Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
File: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft (raw, json)
Hash identifier: EpNZsR8ieMQRIwjqjzmQ4WbcRhSItvC6g+mSL1DT8IE=
Subject key identifier: 54:43:D0:39:28:5F:5B:F1:A6:F5:44:54:4A:33:A3:03:97:CE:59:72
Authority key identifier: A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
Certificate issuer: /CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Certificate serial: 019CAE6C3744D8A87C83822392A06D7ACE61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 12:00:53 +0000
Manifest this update: Mon 02 Mar 2026 12:00:53 +0000
Manifest next update: Tue 03 Mar 2026 12:00:53 +0000
Files and hashes: 1: 5Gr2q7ZQUry_6juJo6TbPmIZ_GI.roa (hash: CLid1uYJD/tWmQGqtEiBJvjm9/bPdenK+e3VYv871Vk=)
2: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl (hash: LpAljKjT2y9YXWW3jdAWvnS87TdDtFJRjQNllC3EQvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:37:44:d8:a8:7c:83:82:23:92:a0:6d:7a:ce:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Validity
Not Before: Mar 2 12:00:53 2026 GMT
Not After : Mar 3 12:00:53 2026 GMT
Subject: CN=5443d039285f5bf1a6f544544a33a30397ce5972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ef:08:fb:02:a3:4d:da:5b:fd:e8:ed:af:e9:
2c:a2:56:e0:8d:d7:5a:e7:60:01:e0:b2:06:b3:c7:
f1:7c:cc:de:b8:dd:4b:63:7d:02:2d:fc:fd:29:79:
74:0c:bf:32:76:b2:96:9e:43:f0:aa:0a:28:fd:61:
3c:3c:ac:3a:b4:b1:e1:ce:1b:99:f4:2f:12:b6:7a:
33:92:ab:17:9f:3f:c1:1e:c4:60:ed:6a:40:90:cb:
40:f3:68:7c:04:e0:00:43:2e:0c:52:78:f0:7f:84:
22:ae:8e:73:b1:45:c3:69:dd:2d:26:c7:0b:d0:0e:
b1:06:c5:08:2b:8a:1b:55:99:8a:1f:24:9c:38:91:
98:fe:cc:d9:c9:a0:da:1a:19:5c:78:af:03:09:b2:
3e:ae:ea:2d:59:05:65:f1:5f:c1:c2:5e:92:c1:c5:
e0:21:1d:89:8b:52:14:2b:a1:f9:03:7b:82:f5:a6:
ec:75:b9:0d:da:83:54:c3:a7:92:a9:1d:0f:65:12:
02:cc:08:f9:66:69:0a:23:ae:fd:0d:d8:fe:51:b0:
c0:21:4b:a2:4c:62:09:88:ea:6b:e8:68:55:70:c5:
2d:33:b1:d2:05:60:3d:bc:1d:fe:56:6e:27:e5:ee:
ed:0f:18:fa:58:81:fa:cf:d6:c8:30:ff:a8:51:a9:
b9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:43:D0:39:28:5F:5B:F1:A6:F5:44:54:4A:33:A3:03:97:CE:59:72
X509v3 Authority Key Identifier:
keyid:A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:83:41:c4:1d:5f:f1:b4:1a:48:d2:02:9b:4d:6f:b4:a8:62:
b6:82:e1:c6:fb:b8:e3:af:32:8c:22:4e:15:ff:2b:16:5e:06:
f1:4c:db:99:b9:39:85:5f:82:52:a0:89:66:d0:c8:11:6f:7a:
26:11:0b:46:f7:d5:54:1d:1b:cc:d0:e6:b7:a5:0f:17:35:78:
f0:04:41:23:80:75:77:96:1e:36:75:38:c4:d2:19:74:6e:c6:
a0:71:1f:37:71:e8:17:22:9f:25:c3:0c:56:5e:d9:62:fc:83:
50:37:8b:8e:7d:e4:35:b3:de:37:e7:2e:4b:c8:d6:be:db:bc:
1f:c3:4c:61:79:92:7a:3c:2d:59:31:ff:4f:48:fd:13:30:1b:
28:e5:42:4b:c0:e2:a1:fd:0b:4e:aa:77:bc:36:8f:59:25:5a:
5c:bc:2a:8d:3d:87:60:a3:88:d3:95:3e:b0:9c:63:19:90:73:
36:dd:d0:b5:20:eb:e2:7c:11:80:b5:59:e4:40:e9:14:61:b7:
d1:6f:f5:c9:64:e9:60:ce:dd:4e:a2:f5:79:f8:1b:47:aa:dc:
e5:e7:a9:22:b8:35:90:a9:13:24:25:70:de:b0:a4:b3:7c:c0:
6a:96:55:7d:12:b5:19:40:7b:7e:b1:a2:98:5c:a3:79:74:12:
81:9c:ac:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:09:19 2026 by rpki-client