:31:0b:0a:bf:6f:2d:bb:04:b0:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Mar 2 07:00:47 2026 GMT
Not After : Mar 3 07:00:47 2026 GMT
Subject: CN=7aa113bdd7b2ea0e33a027db7575891e99f98589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e1:00:46:a1:11:2f:c1:d8:a3:16:31:04:39:
fb:52:e1:62:09:ea:63:5c:f0:f6:88:56:40:81:76:
7f:d2:e1:95:05:c6:62:61:1e:08:52:16:01:41:d1:
51:c7:bb:e1:46:99:6b:f6:c7:1c:8b:65:92:e4:9a:
e3:35:f4:d3:b0:ce:24:7b:ea:44:ea:23:39:15:d3:
f3:e3:4d:09:31:44:81:85:46:08:d4:12:74:d0:74:
6a:59:1d:ae:d4:a5:99:73:f3:0b:51:4d:fe:d0:bd:
71:6b:d2:c7:c2:8b:b7:16:26:e0:4a:d1:68:03:46:
66:67:40:8c:ab:3d:b7:31:89:7c:fc:5f:3c:99:76:
66:56:9e:cf:e9:5c:52:95:40:fc:32:a3:3c:69:49:
e9:0b:6d:67:c8:56:2b:cb:5d:f9:4c:07:45:a7:f7:
55:b6:0e:64:7a:8e:44:f3:68:bd:0c:dc:c9:27:09:
83:71:40:98:a7:b3:a7:95:fc:08:8d:54:db:e0:21:
86:15:6b:f1:0e:3f:8f:cd:df:70:e6:c4:f6:6d:ea:
14:91:14:f5:0a:aa:2c:5b:53:23:66:08:46:cb:27:
7d:46:0c:86:be:a4:f9:ed:ba:f2:e9:3f:f8:0d:af:
86:5d:ae:43:64:a9:2a:56:f6:c6:c4:de:84:d7:13:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A1:13:BD:D7:B2:EA:0E:33:A0:27:DB:75:75:89:1E:99:F9:85:89
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:16:7e:d7:b8:f9:7f:24:c4:8a:77:dd:2f:5c:51:b6:4b:da:
f8:6a:8e:8e:33:16:df:d6:50:50:c6:21:02:63:9d:4a:40:61:
d5:d6:e6:11:50:41:52:70:8f:1b:bd:71:f3:a8:34:89:d8:27:
ea:e2:5a:41:72:7f:c5:b4:0d:2b:90:f8:07:b4:dc:34:f5:64:
67:bf:32:cb:1e:ec:97:d1:0b:76:35:96:17:37:98:be:9e:ee:
47:10:7c:0c:49:be:a4:6a:8f:ce:46:0d:ad:d6:14:ba:32:1f:
88:05:eb:9c:15:26:63:65:1b:8f:ef:1a:da:e5:fc:51:5f:df:
cc:5c:75:01:a1:44:31:bc:e4:2b:37:c2:d2:f4:69:8c:c3:9e:
67:56:58:1c:19:e8:9b:ac:47:ff:46:22:e1:1b:43:70:da:3a:
be:46:8a:fd:49:54:1e:2c:cb:6b:43:9e:1b:f5:2c:23:ca:bb:
9d:0f:6c:81:bf:75:c7:33:9b:0e:62:83:1a:b7:95:72:08:c1:
77:79:84:22:33:3d:54:20:dd:19:e8:cf:55:73:6f:f7:9c:07:
57:27:44:86:84:4e:e0:40:f2:8e:59:88:42:5d:bd:bd:09:99:
22:4f:53:44:bf:24:24:bd:b4:29:50:bb:a9:8b:c1:1f:90:0d:
56:94:64:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWXiqgkoxCwq/by27BLAoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjYwMzAyMDcwMDQ3WhcNMjYwMzAzMDcwMDQ3WjAzMTEwLwYDVQQD
Eyg3YWExMTNiZGQ3YjJlYTBlMzNhMDI3ZGI3NTc1ODkxZTk5Zjk4NTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuEARqERL8HYoxYxBDn7UuFiCepj
XPD2iFZAgXZ/0uGVBcZiYR4IUhYBQdFRx7vhRplr9scci2WS5JrjNfTTsM4ke+pE
6iM5FdPz400JMUSBhUYI1BJ00HRqWR2u1KWZc/MLUU3+0L1xa9LHwou3FibgStFo
A0ZmZ0CMqz23MYl8/F88mXZmVp7P6VxSlUD8MqM8aUnpC21nyFYry135TAdFp/dV
tg5keo5E82i9DNzJJwmDcUCYp7OnlfwIjVTb4CGGFWvxDj+Pzd9w5sT2beoUkRT1
CqosW1MjZghGyyd9RgyGvqT57bry6T/4Da+GXa5DZKkqVvbGxN6E1xNHOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqhE73XsuoOM6An23V1iR6Z+YWJMB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATxZ+17j5
fyTEinfdL1xRtkva+GqOjjMW39ZQUMYhAmOdSkBh1dbmEVBBUnCPG71x86g0idgn
6uJaQXJ/xbQNK5D4B7TcNPVkZ78yyx7sl9ELdjWWFzeYvp7uRxB8DEm+pGqPzkYN
rdYUujIfiAXrnBUmY2Ubj+8a2uX8UV/fzFx1AaFEMbzkKzfC0vRpjMOeZ1ZYHBno
m6xH/0Yi4RtDcNo6vkaK/UlUHizLa0OeG/UsI8q7nQ9sgb91xzObDmKDGreVcgjB
d3mEIjM9VCDdGejPVXNv95wHVydEhoRO4EDyjlmIQl29vQmZIk9TRL8kJL20KVC7
qYvBH5ANVpRkXA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:00:13 2026 by rpki-client