Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: oKua9RSavPEZkmXu1x9wn5NVa5GTTvDwBNMdmToWLCE=
Subject key identifier: 38:E5:DC:76:EC:41:0D:F0:8D:4C:5A:30:CE:C1:B8:F5:81:D7:66:DF
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 019D26CD8CC312A059EFC78526A5ABD87332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 21:01:38 +0000
Manifest this update: Wed 25 Mar 2026 21:01:38 +0000
Manifest next update: Thu 26 Mar 2026 21:01:38 +0000
Files and hashes: 1: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: SuQ4JrCG572dskqzbdOKvyeSrOirNbLlJbRAQn59BnA=)
2: jqrp4A2XhAiKpWgKz5AERQNPI2k.roa (hash: W7kzwYJcoOuticaS4HLbtKGL58iB45UYEoKBlIElr8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:8c:c3:12:a0:59:ef:c7:85:26:a5:ab:d8:73:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Mar 25 21:01:38 2026 GMT
Not After : Mar 26 21:01:38 2026 GMT
Subject: CN=38e5dc76ec410df08d4c5a30cec1b8f581d766df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:74:0a:a2:de:35:70:74:8d:38:78:02:bf:
02:11:8b:f8:50:c7:02:68:82:fe:92:06:a1:9f:d2:
7e:1a:bd:3d:9f:28:f9:57:ce:e1:30:a9:2e:2e:48:
7b:ca:33:6e:c4:58:69:60:74:f8:06:ef:9e:72:6e:
c3:0d:c0:33:2f:35:21:98:a1:e6:38:30:62:dd:bf:
a1:99:9d:80:56:2e:13:95:15:47:d9:c0:90:f9:2d:
33:33:91:f1:9b:c7:20:c1:55:a0:18:cb:ec:b0:f6:
3e:17:1b:86:d0:94:68:cf:99:28:68:f0:9d:0f:3a:
71:21:04:77:22:7c:10:c3:d6:f3:1d:e6:e1:83:bf:
ae:b0:a9:81:54:7e:e3:e5:b7:e8:78:cc:89:28:5f:
82:ac:30:24:76:36:51:4a:6d:24:22:44:68:60:51:
8c:52:4a:61:40:96:30:c2:5c:1b:48:2e:bc:08:87:
86:99:05:89:03:6a:bf:6f:63:c3:fa:55:dc:43:1d:
2d:d5:4e:03:51:71:5a:34:8d:ac:b1:e7:80:68:e5:
f2:42:e3:cc:97:5a:cd:6e:c0:cf:7f:dd:42:5a:fe:
56:df:76:4a:52:e9:5e:b5:45:13:f4:1e:55:0e:f0:
16:34:10:38:1f:c9:1c:9d:e9:7d:6a:26:5a:07:1b:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E5:DC:76:EC:41:0D:F0:8D:4C:5A:30:CE:C1:B8:F5:81:D7:66:DF
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:69:f7:04:1d:70:b6:8d:29:86:99:f1:fd:29:45:b7:41:b7:
c7:b0:fc:6b:f9:3b:fa:9c:70:94:99:10:b2:d8:f4:2e:68:b7:
86:7a:1a:dd:5d:35:26:16:e9:f5:e2:69:e1:95:ff:7b:70:2b:
76:42:9d:79:d1:e5:c7:cd:39:2c:89:ec:cc:a6:ff:9f:c5:6c:
71:4d:e4:28:5d:1f:a4:c5:e9:6c:e0:86:f6:dd:e7:60:c0:f7:
28:60:ee:5d:84:2b:5f:c7:cc:ed:c8:a8:44:fb:1e:73:1a:51:
1b:3f:4d:bb:2e:f0:c5:b6:7b:b3:40:d7:d7:b1:09:b3:e6:8f:
ec:70:64:ae:e5:84:ee:b1:82:34:a9:99:1a:e3:c1:5b:01:26:
8a:c1:3a:7c:83:34:34:cb:f2:c2:a2:77:34:80:9c:1d:ea:22:
5f:52:06:ad:c8:dd:f4:24:fa:8c:ac:0b:90:c1:65:2a:1b:2f:
dd:56:43:0d:1a:aa:b2:a5:07:90:a2:f9:ad:4a:7f:03:b4:21:
b1:aa:b4:d0:2d:94:8b:4c:1a:a3:96:42:ae:2d:da:e0:d9:e4:
99:37:84:d0:2b:31:a3:47:cf:b6:64:74:e7:38:51:31:51:af:
94:03:22:57:a0:c4:8f:14:4d:8f:fe:06:7f:09:0f:e8:49:91:
ba:d8:cf:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:17 2026 by rpki-client