Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: GRpd/DuDe7eo5QM+Icl18GDc+V8xvAPguk50IlJANb8=
Subject key identifier: 83:EA:28:95:C5:A3:C7:C6:A8:E5:FF:F9:A0:F0:27:98:B8:AD:0C:6F
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 019D28F230536842B342F43A1BCAFB7149E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 128B
Signing time: Thu 26 Mar 2026 07:00:53 +0000
Manifest this update: Thu 26 Mar 2026 07:00:53 +0000
Manifest next update: Fri 27 Mar 2026 07:00:53 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: 4wZgkKtcMiaQq9EqvvCrgFxtySz0S89a7Tt2ZLN7Cm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:30:53:68:42:b3:42:f4:3a:1b:ca:fb:71:49:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Mar 26 07:00:53 2026 GMT
Not After : Mar 27 07:00:53 2026 GMT
Subject: CN=83ea2895c5a3c7c6a8e5fff9a0f02798b8ad0c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:a0:a3:ef:69:60:77:dd:08:7b:1b:17:a7:
ba:91:84:ee:6d:1c:c8:fc:98:10:b9:76:fe:5a:cf:
de:57:d1:f6:af:36:ad:70:6f:e7:70:39:95:ee:18:
2a:7a:26:2c:03:e2:2d:67:c9:1d:58:40:cd:1b:fc:
03:f3:0b:1f:a8:89:ac:78:c4:7e:be:53:bd:1f:86:
79:23:b4:30:4b:56:80:ff:fb:6e:89:7d:2a:f8:f4:
16:dc:27:8b:9d:78:91:2c:76:bd:b2:63:de:d3:9c:
2a:b9:96:4f:18:c8:66:db:a8:8a:54:d4:fb:99:5e:
98:26:f8:b0:bc:24:6c:36:1c:3b:ef:2a:ad:2e:4e:
4b:f5:95:b5:f6:3e:5a:dc:c3:99:85:f5:63:62:0a:
dd:bf:ca:cb:61:9b:3d:62:53:ac:61:d2:a0:2a:6f:
82:58:fe:f6:ff:86:d9:f1:a8:e6:ea:47:e2:14:29:
eb:88:1a:9a:f5:21:d5:1f:a2:f8:1b:1b:86:71:f6:
59:63:2f:9a:65:42:26:4d:a2:c5:06:84:55:77:bc:
2a:b9:78:86:82:aa:28:5b:88:a4:24:09:6e:e4:c1:
92:99:f1:dd:43:b3:17:fc:2d:1c:e1:22:e6:4d:af:
35:de:95:0a:2e:45:2e:24:03:69:e4:c5:fb:58:01:
8e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EA:28:95:C5:A3:C7:C6:A8:E5:FF:F9:A0:F0:27:98:B8:AD:0C:6F
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f7:95:99:1d:d4:ae:d0:2a:ed:65:ad:d3:61:c5:02:b4:cd:
b6:26:3f:9d:ce:57:89:3d:4b:33:57:14:92:f5:92:18:bd:d5:
61:09:3e:69:43:1f:8d:b9:47:2b:cf:c8:81:1f:ad:14:a9:04:
67:f5:92:ed:39:fc:80:11:cc:f7:03:5e:c2:e6:3d:89:c3:af:
2f:17:b0:24:7a:55:c0:95:23:1f:6b:cc:71:d6:47:7e:8d:99:
fc:66:df:2b:f7:f5:bf:76:a8:93:d5:7b:c3:75:c3:fd:81:7d:
79:d5:39:fd:fa:44:1b:81:8e:c7:46:69:70:da:9e:d6:99:04:
ff:1e:c6:f9:bc:72:20:ed:81:29:05:71:7e:c6:3c:fa:9d:bb:
b1:d3:26:d3:af:17:c1:49:b7:c5:cc:32:dd:c1:3b:ca:ff:5d:
e8:bf:9b:d7:19:f3:6e:27:72:d3:27:0b:09:d2:e6:5d:3b:3d:
fe:fa:30:c0:f5:75:76:04:07:3c:c4:67:70:10:df:59:e5:6e:
da:7e:1c:21:64:a2:34:3d:06:1b:dc:06:55:88:3b:fb:8b:85:
54:da:11:dc:19:2e:9d:9f:c1:44:41:49:b1:39:8b:b0:1b:70:
9e:2b:07:bc:22:1c:77:62:6e:65:18:50:90:c3:04:81:0e:9e:
64:52:d1:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:22:44 2026 by rpki-client