Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
File: PsY-XbBDXC0-dKayitPZww1qjO4.mft (raw, json)
Hash identifier: 0sXB3Ezw8TH+hbHujFUwev++h0G4HfmLYXoBuj6lhic=
Subject key identifier: 71:71:6F:06:6E:DD:11:84:A9:99:48:E5:57:58:E1:E2:37:42:0A:59
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 019E1D59C8DEDABF168A01AB399A8C8D98E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
Manifest number: 1115
Signing time: Tue 12 May 2026 18:01:23 +0000
Manifest this update: Tue 12 May 2026 18:01:23 +0000
Manifest next update: Wed 13 May 2026 18:01:23 +0000
Files and hashes: 1: PsY-XbBDXC0-dKayitPZww1qjO4.crl (hash: 2d4zwX4fLBsEKViJ++dIAK7c7Z8PCS/e2fuyuQyHO8U=)
2: e4Y82jz5m9Po29WmrpJsedcmzmk.roa (hash: uEEEYOKhA29NBvJQq3WwP47mr+GKJzQ+1OrC0QbpDj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:c8:de:da:bf:16:8a:01:ab:39:9a:8c:8d:98:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: May 12 18:01:23 2026 GMT
Not After : May 13 18:01:23 2026 GMT
Subject: CN=71716f066edd1184a99948e55758e1e237420a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a4:e9:a1:71:25:be:14:bf:3e:96:40:92:b8:
b3:36:b1:38:70:3f:ee:bb:31:29:eb:40:4b:cf:aa:
75:cc:39:94:64:2b:2f:6d:93:a9:57:30:e8:43:a6:
88:dc:a7:43:e8:d0:a7:b4:0a:80:c6:1d:11:91:7c:
10:b2:59:1f:b5:ef:2d:aa:a9:0d:d5:01:2c:93:be:
6f:31:94:7c:d3:f2:cf:3e:0f:aa:b9:34:99:4b:15:
dc:e7:7d:1c:7b:3d:d0:bb:cb:6e:35:5b:bf:8d:dc:
05:39:aa:dd:20:0e:40:1b:e9:09:34:99:fa:b8:a5:
b9:99:81:59:15:e4:48:d7:48:c3:63:a0:39:94:b7:
65:db:f4:18:b9:3b:e9:b2:fc:c8:67:37:e1:3d:cf:
5f:34:45:ab:a1:bc:f3:04:4f:d7:9b:b4:8f:48:d0:
4c:56:b4:d8:bb:c9:88:1b:b7:92:20:57:fa:59:f3:
6f:c2:9a:dc:ae:c1:e7:ad:19:7b:91:57:c0:10:23:
1a:44:87:36:1c:84:64:35:2a:f9:ce:f7:45:3c:5f:
f6:fa:f0:46:67:18:2e:22:a5:8b:c8:b2:ff:3d:4e:
e4:40:92:ac:a5:0d:b7:e9:80:1f:1d:4c:28:b3:b6:
07:df:eb:0e:78:de:44:52:d8:a2:18:26:78:b5:6e:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:71:6F:06:6E:DD:11:84:A9:99:48:E5:57:58:E1:E2:37:42:0A:59
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:bc:bc:26:8a:50:2a:f3:47:89:b3:bb:58:8a:61:03:f6:56:
c0:22:c4:09:6f:ea:2c:3b:61:d6:ea:cb:19:db:9d:cc:47:31:
34:df:2f:c2:81:4a:3d:63:f5:e5:36:aa:0d:fb:97:6b:a3:60:
0a:0c:a0:69:e0:2c:60:40:d5:fd:49:58:b1:e8:5c:ee:6b:25:
1e:25:6b:a6:fc:21:0d:44:e6:8c:c2:39:94:3b:c2:84:94:ef:
65:4e:95:af:1d:6d:d2:2b:08:05:ee:67:f4:09:bf:35:d1:be:
80:b5:d3:60:66:74:cb:0e:9e:5c:6a:69:f9:67:b2:15:1e:3f:
e4:c9:7d:fe:0b:bd:66:0f:91:3f:2b:37:43:ad:ab:f7:30:cc:
0a:89:1f:59:cd:d0:b7:5d:d4:bf:54:b2:c4:29:a8:16:0d:33:
88:72:9f:91:b0:65:0f:5f:4c:56:69:fc:36:01:67:4e:5d:db:
0a:fb:35:03:83:c2:2a:33:7e:9b:d9:29:10:cf:a3:b8:fa:51:
7f:c9:4b:c3:a5:37:cf:2e:24:54:3e:79:4d:e1:d2:e7:8a:de:
76:a8:0d:1f:a1:eb:fc:6f:7e:8f:30:27:19:34:49:f5:ce:9a:
2f:66:55:d8:d2:81:9f:a8:b5:5c:ac:35:8d:17:4c:7e:01:16:
a8:cb:46:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:30:22 2026 by rpki-client