Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: A311zSg34+9f+trmNH6ZJiHjy2z5Jn/uz0OM80cPME8=
Subject key identifier: 26:88:87:F0:AB:9D:79:67:0E:4B:0E:F6:AE:0D:B9:28:A9:AD:41:10
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019D265F41E9A6582DB1FFF70606E740E16E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1293
Signing time: Wed 25 Mar 2026 19:01:10 +0000
Manifest this update: Wed 25 Mar 2026 19:01:10 +0000
Manifest next update: Thu 26 Mar 2026 19:01:10 +0000
Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=)
2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: kl2G9stVU0YdTyItOr5IV35oVU55egSvzveOSeEk7Ws=)
3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=)
4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=)
5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=)
6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=)
7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=)
8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:41:e9:a6:58:2d:b1:ff:f7:06:06:e7:40:e1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Mar 25 19:01:10 2026 GMT
Not After : Mar 26 19:01:10 2026 GMT
Subject: CN=268887f0ab9d79670e4b0ef6ae0db928a9ad4110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bc:80:c7:c1:74:e9:a0:97:33:d9:f6:26:d7:
02:53:fd:79:10:8b:4f:43:39:cb:a6:29:f9:ef:0e:
16:fe:36:c3:32:48:b2:23:82:1d:cf:76:c9:e2:35:
37:d9:84:fb:a7:49:8e:57:58:d7:6d:c0:89:6b:25:
c2:ca:b5:db:cc:c7:92:20:41:33:9f:db:2d:93:c2:
5c:3c:73:fd:1b:a6:83:4c:03:2a:9a:11:c4:a0:14:
0c:30:be:d9:87:0f:b3:82:50:0b:35:49:b9:9a:aa:
dc:4a:b2:e1:2c:0b:a6:62:bc:59:e6:a1:7c:46:57:
49:d7:8e:34:ca:c2:4d:a5:90:0a:af:6b:09:2e:99:
02:c6:d3:0b:2d:88:86:72:cb:49:46:3b:4f:a3:1d:
a4:97:50:15:88:6f:e3:51:cc:66:bf:76:1f:d3:94:
d3:7a:47:eb:29:b8:d2:52:06:08:89:6d:ac:25:48:
4e:1b:d6:f6:66:2d:ba:30:f9:8e:14:b3:60:23:24:
b6:09:75:80:93:cf:54:88:a7:21:a3:57:4a:12:3c:
94:04:9a:11:f7:6e:53:e4:fd:47:60:ec:ec:95:5c:
2b:1f:bd:25:a4:d4:e0:55:50:54:7f:04:cb:6e:61:
7c:5f:b8:db:a5:94:c6:8c:e0:f0:96:0c:93:95:fd:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:88:87:F0:AB:9D:79:67:0E:4B:0E:F6:AE:0D:B9:28:A9:AD:41:10
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:20:bc:96:75:2a:ac:5d:04:ae:6c:a7:26:c5:e2:a8:76:e2:
03:56:ff:40:87:e0:94:df:00:2e:2f:15:f8:a5:bf:de:38:bb:
f3:d4:d1:c1:a1:53:de:c1:b6:88:99:34:c0:62:3f:7d:85:4f:
7e:b2:b6:c2:ed:8c:60:fc:c7:be:ce:e1:24:89:08:1b:53:84:
0f:cd:5f:24:9b:a4:32:27:4e:73:62:30:9e:3d:76:3f:a0:49:
a4:b5:53:c2:d1:11:0c:e3:ab:c1:a1:40:b9:b0:6f:73:3e:7b:
71:8a:71:b0:6d:7a:38:42:a4:8e:11:a4:00:de:f8:1d:8f:ef:
47:ce:32:77:2f:ba:25:3a:02:01:6c:ea:96:8d:21:8a:5d:c4:
b9:8f:8c:e2:e0:3d:3f:97:5f:ec:5d:f1:aa:51:85:fd:44:66:
da:87:2d:22:39:79:78:5b:ae:10:63:7f:a3:91:77:c6:e9:fb:
8f:26:61:49:ef:35:00:79:03:84:aa:34:eb:13:71:87:d5:ef:
1f:b5:88:ea:a6:32:d6:46:57:f0:0d:e6:94:08:10:0c:79:18:
1d:a8:77:26:09:ae:8f:c6:1c:71:ca:87:98:cb:09:14:37:17:
e7:6d:b5:87:04:d9:cf:5d:fa:65:6c:bb:f0:10:ec:25:8e:0b:
a9:9d:da:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:35 2026 by rpki-client