Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json)
Hash identifier: aDiAY9nDUSL49HmSpEwLpEQSINFjPHLmSpMxA6MMWLU=
Subject key identifier: A6:81:85:1E:6C:5F:A6:B9:9C:DD:0F:3C:23:7F:6A:6B:63:E7:B5:5C
Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Certificate serial: 019D28BB430F5BF5560CEE72493364DCBDF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
Manifest number: 0734
Signing time: Thu 26 Mar 2026 06:00:54 +0000
Manifest this update: Thu 26 Mar 2026 06:00:54 +0000
Manifest next update: Fri 27 Mar 2026 06:00:54 +0000
Files and hashes: 1: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: of8bSrTpxBBG7Gy1XTPNRCSBNq5Rz5uIIK1/K7K44JY=)
2: kq527hgVr7ukC92yfbPMdR4xku4.asa (hash: LvIhj4F/rl2CGQnbgEZFLJhN4x8R+m0+ZkR3noVX8AQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:43:0f:5b:f5:56:0c:ee:72:49:33:64:dc:bd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Validity
Not Before: Mar 26 06:00:54 2026 GMT
Not After : Mar 27 06:00:54 2026 GMT
Subject: CN=a681851e6c5fa6b99cdd0f3c237f6a6b63e7b55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:9c:90:05:66:ad:be:a7:40:99:93:9b:8f:
d7:40:d3:86:de:b0:59:65:d0:18:7e:8e:a7:ae:98:
2e:67:6e:84:a9:68:28:bc:81:0f:f6:2f:a6:4b:8a:
07:fb:af:81:35:fb:07:cf:fc:33:b2:9b:e0:f5:6d:
3a:20:14:da:ba:71:7d:76:99:45:8e:4b:0d:21:c5:
f8:a3:30:84:11:a8:2f:c4:af:3b:32:31:8c:d7:dd:
bf:bc:40:38:b0:1b:f3:79:04:21:62:64:79:da:1b:
dc:83:11:fa:03:91:c5:36:2d:cd:ec:e4:57:fc:fe:
01:e7:e7:24:a9:3b:76:3d:65:27:5f:91:fc:ec:37:
7f:cb:f0:0c:f0:c3:6e:97:0c:98:2c:e9:21:57:3c:
3e:f2:b9:d6:62:20:0a:55:a9:d7:cd:b9:6e:87:bd:
5b:ce:0f:c7:35:b1:fe:d6:ca:92:e9:99:52:69:0d:
43:d4:0b:14:cd:39:57:69:3c:84:38:36:b0:01:ac:
13:5d:52:57:e7:a6:af:7b:63:5c:81:27:5c:d4:55:
5c:96:7c:e8:d9:c7:51:82:fb:be:1d:a1:ba:25:f6:
7c:df:75:c3:88:a9:ce:99:33:ff:b4:15:fc:9a:7a:
71:d2:89:f9:d4:32:b1:c5:d7:9c:17:ea:ed:52:f9:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:81:85:1E:6C:5F:A6:B9:9C:DD:0F:3C:23:7F:6A:6B:63:E7:B5:5C
X509v3 Authority Key Identifier:
keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:2c:df:c8:c0:9c:6e:92:54:a0:05:f8:9e:a5:2d:79:16:30:
17:3a:2f:9e:0a:b3:eb:be:35:cd:14:f6:87:81:7c:6a:27:a8:
0e:38:29:2a:2b:4c:77:90:8d:2d:78:69:b2:3b:ca:4f:20:69:
22:6e:55:52:76:10:06:89:f3:e2:36:31:e0:8a:e1:2e:81:91:
7c:0a:47:a2:69:fe:a3:ea:b6:d8:ed:fd:44:c4:bf:42:03:1b:
fd:f5:74:00:4a:91:90:a7:d9:54:97:f3:15:cf:63:02:08:6f:
3b:e5:cd:1a:14:ad:be:80:18:f4:ba:6f:37:e9:0a:ed:fc:a5:
21:cc:ba:17:cb:3e:4a:4e:23:c9:2a:a1:63:1d:a2:fc:1b:8d:
d2:b9:92:0c:1a:45:36:c2:df:ad:6d:cd:aa:c0:51:de:a2:60:
b3:34:61:97:4d:15:e3:f6:28:42:ea:7f:61:49:ee:98:3b:6c:
cf:2e:47:aa:05:1b:1c:0b:73:db:34:57:89:4f:f5:0e:ba:07:
fb:90:7e:ff:9a:37:68:5b:df:67:00:95:d2:1d:a0:a0:d8:69:
d1:a3:e2:a6:6d:33:77:04:c6:02:0c:ff:e6:df:4c:36:1b:56:
a6:dc:2c:81:fa:58:07:04:6f:28:8f:32:25:05:68:6b:64:b4:
42:2c:37:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:12:43 2026 by rpki-client