Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: kAMLgZWwC1OdEd0b2J4QeWaEmpQ95wzv78k4kvUCOpA=
Subject key identifier: BF:2A:3E:C2:62:0A:B0:A1:C2:CC:D3:8F:88:C2:04:AD:69:25:10:48
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 019E1F111DC834D7B8E4132E7320D8AC9824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 02:01:15 +0000
Manifest this update: Wed 13 May 2026 02:01:15 +0000
Manifest next update: Thu 14 May 2026 02:01:15 +0000
Files and hashes: 1: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: 05ofeW22JHIDlhbXqo+CqGnVABL1nRUsAPSLgToRlZQ=)
2: jqrp4A2XhAiKpWgKz5AERQNPI2k.roa (hash: W7kzwYJcoOuticaS4HLbtKGL58iB45UYEoKBlIElr8o=)
3: oX-OGfjLClnMbhsOGADApxVNIMg.asa (hash: y/gF4Kes5UJIvpD5HboyFiUaBsGfj0UIbH39vBX7Shc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:1d:c8:34:d7:b8:e4:13:2e:73:20:d8:ac:98:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: May 13 02:01:15 2026 GMT
Not After : May 14 02:01:15 2026 GMT
Subject: CN=bf2a3ec2620ab0a1c2ccd38f88c204ad69251048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:17:97:b8:94:e0:6e:1b:b8:18:07:cf:78:24:
2f:9d:00:cb:eb:14:25:60:4f:5f:da:70:02:9d:81:
fc:bc:e2:6f:18:8c:3d:eb:3c:31:c3:f8:9c:52:d7:
fe:a2:e8:07:1c:b0:51:b7:a7:d1:fd:ce:6b:dd:25:
87:e8:0c:62:0d:64:c6:a3:41:37:8e:68:cd:26:c9:
97:22:42:53:05:54:a8:1c:e2:ce:78:b9:79:68:41:
46:91:ef:b3:cc:bf:c7:96:d0:94:7b:8a:84:6f:fb:
c5:f9:96:2d:e5:ba:25:8c:5a:0a:97:90:a7:84:e2:
c4:92:32:e8:a2:e1:65:2a:13:f3:39:7c:be:e2:30:
dc:6e:80:4d:82:06:4c:07:41:1b:3c:54:80:f7:21:
c1:08:7b:15:b7:80:7c:5f:d1:f2:90:46:71:98:ea:
45:0f:fd:0c:dd:d0:52:71:b3:89:4a:f4:07:67:05:
d7:ae:55:65:8c:fb:2b:77:47:40:b3:55:7c:25:98:
84:a7:da:06:c6:78:9d:73:88:9b:6e:eb:74:18:d7:
77:a3:90:16:f6:1b:93:d4:de:da:09:3b:55:7b:3f:
f2:4f:85:1b:d7:8f:04:3d:b1:17:14:fd:bd:85:1e:
6d:3b:b3:22:01:75:b6:6a:a4:93:65:cb:2a:1d:44:
6d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2A:3E:C2:62:0A:B0:A1:C2:CC:D3:8F:88:C2:04:AD:69:25:10:48
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:f0:1e:e5:e6:b7:06:26:d3:d7:ce:b2:3d:0b:39:48:c3:67:
51:31:63:ac:f2:98:1c:49:4e:48:de:1c:80:a7:22:1c:63:4b:
de:07:3e:90:98:b7:6b:75:1b:36:81:84:57:5f:95:a1:a6:77:
a6:3d:1c:74:ba:c3:52:12:0d:50:a4:d7:67:b4:04:fb:2e:3c:
fa:88:3b:6c:3e:eb:40:5e:e3:02:ca:38:0f:e1:06:6a:ef:e3:
c0:d4:f9:bd:9c:e1:bb:5c:02:94:68:a6:7d:3f:c6:5d:66:4c:
04:e0:8c:7b:04:dc:6e:7a:42:be:50:2d:69:9c:49:4a:d9:d2:
1a:c6:de:49:a9:7d:12:6a:f4:b9:74:5a:45:1a:62:5b:a4:5e:
66:5d:fb:ce:aa:46:cf:80:f6:05:87:ab:15:44:25:d1:e0:15:
dc:33:0a:4e:78:c9:d1:43:e2:e0:7d:d7:be:f1:87:83:c2:bd:
b2:01:a3:ed:e3:b3:c3:f7:91:43:c1:aa:70:da:4f:cf:31:09:
be:72:23:7f:e9:f5:f4:7e:86:53:af:7c:be:7c:c2:01:74:d0:
c6:ab:72:ff:8d:9b:33:99:80:21:a8:9b:4d:fa:87:a8:9e:06:
88:46:b4:5d:9b:12:87:05:85:6a:71:98:24:7d:ad:36:35:66:
0b:d8:e0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:04:49 2026 by rpki-client