Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: RWQN1aLG3x3uOB/ww4mI0CYMQpURznQeNXbGvsZTOxM=
Subject key identifier: F2:6F:D3:A5:84:9C:9A:18:9E:98:7C:9D:D7:AA:FF:C1:03:65:F8:04
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019E216D9FF2A6D51DE1E38C655685873938
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0BCF
Signing time: Wed 13 May 2026 13:01:32 +0000
Manifest this update: Wed 13 May 2026 13:01:32 +0000
Manifest next update: Thu 14 May 2026 13:01:32 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: yqXENxVZng0B/yOpJ/tF6yePIYxSIuUdX14P1pO0/Uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:9f:f2:a6:d5:1d:e1:e3:8c:65:56:85:87:39:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: May 13 13:01:32 2026 GMT
Not After : May 14 13:01:32 2026 GMT
Subject: CN=f26fd3a5849c9a189e987c9dd7aaffc10365f804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:d4:65:30:ea:85:f9:a4:7e:e7:bb:59:76:
ee:02:87:38:c0:52:28:09:59:6d:f1:d1:8c:70:47:
89:d9:b5:08:84:50:53:18:e7:f1:0e:b7:f9:9e:02:
02:85:0c:f6:55:fd:22:10:30:4f:82:05:79:9c:0b:
b5:a6:ce:b0:c2:83:16:94:05:db:56:dd:e4:f3:00:
1a:68:bc:b6:bf:ad:ad:0a:82:01:25:c5:aa:93:45:
41:93:80:12:02:39:aa:84:58:8b:07:bf:c2:42:bc:
a4:35:56:b6:04:04:5c:25:45:47:f0:51:5f:0b:d6:
92:42:4c:a5:23:4c:a9:c7:07:23:71:0a:95:31:4d:
5f:68:49:73:90:30:a2:ba:d1:4c:02:f5:c2:92:5d:
d7:df:bc:37:da:00:65:ca:0f:f8:b6:76:50:b3:81:
5e:88:66:82:74:26:2d:9b:fc:ff:c7:f5:5a:9b:1c:
7c:f7:60:3c:7c:91:eb:22:0a:b1:f4:1a:f3:ed:6f:
30:70:fc:81:47:fc:50:56:fb:44:89:43:f0:72:3c:
6a:d4:bd:17:3b:2b:10:c8:fb:ad:56:a5:76:99:22:
47:cf:7b:38:96:61:22:20:a3:98:6a:59:72:8a:3a:
6f:cd:85:08:cb:43:a2:44:89:d7:16:2a:af:29:6d:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:6F:D3:A5:84:9C:9A:18:9E:98:7C:9D:D7:AA:FF:C1:03:65:F8:04
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ee:31:3f:ed:8d:4f:43:28:1b:54:e2:1e:4c:63:75:d9:ac:
28:af:4b:67:54:7f:ef:14:89:8e:45:ad:0c:d9:ab:13:42:56:
a3:dc:a5:f1:ef:f5:dc:e9:fc:ed:ce:80:5e:58:d9:04:d5:32:
79:04:ef:47:dc:d5:79:0a:4d:11:9c:ee:c9:e8:f2:6a:50:2a:
77:de:0a:b0:6e:d1:e5:e8:cf:d6:5e:35:61:d3:df:f3:1c:25:
fa:7a:5b:09:86:5e:cf:25:c9:8e:c0:f5:37:35:5f:93:b1:78:
9a:6f:58:61:e7:c4:d5:61:ae:88:e0:1c:2d:28:34:8a:31:62:
c9:09:21:17:a3:7f:47:49:de:8f:5f:57:49:24:bc:a6:eb:b7:
10:96:dd:23:2d:34:52:3a:af:e6:42:1c:b4:6c:25:5f:dc:0a:
f2:d5:26:04:90:e6:c0:b1:65:0f:d9:22:7a:dd:2a:7b:ee:f8:
f6:1a:f0:63:4c:b8:89:3a:25:79:63:84:6c:0f:d3:49:ff:66:
a5:13:43:1d:a3:8e:41:87:d1:61:4d:7e:70:a1:34:7d:9c:78:
bf:74:83:ea:7e:ef:72:9d:1a:a4:d7:65:3f:ba:5c:f0:f4:c9:
2f:ca:96:a7:48:dc:aa:1c:f2:fc:30:e0:9e:d5:d5:e1:4f:0e:
7e:64:58:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:12:54 2026 by rpki-client