Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: FYhLEzAiMaN8ZYQvGK/W0fbqiaalcJ1MXOPiC65KWKI=
Subject key identifier: A7:47:E7:BB:E2:5A:24:26:7E:31:E9:D8:CD:26:FF:D4:D4:49:4A:68
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 019CACEB9FE539A3BBD5917A9697AF07880A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 05:00:48 +0000
Manifest this update: Mon 02 Mar 2026 05:00:48 +0000
Manifest next update: Tue 03 Mar 2026 05:00:48 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: NSIdGflRd1WlYyfRSwzSQkpw1fTM/J97vHIj6Ct7arg=)
2: fTOZ6bwIEmD97JXBK2cTtsKp-dQ.roa (hash: ydQrbbkIB0mroPHTm9Ff78/w6YQRKyZSWJF5ki0jYCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:9f:e5:39:a3:bb:d5:91:7a:96:97:af:07:88:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Mar 2 05:00:48 2026 GMT
Not After : Mar 3 05:00:48 2026 GMT
Subject: CN=a747e7bbe25a24267e31e9d8cd26ffd4d4494a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:41:69:d5:74:eb:8f:18:01:40:b6:b0:08:ad:
84:f5:14:4a:f1:04:29:fd:ca:98:bd:51:09:04:08:
e9:35:14:8a:24:09:75:ea:59:30:23:f4:cd:33:b3:
43:e6:e0:66:e6:1d:04:78:f2:f9:2f:0d:71:2d:4d:
3f:39:96:f8:34:bc:22:33:3a:bf:b3:2c:73:1a:70:
d6:16:75:39:11:9f:f7:5c:2d:e1:28:b5:27:10:56:
62:b2:f6:6b:ca:c1:00:44:29:c1:6d:9d:75:c8:90:
3f:64:da:0c:7c:8d:09:56:27:a9:df:c3:89:2d:0b:
8d:88:25:4b:f7:ff:6d:ef:a0:3f:de:6c:d2:40:bd:
90:99:fe:06:30:ec:88:18:80:ae:79:38:8c:cb:8c:
5d:17:b6:2b:2e:1a:65:ff:19:78:94:c5:c7:d7:ef:
89:8b:6a:14:b2:78:19:b8:a2:d7:43:c4:dd:b7:03:
90:02:00:38:86:a5:78:a8:e1:8e:8d:67:a5:51:87:
f5:36:9d:f4:66:17:9d:cc:af:78:cb:54:6e:b8:6a:
a0:c9:8d:c4:fe:83:c2:00:15:90:1d:da:fd:a3:64:
4f:ee:a1:cd:62:13:58:c6:17:d5:2f:f8:dc:1e:da:
b1:cb:3a:b1:a4:fd:be:7a:1d:e3:43:4f:88:22:a3:
97:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:E7:BB:E2:5A:24:26:7E:31:E9:D8:CD:26:FF:D4:D4:49:4A:68
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ef:fc:a6:8c:88:6a:a9:1a:8f:87:ba:96:94:08:c7:ff:f9:
92:08:1b:3b:1b:e4:0c:33:2c:be:29:f4:af:5a:15:dd:fd:d3:
84:05:d2:f4:13:ed:53:37:bd:ea:ba:39:7f:b3:ab:30:74:a7:
ec:d4:b3:c2:f2:fe:91:cb:d1:2c:af:7d:ef:5a:11:08:18:58:
14:3b:da:f3:77:2f:b1:9e:29:ba:fd:b8:b3:a4:22:48:f2:5b:
4f:98:3a:c0:62:d4:0f:4b:03:75:1c:85:55:6a:eb:9f:c5:17:
f1:fc:b9:e2:63:23:26:c3:8a:a8:86:82:c5:8f:f2:82:06:07:
21:63:e4:0d:1c:bb:7b:e4:23:b8:84:a5:52:0d:20:f5:3d:f5:
0f:c6:46:f3:ae:87:3b:17:f2:8d:f5:1e:f7:1c:8f:ca:3b:3c:
86:50:82:04:59:ca:51:57:45:90:29:c8:ab:ad:ba:c6:42:6f:
9f:d1:7f:31:5d:94:36:68:6d:83:d0:fa:47:d6:8e:01:0a:df:
dd:1c:46:2c:0b:73:e0:1d:e3:77:6c:50:9c:cb:be:ad:48:00:
11:12:e3:d5:d6:b8:2b:a1:bc:7c:58:8a:86:7c:4e:91:93:0b:
7d:42:d3:7c:2b:3c:11:a7:a8:f8:f3:2d:f0:1c:2d:2f:59:f7:
1c:92:21:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys65/lOaO71ZF6lpevB4gKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNDYzYzI3OGI4NGUyZGYwMGE0N2JjMmQ4MGM4ZDgwZmZh
OWJhODkwHhcNMjYwMzAyMDUwMDQ4WhcNMjYwMzAzMDUwMDQ4WjAzMTEwLwYDVQQD
EyhhNzQ3ZTdiYmUyNWEyNDI2N2UzMWU5ZDhjZDI2ZmZkNGQ0NDk0YTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkFp1XTrjxgBQLawCK2E9RRK8QQp
/cqYvVEJBAjpNRSKJAl16lkwI/TNM7ND5uBm5h0EePL5Lw1xLU0/OZb4NLwiMzq/
syxzGnDWFnU5EZ/3XC3hKLUnEFZisvZrysEARCnBbZ11yJA/ZNoMfI0JViep38OJ
LQuNiCVL9/9t76A/3mzSQL2Qmf4GMOyIGICueTiMy4xdF7YrLhpl/xl4lMXH1++J
i2oUsngZuKLXQ8TdtwOQAgA4hqV4qOGOjWelUYf1Np30ZhedzK94y1RuuGqgyY3E
/oPCABWQHdr9o2RP7qHNYhNYxhfVL/jcHtqxyzqxpP2+eh3jQ0+IIqOXrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKdH57viWiQmfjHp2M0m/9TUSUpoMB8GA1UdIwQY
MBaAFONGPCeLhOLfAKR7wtgMjYD/qbqJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC85N2JhY2UtYjJkNS00MDUyLThmNjEt
NWYyZGZlZDVkMWE0LzEvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC85N2JhY2UtYjJkNS00MDUyLThmNjEtNWYyZGZlZDVkMWE0
LzEvNDBZOEo0dUU0dDhBcEh2QzJBeU5nUC1wdW9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+/8poyI
aqkaj4e6lpQIx//5kggbOxvkDDMsvin0r1oV3f3ThAXS9BPtUze96ro5f7OrMHSn
7NSzwvL+kcvRLK9971oRCBhYFDva83cvsZ4puv24s6QiSPJbT5g6wGLUD0sDdRyF
VWrrn8UX8fy54mMjJsOKqIaCxY/yggYHIWPkDRy7e+QjuISlUg0g9T31D8ZG866H
OxfyjfUe9xyPyjs8hlCCBFnKUVdFkCnIq626xkJvn9F/MV2UNmhtg9D6R9aOAQrf
3RxGLAtz4B3jd2xQnMu+rUgAERLj1da4K6G8fFiKhnxOkZMLfULTfCs8Eaeo+PMt
8BwtL1n3HJIhfg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:05:00 2026 by rpki-client