Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json)
Hash identifier: wgMHXdth6P7dY7T03Ui1GfHdOVm4gOHSwjBOIqZnPe0=
Subject key identifier: 16:65:81:2B:9C:2B:F3:2E:AC:0A:69:5E:9D:69:C9:D5:26:D8:24:1F
Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Certificate serial: 019D26CD3E2F2A76806584E4F064DC21279C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
Manifest number: 0733
Signing time: Wed 25 Mar 2026 21:01:18 +0000
Manifest this update: Wed 25 Mar 2026 21:01:18 +0000
Manifest next update: Thu 26 Mar 2026 21:01:18 +0000
Files and hashes: 1: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: 20+WxBVpOHJCSbLh+vsGdMWL1UELjSdcQapuO/017nk=)
2: kq527hgVr7ukC92yfbPMdR4xku4.asa (hash: LvIhj4F/rl2CGQnbgEZFLJhN4x8R+m0+ZkR3noVX8AQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:3e:2f:2a:76:80:65:84:e4:f0:64:dc:21:27:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Validity
Not Before: Mar 25 21:01:18 2026 GMT
Not After : Mar 26 21:01:18 2026 GMT
Subject: CN=1665812b9c2bf32eac0a695e9d69c9d526d8241f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c1:ff:1c:bd:96:9d:91:7a:bb:ba:29:21:2c:
0c:32:df:78:0e:13:45:11:0e:8d:f8:25:d6:99:61:
12:15:e1:0f:92:9b:7e:b1:5a:07:fc:f6:e1:89:5b:
46:4b:5d:0f:9e:41:09:e7:d2:63:52:ca:f6:3b:1d:
f2:c5:4f:ab:58:78:2a:8a:38:76:92:f6:f8:86:e7:
c3:d0:66:2f:7e:64:4f:df:6c:02:3f:5e:80:3f:90:
f0:1b:e2:1f:d6:13:52:64:0c:3c:80:e1:55:8f:88:
dc:71:89:1d:03:e6:b7:80:01:97:30:03:32:5f:9c:
4f:8d:04:fa:c7:89:e1:c0:d8:a9:c2:52:ca:f9:a3:
3e:8c:07:50:40:7d:c1:d2:6c:7d:a4:16:c9:6e:c0:
29:17:43:9a:fb:27:de:91:dc:80:b4:1b:de:78:b9:
7c:90:1b:c1:34:ab:00:0f:9e:56:5f:da:c8:b2:2a:
8d:44:30:b9:8b:f7:55:fe:0a:db:52:74:09:c6:b1:
2c:9d:39:89:f2:69:cc:05:5b:74:ed:08:28:8d:39:
d4:71:e8:33:6e:39:3c:8c:12:91:52:04:32:e7:d0:
7a:ad:34:82:f0:eb:d0:33:ae:ad:0e:86:be:3c:8e:
b5:1c:ec:aa:57:ea:dd:80:b8:e5:40:a5:91:ec:d8:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:65:81:2B:9C:2B:F3:2E:AC:0A:69:5E:9D:69:C9:D5:26:D8:24:1F
X509v3 Authority Key Identifier:
keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b1:03:8d:6e:16:a4:3a:cf:d4:ce:cb:0d:9d:33:57:68:a7:
55:1a:b0:e4:c6:de:b8:93:6c:95:90:1e:40:47:df:a3:53:e6:
58:87:c0:8c:48:34:6a:e4:5e:e0:95:f7:4b:09:45:89:55:0b:
91:14:71:6f:cb:53:58:5d:dc:ee:4e:5b:8a:e9:3d:42:25:a1:
d1:fc:4d:be:da:96:c0:0f:b9:8d:43:7d:6c:19:9f:d7:86:9c:
bd:22:40:fd:cf:66:a3:69:49:e4:7b:87:bc:03:fd:00:58:14:
24:8e:50:b4:ba:0a:1b:b0:38:0d:6d:62:e9:46:8b:80:da:44:
c7:ca:96:9f:a0:5a:cb:3f:28:d3:20:ef:c7:8a:f1:f7:d2:80:
42:7f:e9:32:b0:2c:81:3b:e8:27:43:dc:30:ad:48:8a:0d:db:
66:2c:ba:08:03:6c:ae:64:dc:29:c6:ba:ea:a6:77:46:a2:59:
ab:1a:f7:6c:f4:39:8f:84:4e:e6:d1:39:9c:03:e5:89:62:4d:
01:7c:0f:08:ff:09:cd:82:64:dc:f4:7d:1c:a5:4c:6d:a3:ae:
cb:1b:f8:39:d4:2e:9d:9d:6f:44:ee:6d:b3:7a:3c:9c:4a:e0:
9f:c5:02:3c:83:89:fb:84:b4:d7:c5:64:b3:7a:3a:17:0d:a9:
02:55:b0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:54 2026 by rpki-client