Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
File: PsY-XbBDXC0-dKayitPZww1qjO4.mft (raw, json)
Hash identifier: IMr6pFIhc6FYqfYWQPsM1kFK3sPr9F6ohuxE9RAk+yg=
Subject key identifier: 11:BD:86:8C:CB:C4:4F:6A:E6:40:73:28:3C:64:67:F7:3C:47:E2:60
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 019D2A046A502CE1CAC2D6611DCFD25E4299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
Manifest number: 1097
Signing time: Thu 26 Mar 2026 12:00:25 +0000
Manifest this update: Thu 26 Mar 2026 12:00:25 +0000
Manifest next update: Fri 27 Mar 2026 12:00:25 +0000
Files and hashes: 1: PsY-XbBDXC0-dKayitPZww1qjO4.crl (hash: deUT5hX5Acns/ssNT9qsdEp1BFFes0PNg/xSuY3jqT0=)
2: e4Y82jz5m9Po29WmrpJsedcmzmk.roa (hash: uEEEYOKhA29NBvJQq3WwP47mr+GKJzQ+1OrC0QbpDj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:6a:50:2c:e1:ca:c2:d6:61:1d:cf:d2:5e:42:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: Mar 26 12:00:25 2026 GMT
Not After : Mar 27 12:00:25 2026 GMT
Subject: CN=11bd868ccbc44f6ae64073283c6467f73c47e260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:15:52:6f:84:dc:03:fc:ab:12:50:d9:be:36:
bc:f7:99:41:28:bb:42:00:22:5d:87:b9:77:15:17:
40:0e:09:ef:e5:a3:54:12:af:b0:fa:93:ed:f1:89:
dd:2a:a3:f6:12:e4:b9:74:0c:13:13:12:83:1d:cc:
53:68:bc:ad:8b:f8:14:f6:52:f6:28:51:87:f9:8d:
b7:2a:4b:d0:27:2b:9e:d8:18:7b:35:a1:f5:36:68:
8a:36:f8:7f:75:7b:fc:a1:55:ab:20:57:7d:9c:e2:
5f:1b:41:09:0e:61:fd:30:67:86:fa:1e:56:14:3f:
50:aa:a7:2f:39:df:0d:1b:f6:2c:63:06:e9:c1:2e:
ea:4e:fd:a4:2f:c8:7c:57:3b:fa:16:ac:8c:9d:49:
8b:db:ce:62:e6:2c:51:bc:a0:0f:94:fc:8d:a9:8f:
86:f1:39:c8:a6:36:d1:6a:64:14:5c:d0:72:b5:99:
ea:00:b5:b3:ff:8e:79:b4:94:cb:56:f0:e6:87:f9:
d8:12:28:75:19:65:d4:89:b5:2a:92:d8:66:b7:db:
33:43:48:b5:a9:e4:b3:a0:cb:2b:65:c4:5b:41:5c:
a1:ee:47:b4:53:de:e1:07:5e:52:f8:4b:f9:62:db:
58:1c:4f:8e:00:75:78:52:16:fa:df:9a:a8:9e:c2:
6e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BD:86:8C:CB:C4:4F:6A:E6:40:73:28:3C:64:67:F7:3C:47:E2:60
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:9d:31:43:7e:72:ab:82:59:a8:d0:2b:ff:62:00:84:30:5a:
c2:ee:40:e5:cd:f7:d6:b2:0c:a9:4f:1e:6e:0b:eb:ad:61:3d:
e8:f4:29:9d:6d:f9:fc:05:72:78:d1:e7:6a:7b:3e:1e:af:59:
a7:7e:4d:02:c0:13:88:a1:ae:17:b5:a1:8f:59:90:2c:4d:bf:
ad:45:c0:f9:2a:e5:73:66:33:7b:50:01:c4:c6:97:5b:ba:62:
bd:5e:40:66:7f:1d:b7:d4:1b:cb:73:e9:7a:70:f0:fd:d6:fd:
a7:0b:48:c9:dc:0c:48:ce:1e:10:3d:64:db:11:f1:4b:be:bc:
25:09:d5:7a:6f:f5:47:20:c9:ed:4d:5f:59:42:a6:b0:c9:d8:
81:b6:26:39:dc:cb:aa:a5:46:da:fc:d1:c9:11:cd:34:ea:98:
0a:c0:9e:5d:a7:c5:be:b9:63:0b:4c:40:4a:2f:5e:fc:07:e8:
14:c1:78:3f:44:0a:6c:59:1c:49:d2:85:b9:c5:29:12:64:5b:
47:e5:b4:ca:7e:be:ad:a0:45:43:92:6e:11:c6:bb:b0:20:bf:
b5:53:9c:1e:5c:ee:f1:cf:54:93:cc:b1:73:84:d7:ae:c9:1c:
10:f7:d0:52:c5:ef:4f:69:9e:9c:89:c5:83:ca:8d:cf:74:88:
4e:57:0c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:00:29 2026 by rpki-client