Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
File: pI2lIJvWz5DG321-bWOmOVW61LU.mft (raw, json)
Hash identifier: uiyAlo/8TyZ6C9j32RRbhTFTiaRxcx1/U52rhCI03Rw=
Subject key identifier: 12:20:B2:8F:CF:6E:7D:C0:CB:DD:5A:E7:61:0A:D9:DB:51:4F:16:79
Authority key identifier: A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
Certificate issuer: /CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Certificate serial: 019D984F9DB5AA3871455B30CE58ED68AAF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
Manifest number: 094A
Signing time: Thu 16 Apr 2026 22:00:47 +0000
Manifest this update: Thu 16 Apr 2026 22:00:47 +0000
Manifest next update: Fri 17 Apr 2026 22:00:47 +0000
Files and hashes: 1: gvfxgS9VdbGwIqb9SxlXG1MbNbM.roa (hash: JUjuVP1XRuU3MRxww3ep16uVkjCeigeMEzaVCeFSa2A=)
2: pI2lIJvWz5DG321-bWOmOVW61LU.crl (hash: 36YbflGmBVJpbe+l4ibkJKUmpdksOzSNikkkyNiQtZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:9d:b5:aa:38:71:45:5b:30:ce:58:ed:68:aa:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Validity
Not Before: Apr 16 22:00:47 2026 GMT
Not After : Apr 17 22:00:47 2026 GMT
Subject: CN=1220b28fcf6e7dc0cbdd5ae7610ad9db514f1679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2d:aa:24:8a:b7:ac:ed:1c:e7:19:07:91:e5:
b8:95:73:5e:ee:25:b4:f9:05:f1:aa:40:30:b5:c3:
86:0b:ad:d8:a9:91:80:03:fd:79:e0:08:9a:dd:b4:
6f:c5:4d:2e:a3:d6:22:94:82:8d:e6:fa:e9:d4:c8:
1d:ee:ca:49:ee:2a:b2:a6:f6:d3:60:b6:39:eb:96:
66:f9:45:31:6c:68:31:2b:e4:a7:65:8f:19:58:c5:
22:d6:0e:0d:33:5d:fd:1a:75:f5:2b:2f:82:ad:4c:
b9:fe:ef:ad:98:a7:30:3c:a6:4a:0d:1c:90:d5:d2:
6f:7e:f7:d5:25:40:54:07:2f:55:60:ff:98:d6:54:
11:ec:62:37:ec:14:b9:5e:ca:48:c9:18:db:2d:54:
65:ef:9c:99:c3:a7:9c:d4:52:1a:e9:34:35:7d:e0:
e8:83:75:4f:49:6a:64:e4:0a:d0:37:fe:6d:4a:92:
57:ac:c5:08:a5:c9:a7:ca:fa:59:69:76:67:4a:db:
8d:38:bb:a8:36:45:a8:ce:ee:70:1d:39:08:da:cc:
b6:c8:e9:9c:07:61:e0:2b:86:73:9a:15:6c:cf:f8:
14:e9:7e:4f:1b:54:e2:52:13:e8:c6:ad:7b:9a:5c:
0d:ea:89:a3:45:3f:2c:6b:09:fd:0e:6a:ba:32:56:
63:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:20:B2:8F:CF:6E:7D:C0:CB:DD:5A:E7:61:0A:D9:DB:51:4F:16:79
X509v3 Authority Key Identifier:
keyid:A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:38:12:c1:ad:91:8d:b1:52:9e:10:b4:1b:05:3a:4f:c4:d5:
d2:35:f3:03:72:76:47:f5:5c:35:d5:86:59:3c:0b:b3:3d:50:
33:f4:d3:9c:80:7f:43:aa:1a:90:09:88:61:37:eb:ab:e2:62:
03:a2:26:99:25:c6:2c:55:34:aa:51:40:7c:59:9d:f1:ac:19:
8f:ea:c8:89:51:ee:32:4c:d2:88:ff:c2:cd:e4:46:91:36:bf:
46:b6:54:98:f1:a5:7f:ea:8f:f5:26:95:f9:ca:d7:bf:3b:02:
cb:76:b8:98:3c:ce:cd:c5:94:0a:d2:4b:2b:4e:45:4e:84:6c:
49:f6:3c:28:0b:5f:3d:60:db:43:2d:76:f1:29:07:27:eb:96:
88:8f:35:a0:ba:93:01:fd:e7:e5:23:ea:ab:4a:eb:a6:95:12:
b0:fa:02:42:fd:84:a2:13:10:2d:3a:45:89:74:50:08:08:66:
13:17:6c:ad:a2:d3:6a:2a:74:ad:9e:84:dd:dd:94:c6:de:82:
63:e4:de:86:19:37:e7:83:ee:c5:57:7e:eb:b1:98:57:d9:a2:
80:0d:99:bb:aa:92:67:6e:69:14:ee:55:0d:47:53:43:ff:ad:
80:b1:f6:59:ce:39:07:61:46:dc:61:ee:c1:e8:74:66:ce:05:
90:f5:c2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:57:23 2026 by rpki-client