Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: QFClEnqt7erJd1Pty5YDU5BcMWqT9roIobffUn6XH2k=
Subject key identifier: 0F:0A:AE:1D:72:49:4B:CB:35:39:01:4D:85:59:4B:C0:B1:13:8A:14
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019E1ED9A81EAF66924D5CE3E8BF789C13BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1903
Signing time: Wed 13 May 2026 01:00:41 +0000
Manifest this update: Wed 13 May 2026 01:00:41 +0000
Manifest next update: Thu 14 May 2026 01:00:41 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: 7TwNj/nsaGeXKfcJV5pOggDnbPDCTCsANMqPcAZVp5g=)
2: aG1wC2y3Q6pluT4bomzfriW6qO8.asa (hash: y5OiOJ4JCn8oykPDM8IMuk0COHtj+uOEVrLwak92ue4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:a8:1e:af:66:92:4d:5c:e3:e8:bf:78:9c:13:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: May 13 01:00:41 2026 GMT
Not After : May 14 01:00:41 2026 GMT
Subject: CN=0f0aae1d72494bcb3539014d85594bc0b1138a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6a:2a:8c:cd:8c:15:19:24:20:58:89:bf:99:
ce:09:ec:b3:07:a5:2d:df:e9:f5:1f:68:e2:2b:2e:
91:b5:ba:06:89:36:58:a5:62:0d:a0:39:fa:50:78:
cf:c2:c8:70:85:0b:b7:45:41:1a:36:3b:c3:2c:ce:
54:cf:b1:73:5c:8d:c0:59:42:ab:c0:f9:b1:c2:0a:
54:66:7a:0e:68:de:f6:e7:96:08:6d:56:a4:14:9c:
46:61:1f:3b:36:bd:9e:09:c2:c6:f7:81:7b:5b:12:
df:83:be:9c:3d:9e:14:6f:34:2f:dc:fe:2f:91:dd:
5a:0d:88:35:02:18:1c:aa:50:ae:ac:9d:0f:44:bd:
b6:c0:23:4e:49:3c:42:10:b6:97:0a:89:1c:a2:20:
e7:e2:ae:13:7c:07:d0:18:2c:53:57:30:6b:85:d3:
e1:13:87:d9:de:41:8e:35:e5:b7:3e:f3:d9:a7:97:
14:56:58:ba:a6:d7:1f:0e:d4:2c:22:16:bd:0f:3b:
1a:ae:bd:63:06:9a:cc:0d:5e:4b:1f:5b:b3:9d:f1:
f4:27:74:f6:6b:72:28:2b:67:d8:d6:ab:b0:37:f2:
d9:a2:b9:0b:07:1d:8f:27:15:cf:54:e9:f5:8a:51:
83:d4:46:b7:81:c5:a8:5c:ea:53:c8:04:d2:9d:25:
0d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0A:AE:1D:72:49:4B:CB:35:39:01:4D:85:59:4B:C0:B1:13:8A:14
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:4d:02:c3:7f:17:d2:b8:23:86:cb:fc:a2:a5:c8:eb:0a:f0:
b2:17:af:b3:6e:26:0f:20:5a:3d:46:00:0d:a9:80:98:a0:68:
42:c2:5c:e2:bb:19:77:48:56:c0:8a:84:e3:0c:76:5d:a8:44:
fd:b5:ab:cc:70:b8:f9:40:5a:a6:4d:42:38:76:e3:ae:d8:20:
40:6c:6b:c9:4b:a4:26:73:b4:9a:37:35:11:b0:de:c8:07:05:
cb:90:08:a3:34:ec:68:47:58:10:01:1a:cc:75:dc:e8:11:8b:
6c:20:b8:47:13:5d:74:58:0d:73:81:8b:ca:11:66:56:ff:81:
72:39:88:d4:13:15:9e:1e:25:4c:7e:cf:b6:68:96:23:3c:07:
3f:39:50:9b:32:5a:c2:5a:b4:b7:99:fb:9c:cb:69:b8:9e:64:
72:f7:b5:20:46:eb:74:cb:a6:48:47:88:dd:f8:c8:b8:06:80:
da:b3:9c:0c:11:3f:ec:20:58:84:b0:b8:b5:81:e3:31:41:5e:
22:1a:33:7e:88:21:e7:ad:46:ef:96:95:f7:a2:09:68:b0:9d:
c5:4d:4a:95:92:bc:a4:2e:bc:8d:31:66:64:a2:9f:8e:b5:4e:
d3:06:c4:1f:52:91:11:52:dc:e6:88:e7:b9:15:b8:37:be:aa:
50:5f:98:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2ager2aSTVzj6L94nBO+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNzJhNWY0YmY3NDY2YTYxNDYyYWNiODg4MDhjN2YwMzZk
NGQ2ZDgwHhcNMjYwNTEzMDEwMDQxWhcNMjYwNTE0MDEwMDQxWjAzMTEwLwYDVQQD
EygwZjBhYWUxZDcyNDk0YmNiMzUzOTAxNGQ4NTU5NGJjMGIxMTM4YTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmoqjM2MFRkkIFiJv5nOCeyzB6Ut
3+n1H2jiKy6RtboGiTZYpWINoDn6UHjPwshwhQu3RUEaNjvDLM5Uz7FzXI3AWUKr
wPmxwgpUZnoOaN7255YIbVakFJxGYR87Nr2eCcLG94F7WxLfg76cPZ4UbzQv3P4v
kd1aDYg1AhgcqlCurJ0PRL22wCNOSTxCELaXCokcoiDn4q4TfAfQGCxTVzBrhdPh
E4fZ3kGONeW3PvPZp5cUVli6ptcfDtQsIha9Dzsarr1jBprMDV5LH1uznfH0J3T2
a3IoK2fY1quwN/LZorkLBx2PJxXPVOn1ilGD1Ea3gcWoXOpTyATSnSUNFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA8Krh1ySUvLNTkBTYVZS8CxE4oUMB8GA1UdIwQY
MBaAFD1ypfS/dGamFGKsuIgIx/A21NbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDIt
ODBjMGYxNGVkYWUxLzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDItODBjMGYxNGVkYWUx
LzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhk0Cw38X
0rgjhsv8oqXI6wrwshevs24mDyBaPUYADamAmKBoQsJc4rsZd0hWwIqE4wx2XahE
/bWrzHC4+UBapk1COHbjrtggQGxryUukJnO0mjc1EbDeyAcFy5AIozTsaEdYEAEa
zHXc6BGLbCC4RxNddFgNc4GLyhFmVv+BcjmI1BMVnh4lTH7PtmiWIzwHPzlQmzJa
wlq0t5n7nMtpuJ5kcve1IEbrdMumSEeI3fjIuAaA2rOcDBE/7CBYhLC4tYHjMUFe
Ihozfogh561G75aV96IJaLCdxU1KlZK8pC68jTFmZKKfjrVO0wbEH1KREVLc5ojn
uRW4N76qUF+Yug==
-----END CERTIFICATE-----
Generated at Wed May 13 11:45:33 2026 by rpki-client