Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
File: pI2lIJvWz5DG321-bWOmOVW61LU.mft (raw, json)
Hash identifier: Xwhk2wHQpwooY837vlhphoeZFybm3NHjYiAoUwSND/4=
Subject key identifier: EA:99:BD:29:A1:BF:42:75:2B:41:58:04:A7:08:D7:A4:EE:24:AB:02
Authority key identifier: A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
Certificate issuer: /CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Certificate serial: 019CAAC641F6FDD0E1EC44F7CC839861CBA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
Manifest number: 08CF
Signing time: Sun 01 Mar 2026 19:00:45 +0000
Manifest this update: Sun 01 Mar 2026 19:00:45 +0000
Manifest next update: Mon 02 Mar 2026 19:00:45 +0000
Files and hashes: 1: gvfxgS9VdbGwIqb9SxlXG1MbNbM.roa (hash: JUjuVP1XRuU3MRxww3ep16uVkjCeigeMEzaVCeFSa2A=)
2: pI2lIJvWz5DG321-bWOmOVW61LU.crl (hash: RMaYhFRlZaRJophaZk1WsQWy79ow9hgUfRq/Ty48eSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:41:f6:fd:d0:e1:ec:44:f7:cc:83:98:61:cb:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Validity
Not Before: Mar 1 19:00:45 2026 GMT
Not After : Mar 2 19:00:45 2026 GMT
Subject: CN=ea99bd29a1bf42752b415804a708d7a4ee24ab02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ba:33:9a:09:2c:80:80:46:59:af:0b:3c:73:
99:2e:3b:ad:e2:03:b3:b8:e3:c0:4f:34:44:2d:81:
a7:d9:0f:86:d4:46:2e:06:68:7d:3b:ba:b6:50:ca:
cf:73:30:00:d6:75:0f:66:f4:93:3e:cb:49:a6:79:
76:1e:01:a2:5c:7f:5f:67:7e:6b:06:5f:51:4e:44:
3d:b4:c4:92:16:b2:eb:df:e1:b1:e9:0a:79:64:c3:
a4:5a:5c:97:8f:18:c6:a3:78:7e:e1:25:cc:dd:02:
3b:83:1f:e7:94:99:aa:4f:22:2f:2d:c7:ef:23:ea:
29:8d:fa:ff:a6:8e:d7:bf:e8:42:89:ba:25:aa:74:
28:9a:52:58:bd:56:3e:dc:89:1c:6f:15:7e:c0:ea:
69:31:ba:d5:34:8a:54:99:ac:4b:2c:0a:c0:69:06:
47:8e:15:13:32:5f:ed:1b:5d:d5:c0:2c:a7:f3:e5:
91:30:f7:06:db:d2:e5:6a:85:83:63:cd:f4:ab:26:
b4:92:cb:64:88:89:67:ee:5d:1d:5a:71:db:c2:ea:
5e:02:9b:cf:a7:f5:0a:29:e5:7e:43:23:0b:8d:34:
97:66:3d:e7:39:c3:19:d9:73:56:c3:ed:32:34:44:
c3:57:ff:f0:df:4e:3e:06:3a:11:b9:ea:11:93:37:
99:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:99:BD:29:A1:BF:42:75:2B:41:58:04:A7:08:D7:A4:EE:24:AB:02
X509v3 Authority Key Identifier:
keyid:A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:62:fe:65:e3:2a:a2:7b:9f:1d:92:1b:c9:a0:52:ad:fb:cc:
0c:d0:26:c1:7f:8e:84:f3:44:6c:64:fa:1c:a1:37:d9:f5:72:
34:56:58:45:15:ba:35:63:7f:3e:97:ba:99:2d:7f:1a:7a:71:
d8:3d:ff:a8:90:43:b7:33:f1:ab:da:fd:e6:41:78:2c:a5:6f:
87:c4:5f:24:8e:88:86:f0:c3:56:04:d9:25:17:7d:14:a1:47:
69:c3:11:82:55:0a:54:3f:10:2a:7f:33:d4:1c:c1:5f:a0:49:
30:5f:aa:25:ab:31:2a:cc:9b:9a:ff:89:6b:41:64:9d:fc:56:
fb:57:07:2e:12:6c:cb:58:2e:59:b2:29:8c:2d:8f:79:00:36:
42:3d:26:6a:8b:27:68:0e:a5:3a:6b:16:a7:ab:be:20:60:1a:
13:1d:c2:1d:63:63:be:53:1e:18:d7:09:40:59:89:76:c7:d6:
91:f3:19:ec:58:02:41:fa:41:37:ee:d3:22:e9:f0:a1:8a:c3:
67:c7:e7:33:00:bb:d6:8f:8d:fb:98:13:9b:b2:88:03:3e:59:
11:79:5b:dd:f6:54:09:93:50:32:2a:65:77:f4:bf:53:4f:f4:
be:61:26:5c:1c:c4:34:4e:bb:11:fa:d2:16:1c:24:00:cd:e3:
a1:6b:89:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:44:27 2026 by rpki-client