Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
File: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft (raw, json)
Hash identifier: /hTc2HZMznjThNL1b1lsPGYSauFYRd9oGIdh56Kmro4=
Subject key identifier: 88:9B:27:A1:1A:51:89:95:2D:00:36:5A:81:70:50:94:0F:FC:1F:0C
Authority key identifier: A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
Certificate issuer: /CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Certificate serial: 019D3488C3E8FF22B4334262D7FFE041DF81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
Manifest number: 1889
Signing time: Sat 28 Mar 2026 13:01:11 +0000
Manifest this update: Sat 28 Mar 2026 13:01:11 +0000
Manifest next update: Sun 29 Mar 2026 13:01:11 +0000
Files and hashes: 1: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl (hash: Ud9uSmwxHnVI3kmr70a79Eg33B3dZQDXnyUUrgqrEJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:88:c3:e8:ff:22:b4:33:42:62:d7:ff:e0:41:df:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Validity
Not Before: Mar 28 13:01:11 2026 GMT
Not After : Mar 29 13:01:11 2026 GMT
Subject: CN=889b27a11a5189952d00365a817050940ffc1f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:72:b6:de:30:dd:77:4a:2c:9e:d0:3f:3d:23:
09:99:19:e7:7e:34:ef:e4:ca:fb:81:75:cb:3f:a1:
10:36:3f:72:d7:b4:25:50:9f:f9:81:15:ff:ad:73:
4b:70:9b:f1:fd:f2:c2:b7:52:b5:9c:64:c4:b4:8a:
49:24:3e:01:e2:75:bb:85:ae:fd:82:7c:23:b1:6d:
a6:24:d0:26:4e:01:84:ea:f1:11:cc:e6:70:69:a7:
ce:23:39:19:76:97:45:a0:78:ed:f6:2f:34:66:bd:
1b:bb:80:7c:5a:96:0b:99:f5:6a:dd:53:42:aa:7b:
d3:34:74:34:fb:60:ea:eb:58:64:92:87:65:d2:b7:
72:20:49:78:3b:83:18:7a:1f:0c:ee:22:20:ad:dd:
50:1e:5f:a0:d3:62:16:ed:25:30:f9:b8:f3:0d:87:
f1:bc:31:00:db:e9:51:29:37:0a:c5:a8:f9:64:ee:
71:5f:e7:ff:14:9c:64:24:52:29:c7:02:3c:a1:bd:
48:9a:8e:a8:a0:35:84:94:1b:ab:f3:f9:bc:51:7f:
85:5b:62:65:0e:73:92:44:4a:9e:c3:da:0b:d4:10:
d1:f2:ab:b5:4a:52:9b:22:2e:ab:f8:a0:14:40:ac:
2d:c8:36:0b:b6:e8:2a:bf:52:62:da:bf:eb:52:f2:
64:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9B:27:A1:1A:51:89:95:2D:00:36:5A:81:70:50:94:0F:FC:1F:0C
X509v3 Authority Key Identifier:
keyid:A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:de:52:59:b1:d6:87:54:46:95:05:70:46:14:cd:cf:72:ef:
4f:83:8d:35:1c:67:37:49:92:96:54:b5:c3:2f:48:10:2f:10:
05:06:96:60:f3:f1:41:a5:dd:3c:9d:5a:c5:16:d8:bc:0b:4f:
15:90:b3:ca:6a:e8:83:78:84:06:6f:d0:ac:b5:66:37:d2:e9:
d9:8f:7b:b1:0a:22:2e:7a:66:5d:85:70:c5:8f:96:7b:30:4a:
e4:39:e2:3b:1d:7d:7f:5d:ae:34:f5:3d:9c:e6:44:08:46:ef:
33:c3:d5:de:91:23:f5:4e:5e:c6:1e:a7:3d:83:f4:c0:63:25:
84:aa:25:d7:7d:2b:a2:cd:70:4b:24:68:f5:2e:96:13:70:7c:
aa:57:85:cd:e4:7d:b9:2b:0b:ef:7d:fa:31:33:bf:1b:bd:73:
77:c0:dc:dd:92:b6:42:1b:3b:5b:eb:59:36:a1:f4:a8:a5:0c:
38:bb:e3:f6:21:e7:d7:9b:6f:e3:04:a9:87:f5:13:4b:94:73:
79:44:72:4e:0e:87:7b:10:ed:dc:b9:ef:5b:9d:5a:56:b5:54:
d6:76:5e:56:66:5e:3e:5f:32:d4:81:03:4b:6d:7e:c9:75:ac:
eb:60:a2:81:a9:04:6a:08:a1:57:bd:8c:75:c3:eb:96:42:73:
a2:e3:68:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:32 2026 by rpki-client