Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json)
Hash identifier: 1Ruc0kVdC5sy6o/ygZMq6IJRKTQDEOfczUUDMrAanfI=
Subject key identifier: 23:2C:9C:81:4D:79:49:00:F9:7C:5A:62:86:EF:04:99:FC:9E:E2:27
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 019D29CE494C470A29C8EFE8D4BACB1CC813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
Manifest number: 0F35
Signing time: Thu 26 Mar 2026 11:01:18 +0000
Manifest this update: Thu 26 Mar 2026 11:01:18 +0000
Manifest next update: Fri 27 Mar 2026 11:01:18 +0000
Files and hashes: 1: 4yIaOD2NMt2VBGmVwUq_OiRtg_A.roa (hash: kgy/jwMb361XAjDurvjXKgIsxESxjz3mkWg8JfDokdo=)
2: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: iPBG5jSF47EzdZS6miLNYALXlkkrTHVl93olGVo/tkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 11:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:49:4c:47:0a:29:c8:ef:e8:d4:ba:cb:1c:c8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: Mar 26 11:01:18 2026 GMT
Not After : Mar 27 11:01:18 2026 GMT
Subject: CN=232c9c814d794900f97c5a6286ef0499fc9ee227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:67:3e:b2:85:e4:00:4b:9b:66:82:61:8d:
c5:bd:48:0d:ff:4d:dd:d7:35:dc:83:43:50:05:7f:
a8:b2:af:4e:6c:bb:36:eb:81:60:09:6f:a7:1a:15:
6f:c9:e6:e4:d0:30:a0:38:e0:49:e0:f3:37:ed:f4:
11:e7:5f:cb:12:4e:a9:30:fd:c7:59:72:c5:9c:06:
dc:08:3a:05:85:b4:b3:f7:e5:62:ac:bf:e5:7b:8a:
8e:7b:00:a6:02:06:09:cb:6e:c1:06:83:7b:9f:fd:
0e:b0:46:fe:8f:2b:2f:9e:62:82:5e:c6:95:de:15:
78:b9:7e:12:32:99:ac:a7:e1:81:41:60:14:eb:8b:
8d:85:35:b8:17:df:21:a2:c5:32:46:c9:82:34:fa:
c1:35:33:ee:a1:d5:f2:f2:39:63:7c:9c:3c:10:5c:
0d:98:2e:f6:6e:56:8c:27:a7:5f:98:02:c9:ca:25:
27:e5:72:65:51:60:72:83:17:f1:b4:91:8d:0e:93:
1f:34:3f:f8:f1:a9:e9:ee:94:9b:cc:1b:e0:70:00:
07:a6:d6:f5:ef:18:07:9c:06:24:ad:cb:13:cc:f2:
d3:bf:94:c1:2b:25:c1:2b:0d:b2:4b:eb:da:49:5d:
72:96:08:f6:8b:81:90:59:eb:4f:94:5b:f0:c4:a4:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2C:9C:81:4D:79:49:00:F9:7C:5A:62:86:EF:04:99:FC:9E:E2:27
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:fe:4e:86:71:1c:27:66:dc:69:d0:93:74:45:9e:d0:e8:6d:
49:55:f9:60:0d:6c:5d:f3:2c:ba:89:1e:c2:72:2b:08:4f:a9:
1f:17:cd:1e:98:20:58:80:0e:6c:dd:0d:fb:e3:74:2f:6d:a9:
e8:7c:03:3e:a1:b5:33:19:a7:ad:4c:7d:30:4b:bd:8a:e6:02:
11:05:03:1f:c6:9a:58:0b:90:dc:3d:2e:17:3a:2a:58:53:78:
2e:63:07:75:a1:f5:b8:da:c9:b9:41:ca:4c:9c:33:bc:39:98:
b5:e1:74:15:36:ec:b2:ad:b8:48:9b:40:99:cd:98:5f:69:0b:
31:cc:30:37:08:06:9d:2c:4e:64:30:d4:16:e9:40:44:a6:c4:
43:70:3a:4d:5a:20:cc:8d:7d:1e:92:b8:6c:a0:47:82:30:55:
be:94:1e:6d:dd:59:a3:21:8e:75:66:53:6e:d9:67:97:b1:52:
a5:33:c3:19:4b:ba:cf:64:12:22:cb:72:44:ed:35:18:3a:67:
58:c9:22:ec:fd:ae:c9:90:2a:c9:c3:e2:b4:63:83:f5:58:6f:
16:d2:ed:a1:26:4e:22:80:4e:42:d4:08:65:af:28:d4:bc:54:
55:25:79:cf:44:40:56:36:2f:44:09:2e:a7:cb:b0:1a:cc:0d:
2f:e0:99:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzklMRwopyO/o1LrLHMgTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzdkMmJmYzNmYTc4ZTcxMDBhMWI4OTM1OTA1YWZmN2E0
OTZiYzkwHhcNMjYwMzI2MTEwMTE4WhcNMjYwMzI3MTEwMTE4WjAzMTEwLwYDVQQD
EygyMzJjOWM4MTRkNzk0OTAwZjk3YzVhNjI4NmVmMDQ5OWZjOWVlMjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzBnPrKF5ABLm2aCYY3FvUgN/03d
1zXcg0NQBX+osq9ObLs264FgCW+nGhVvyebk0DCgOOBJ4PM37fQR51/LEk6pMP3H
WXLFnAbcCDoFhbSz9+VirL/le4qOewCmAgYJy27BBoN7n/0OsEb+jysvnmKCXsaV
3hV4uX4SMpmsp+GBQWAU64uNhTW4F98hosUyRsmCNPrBNTPuodXy8jljfJw8EFwN
mC72blaMJ6dfmALJyiUn5XJlUWBygxfxtJGNDpMfND/48anp7pSbzBvgcAAHptb1
7xgHnAYkrcsTzPLTv5TBKyXBKw2yS+vaSV1ylgj2i4GQWetPlFvwxKQSxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCMsnIFNeUkA+XxaYobvBJn8nuInMB8GA1UdIwQY
MBaAFD7H0r/D+njnEAobiTWQWv96SWvJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQt
YmE4ODExMjJjYTYzLzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQtYmE4ODExMjJjYTYz
LzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgv5OhnEc
J2bcadCTdEWe0OhtSVX5YA1sXfMsuokewnIrCE+pHxfNHpggWIAObN0N++N0L22p
6HwDPqG1MxmnrUx9MEu9iuYCEQUDH8aaWAuQ3D0uFzoqWFN4LmMHdaH1uNrJuUHK
TJwzvDmYteF0FTbssq24SJtAmc2YX2kLMcwwNwgGnSxOZDDUFulARKbEQ3A6TVog
zI19HpK4bKBHgjBVvpQebd1ZoyGOdWZTbtlnl7FSpTPDGUu6z2QSIstyRO01GDpn
WMki7P2uyZAqycPitGOD9VhvFtLtoSZOIoBOQtQIZa8o1LxUVSV5z0RAVjYvRAku
p8uwGswNL+CZ/g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 22:26:06 2026 by rpki-client