Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
File: PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft (raw, json)
Hash identifier: IEJRrP/MroPGwZB/Mh6AiJUzMadGoZWn+4+AXDeCwcE=
Subject key identifier: 66:9F:AD:76:9C:22:C8:D8:6F:27:8F:47:4B:8C:DE:04:51:17:4D:CC
Authority key identifier: 3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07
Certificate issuer: /CN=3d82f1fce008bcc725ddbbe7067451dd82059307
Certificate serial: 019D28F2EF177230A33A6C0C9A9B4CF79310
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
Manifest number: 02DA
Signing time: Thu 26 Mar 2026 07:01:42 +0000
Manifest this update: Thu 26 Mar 2026 07:01:42 +0000
Manifest next update: Fri 27 Mar 2026 07:01:42 +0000
Files and hashes: 1: PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl (hash: KgL77k6hCMEhJhWvCkXNnFWi3xH3eTOYhz7UkvOStsM=)
2: j0XYpT3fQfPhqOVaGf1qoZYJiUY.roa (hash: p96sB0NTL/aNTTxP4wqEBEwGR5tjmR72wLuv/hfrJqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:ef:17:72:30:a3:3a:6c:0c:9a:9b:4c:f7:93:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d82f1fce008bcc725ddbbe7067451dd82059307
Validity
Not Before: Mar 26 07:01:42 2026 GMT
Not After : Mar 27 07:01:42 2026 GMT
Subject: CN=669fad769c22c8d86f278f474b8cde0451174dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:60:31:cb:a8:d4:5d:63:8b:b4:b9:de:44:bd:
33:3d:55:de:e6:9a:8b:38:ac:07:64:b1:e8:0a:50:
0f:51:be:5e:29:19:8b:37:0c:78:9e:62:ee:2e:37:
b5:27:54:37:55:ab:16:32:27:99:44:dc:22:7a:d1:
0c:5e:38:0b:23:45:9b:a0:fd:a1:d7:50:19:e0:f2:
39:d9:e8:3f:64:cd:c8:39:1c:b0:1b:41:74:16:62:
bd:4a:5a:e7:6d:79:a4:22:31:3e:c5:98:4d:ea:8d:
6e:e7:26:06:77:a7:17:07:c6:25:93:3a:40:89:25:
14:ea:c0:5b:e9:13:a2:68:5e:13:66:94:19:21:84:
8d:61:5a:6f:aa:dc:0b:d4:93:79:56:5b:57:f0:1a:
9c:b6:ef:69:54:72:a8:8b:b0:d6:89:5e:6a:7f:8f:
07:1a:3f:d2:71:70:dd:83:4b:c8:58:5a:af:1c:69:
bc:7f:80:36:38:ff:74:04:2c:b0:99:41:03:aa:1e:
12:f4:05:db:12:8a:4e:28:08:2e:b1:33:49:e8:11:
a6:b6:a2:ce:78:7c:d9:75:79:49:a2:67:a0:e1:95:
50:52:fc:25:60:6f:9f:04:fc:c6:08:bc:3d:f1:e6:
83:3c:3b:1d:6b:b8:e5:09:28:b5:d6:5a:29:26:2d:
65:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:9F:AD:76:9C:22:C8:D8:6F:27:8F:47:4B:8C:DE:04:51:17:4D:CC
X509v3 Authority Key Identifier:
keyid:3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ec:5d:a8:3c:24:ff:21:83:c7:20:22:cf:90:83:49:25:ef:
c7:00:f0:c1:46:f4:ef:2d:5d:a3:47:ab:47:41:bb:6b:df:27:
8f:46:87:6a:be:1f:23:2c:3d:c5:0b:77:eb:70:d3:4e:84:ac:
0d:38:30:61:82:42:a3:70:02:de:6a:83:f5:24:f6:6e:97:1f:
55:da:3c:ba:19:58:25:f5:ff:90:eb:a5:14:1a:7f:ca:8b:1e:
6b:33:08:08:a0:63:21:3f:f3:6f:57:47:ed:56:52:d0:9d:a3:
e8:d6:4f:77:08:76:ab:f3:4c:5d:17:ce:24:2d:98:15:bd:85:
20:6c:13:17:03:c4:0c:6a:ea:03:e3:d2:a5:df:d6:f9:b8:ef:
35:7a:6a:ae:53:5f:73:b3:96:28:2a:db:be:0b:ba:b3:cc:23:
89:ab:65:ab:95:25:2e:3a:43:fb:d4:b6:28:36:8f:b2:f2:62:
64:d5:22:54:fa:f7:cb:6e:87:48:b7:d2:06:c6:35:52:d1:20:
da:f1:7a:26:3d:0a:e6:32:36:06:65:4d:79:3d:a1:df:c6:54:
84:cb:7a:d7:57:c2:ad:ac:f7:b9:f0:d6:48:05:c4:e7:dd:71:
01:8c:3f:fe:1a:93:dc:b5:99:cf:78:22:3f:3f:86:b2:cd:e2:
1b:8d:c1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:11:32 2026 by rpki-client