Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: U44oHub4vb5iaxzuGjnFfD0YK09oMNlW57b/dHd4UPo=
Subject key identifier: B0:A9:E2:6D:DD:27:BB:59:7D:F3:A3:14:8D:73:04:15:F3:A4:D4:AB
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019D265ECC44E8E4A5B935B605A331F0F86F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0B4D
Signing time: Wed 25 Mar 2026 19:00:40 +0000
Manifest this update: Wed 25 Mar 2026 19:00:40 +0000
Manifest next update: Thu 26 Mar 2026 19:00:40 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: shJzR8HAZb0Ck5nI+D+qgQmFBHSZqSQpnW/FHaa3dxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:cc:44:e8:e4:a5:b9:35:b6:05:a3:31:f0:f8:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Mar 25 19:00:40 2026 GMT
Not After : Mar 26 19:00:40 2026 GMT
Subject: CN=b0a9e26ddd27bb597df3a3148d730415f3a4d4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:22:d8:08:cc:ec:06:f7:b6:d1:bc:63:5f:20:
ec:04:0d:00:5b:92:83:9b:41:c9:bf:32:31:7b:88:
05:d2:fd:6a:c2:1d:35:ed:d9:ea:a2:0d:aa:08:c0:
26:50:18:6d:59:2a:4e:da:a1:84:73:61:25:7a:4e:
8e:ff:23:35:89:28:a3:3f:68:52:24:76:45:c7:d9:
2c:98:66:85:6d:b4:68:92:17:f8:a8:bc:b3:c5:38:
ee:28:01:98:1e:58:8c:13:49:2b:64:40:1e:02:a3:
ea:a8:76:8e:12:f4:ed:41:a5:0d:68:ca:35:2b:73:
57:e5:1a:3c:cf:ae:9a:2c:2d:ea:49:38:30:d9:9b:
3f:24:e0:d3:7e:46:86:8d:e4:b6:5f:bc:16:ec:69:
6d:83:90:6a:5f:63:1a:0f:87:24:73:55:a5:59:70:
7e:70:24:82:23:87:03:5b:11:74:98:f0:c4:85:07:
b9:78:6f:69:6d:20:7b:9f:6d:02:09:1c:d1:fa:8c:
df:b4:58:3f:e9:9a:7d:a5:ce:48:c6:5a:53:d8:f5:
ee:c2:47:13:82:14:a0:0f:83:c1:fe:c0:ac:6d:6f:
9d:19:24:b3:3b:ab:6d:00:8b:ce:54:98:01:6b:81:
3d:04:33:05:33:56:ef:09:2c:97:1e:cc:6f:ba:73:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A9:E2:6D:DD:27:BB:59:7D:F3:A3:14:8D:73:04:15:F3:A4:D4:AB
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:0f:a3:b1:2d:aa:23:a3:cf:ac:b6:6e:bf:6e:23:00:12:5c:
af:1e:c4:7a:db:93:df:5d:2f:58:6b:25:7c:14:4b:7f:f3:f6:
5d:af:19:14:04:e7:a2:71:36:8e:92:99:25:77:9d:d3:53:d5:
42:be:c5:cc:d5:b5:f0:09:56:fc:3e:8e:92:65:e0:4e:65:65:
ea:27:72:bb:b5:c4:07:4d:c1:d4:ba:5a:56:e0:ba:32:a1:b3:
96:85:3d:b0:ab:43:96:19:af:48:5e:a2:bd:4f:08:5f:a8:fa:
fc:90:69:a8:d0:82:4d:36:22:7b:86:59:f0:c7:71:4b:ae:12:
b1:a3:7b:81:b6:84:70:9b:52:3b:d9:95:f4:59:27:2d:94:dc:
b0:cd:1b:48:2b:3b:c9:8c:ac:8f:05:62:78:66:59:99:1f:15:
f5:a5:29:5a:f9:dc:0c:64:30:c9:79:bc:76:de:2c:2f:d3:33:
ac:a3:f8:07:ab:06:d1:96:60:e5:57:d5:bd:d8:ad:f2:e6:9f:
14:5b:db:fc:95:48:4d:fa:30:dd:7e:1b:f4:ab:d9:3d:ec:df:
ec:13:23:5f:de:14:d3:e1:7d:1d:28:68:47:dc:f3:6e:a6:b0:
65:e9:59:55:3a:8c:f9:e4:fd:9f:ca:94:4e:75:d5:2f:51:37:
83:30:7d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:22:43 2026 by rpki-client