Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
File: pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft (raw, json)
Hash identifier: ENFeoMIWYzwskL+l9VFxkGthGajSxYqURuoJE5+t9PA=
Subject key identifier: 66:C1:A8:76:04:DE:B7:65:9E:21:C0:FD:14:BE:51:C1:A9:10:88:62
Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Certificate serial: 019E1DFE53EEFF5BBFC94601EE1486D7FDDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
Manifest number: 0D99
Signing time: Tue 12 May 2026 21:01:07 +0000
Manifest this update: Tue 12 May 2026 21:01:07 +0000
Manifest next update: Wed 13 May 2026 21:01:07 +0000
Files and hashes: 1: 1-bShfWRGm-TQCjM_Y3n8hxLi1-I.roa (hash: wGYwNx5Kv0DKEFJu4HUzIBbe8JuzhGj3QdIJepSq7/Q=)
2: pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl (hash: wCt0oS88rzJGeFyIslX0N0WL1ymAFVQ6yS7lV8NnipM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:53:ee:ff:5b:bf:c9:46:01:ee:14:86:d7:fd:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Validity
Not Before: May 12 21:01:07 2026 GMT
Not After : May 13 21:01:07 2026 GMT
Subject: CN=66c1a87604deb7659e21c0fd14be51c1a9108862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c4:65:c1:c1:c9:da:cd:e9:00:1f:ed:3a:16:
9c:8f:92:a3:0f:81:08:b8:32:c2:f8:0a:fb:a3:6c:
c1:d1:5f:b1:45:c8:e1:e6:84:7a:74:1f:91:b4:1a:
3c:a0:4e:73:f0:e9:4c:bb:21:12:ba:58:29:cb:db:
44:14:4a:bd:b1:d2:05:46:cd:bb:e3:0c:e1:df:29:
fd:74:e5:53:b6:7b:7b:1e:29:0f:c4:82:f8:87:89:
94:5d:72:cb:28:66:40:55:d6:5f:bf:60:cd:47:20:
6e:29:8c:f4:38:f9:70:96:3e:e4:8c:7b:48:86:58:
86:46:1e:95:de:1f:11:31:dc:77:cf:2c:95:75:1f:
30:8a:e3:cd:37:f2:1a:52:63:29:47:45:02:1d:48:
6c:fb:6e:40:b4:56:b9:84:01:41:2b:94:34:5d:44:
b8:f1:02:12:45:40:3b:16:bd:7e:cc:1b:dd:ee:aa:
8c:5c:60:4a:6e:6a:21:f0:0a:7b:86:2b:9a:8e:30:
0d:31:c1:5c:79:f9:be:38:16:ea:d3:38:11:d9:04:
ed:f9:e0:96:47:ec:05:24:8b:8d:48:99:af:2d:6e:
4e:16:72:c1:f7:27:99:2c:f2:8a:3f:64:df:5a:ea:
96:aa:62:81:ba:cd:21:84:41:5d:88:cb:f8:c5:06:
68:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C1:A8:76:04:DE:B7:65:9E:21:C0:FD:14:BE:51:C1:A9:10:88:62
X509v3 Authority Key Identifier:
keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:48:95:74:83:59:a5:b4:ee:45:f8:9e:47:38:7a:39:38:96:
dd:b6:21:dc:4d:0a:50:4a:56:6a:e8:17:a6:69:8f:5d:1b:7a:
fb:76:5d:43:d0:4b:b2:e5:1a:fb:b0:ec:e4:ea:5d:49:5b:32:
d8:24:d8:ca:30:a9:eb:be:9a:17:c7:97:d2:ee:f8:1a:2d:30:
73:c4:cb:1d:a8:3d:39:cd:c3:b3:53:b7:29:7b:bb:3e:59:01:
a6:e3:5a:e2:d3:8d:53:b5:3c:61:d9:d3:61:e5:ce:52:07:46:
34:c1:16:20:bf:2c:2a:b9:ac:b8:f3:e8:c0:fe:dd:db:05:51:
70:2f:07:82:06:8c:56:82:7f:ba:f6:c6:c7:bb:5f:7a:7b:2e:
28:9b:27:1f:17:40:08:72:a9:22:c6:8d:5f:9d:91:7e:01:c5:
aa:be:54:fc:cf:a5:e7:3f:e7:e5:f8:4b:9a:c9:e3:fc:2f:40:
c1:b1:7c:68:b7:15:75:e9:61:f1:03:74:f6:33:30:19:92:08:
4d:3c:66:6d:3a:94:bc:f7:5b:be:b9:24:2d:36:eb:85:42:8b:
d2:e5:61:ea:c0:b0:2d:a4:65:8a:60:f8:0e:5f:b3:c9:87:2a:
84:45:d6:3c:c9:2a:7d:9f:95:f6:88:a0:ff:19:a6:22:4f:05:
14:c5:bf:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:43:12 2026 by rpki-client