Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
File: PE71UtfFcTYTTntE1pfLAs3n2H0.mft (raw, json)
Hash identifier: a3GhSZOZuFtAknHv57V2NnwUyokw/Vz9F6wVOSPlaJM=
Subject key identifier: 4C:FD:E3:6F:ED:99:F6:35:D7:A2:EF:38:E4:DA:61:63:92:E9:33:C8
Authority key identifier: 3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
Certificate issuer: /CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Certificate serial: 019D2816F903E0B5245E590A144A4644DCE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
Manifest number: 0CEC
Signing time: Thu 26 Mar 2026 03:01:27 +0000
Manifest this update: Thu 26 Mar 2026 03:01:27 +0000
Manifest next update: Fri 27 Mar 2026 03:01:27 +0000
Files and hashes: 1: M2fsMNeCLbSytrRdZXN8GNnfsT4.roa (hash: ZZlxpGml6cr7CGJbkVDdK84PY4ZB8pkla7yZE+pnKvI=)
2: PE71UtfFcTYTTntE1pfLAs3n2H0.crl (hash: zxzSDgSVtUlosrXliEEV4uAstNlTFZ8Z9e6LpBl57A8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:f9:03:e0:b5:24:5e:59:0a:14:4a:46:44:dc:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Validity
Not Before: Mar 26 03:01:27 2026 GMT
Not After : Mar 27 03:01:27 2026 GMT
Subject: CN=4cfde36fed99f635d7a2ef38e4da616392e933c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:37:66:68:65:d6:e3:fe:8b:71:44:50:12:00:
1f:a8:be:5b:2b:6f:18:94:a7:72:97:3f:9e:cc:d4:
9c:e9:c7:68:7a:be:e2:e5:10:cc:d8:1b:2e:38:67:
f6:65:d8:7c:dc:61:9b:5b:73:35:a0:3b:2b:ce:3c:
8b:b1:bf:62:f1:ef:de:ce:7d:f5:d3:4d:26:69:8a:
a4:a4:30:e8:1b:44:e8:d5:1f:74:3f:3d:df:6b:2b:
01:2d:3e:66:20:23:dc:22:32:c2:79:39:a7:ad:7e:
2f:b5:03:92:d3:04:98:cc:6d:aa:6c:e2:e9:a4:7c:
f3:68:63:0b:ea:29:26:df:db:23:5b:f5:a3:0c:85:
83:32:94:fa:15:e0:2f:98:b6:a7:fc:41:ec:27:6c:
d1:a6:e4:f2:7c:cc:1b:7f:b8:63:91:a4:8e:07:22:
5d:eb:08:08:4c:c5:a2:76:f0:8b:05:5b:00:85:c3:
70:86:94:96:d1:62:56:5d:97:cd:fa:95:72:7b:82:
18:31:ed:d3:65:d9:f3:c7:80:63:d2:20:a4:91:8e:
ef:0b:4c:12:22:92:70:08:3e:34:c6:1d:e0:e0:e5:
a2:2f:22:60:c8:82:5f:ff:c0:65:20:d7:18:78:5f:
d8:72:05:43:7a:41:82:ad:aa:80:88:d5:59:23:56:
57:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FD:E3:6F:ED:99:F6:35:D7:A2:EF:38:E4:DA:61:63:92:E9:33:C8
X509v3 Authority Key Identifier:
keyid:3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:b6:e2:bc:52:a4:11:95:82:d2:78:0b:eb:97:d6:d6:14:09:
9e:4a:00:21:83:6e:b0:49:11:ca:94:1b:52:a3:92:5f:72:0e:
4d:8d:0f:ee:a3:90:be:83:07:3e:43:df:ff:78:f5:20:6e:dd:
b0:98:8d:7b:33:db:90:5b:4b:31:40:d3:6e:1b:14:91:ac:dd:
cd:7e:99:b2:a0:61:2e:0c:4d:a7:a0:94:eb:fd:46:dd:35:3f:
b3:51:d1:63:56:5d:ce:c8:19:fb:02:5e:3c:ff:33:eb:fc:56:
25:51:ba:e1:ec:79:29:16:08:e4:45:f5:a1:0d:55:07:8c:64:
51:40:15:55:ba:79:99:dc:5a:ff:4d:b2:6a:6b:b9:8f:97:13:
fc:13:8f:e3:8c:01:23:ed:e8:84:98:00:57:60:5f:61:6b:65:
1a:5b:47:32:15:16:12:9f:b9:05:d8:03:49:14:0f:7f:e0:a2:
34:46:e3:69:1a:80:17:52:e6:66:30:7a:70:72:54:4f:6f:cf:
5c:95:ac:13:b6:3f:83:05:a5:0a:ad:a1:8e:84:a3:bb:69:4c:
ef:41:4a:78:3e:0a:0f:c5:20:92:70:fd:a3:d3:18:82:5f:ae:
6b:6a:40:f1:38:53:47:d0:e7:77:45:2f:1d:d4:98:19:72:36:
1f:7c:29:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:44:44 2026 by rpki-client