Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: i6i4CmKTBhny7dTGF3AtgU125bKxiAngI2gTIirZTSo=
Subject key identifier: BB:E1:5E:D2:59:E7:60:87:4D:6C:CD:B7:67:F5:F5:EE:68:53:50:BA
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019D29CEDB51820F09B8AB96B3E15F8F467F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 11:01:55 +0000
Manifest this update: Thu 26 Mar 2026 11:01:55 +0000
Manifest next update: Fri 27 Mar 2026 11:01:55 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: DZEVuqsqYiK7PpvzIbQt8frRza8KY1aBNf+OMPyGDjc=)
2: ZyRogeaonWCDX6YHI-BEV3oTgbo.asa (hash: UhcSgiJzCKNgPVuyaZNIhdxTbMyFoRx3xZ1V9omPKtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 11:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:db:51:82:0f:09:b8:ab:96:b3:e1:5f:8f:46:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Mar 26 11:01:55 2026 GMT
Not After : Mar 27 11:01:55 2026 GMT
Subject: CN=bbe15ed259e760874d6ccdb767f5f5ee685350ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:9d:2f:2d:19:84:7a:fe:9e:3a:0a:0b:3e:75:
cf:48:34:c3:c5:cc:ea:60:b3:28:b9:b5:f7:3f:10:
19:b7:1f:1b:24:51:28:ac:7b:a6:b3:aa:38:ee:5e:
e6:8e:e9:28:d0:a9:fc:51:40:7b:71:58:37:cb:67:
38:2e:9e:d5:6b:04:42:7d:06:c4:2e:1d:c0:e5:af:
f1:62:13:e5:fe:06:83:25:51:ad:f4:ad:31:f7:7b:
a2:0f:3b:b9:3a:ef:6a:28:6e:1c:86:e8:ac:67:ee:
3f:60:6b:bd:b6:65:29:91:0f:0f:94:b7:4e:e4:e1:
47:2c:2b:cd:7d:15:72:0f:3c:65:7a:f0:28:83:05:
9e:d6:c9:c6:ff:a1:7c:a6:84:8f:8b:29:fe:c6:63:
86:08:a0:b3:b0:52:24:83:6a:84:44:ae:3c:4f:4a:
5a:5d:5c:01:e2:42:50:4a:f5:42:cb:7e:dd:70:ef:
40:7c:07:aa:6f:56:4f:f9:d9:b0:26:00:e7:72:b6:
67:ec:cf:e4:f9:3b:e4:c2:26:d2:36:1f:e6:5d:28:
d7:fc:62:f3:54:f6:15:1a:80:b0:92:a2:d8:03:b7:
f2:36:4c:1c:5b:93:ef:5d:2f:a8:41:4f:2b:b0:58:
56:f9:82:2e:2b:22:68:00:c8:b7:90:3e:fe:0b:3f:
17:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E1:5E:D2:59:E7:60:87:4D:6C:CD:B7:67:F5:F5:EE:68:53:50:BA
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:91:b7:c7:b1:75:f0:8c:41:04:2b:9b:34:90:d3:c3:2c:f1:
2b:79:80:29:f1:67:ef:68:34:94:41:03:90:4d:cc:d3:3a:b6:
b3:a4:24:a1:fc:f8:e0:5a:50:9f:e4:30:08:c8:43:82:ac:51:
6d:fb:cc:c6:60:65:de:de:a6:21:d7:54:b8:2f:1b:e5:81:e6:
c4:a4:76:54:27:7b:bd:98:15:75:7c:b1:e1:86:94:b0:bd:5f:
08:ef:bc:57:af:af:09:91:21:9d:bb:88:f1:09:60:90:f2:fb:
88:dc:20:7e:58:4b:3f:8e:26:f3:b1:92:eb:01:9f:88:ca:ad:
d5:5f:2d:33:60:d1:11:99:86:73:e6:c8:de:d8:b8:3e:50:a7:
53:2f:b0:c0:21:2b:be:23:49:22:24:59:6d:f6:0d:80:ef:91:
c5:32:67:30:05:71:b6:f4:c8:f6:19:b8:e0:27:e7:f7:de:b8:
56:54:f2:45:1e:98:ac:02:06:9f:69:f6:2f:c5:7a:8f:ad:4a:
f9:2c:2c:9c:fe:74:e8:0b:c2:a8:d1:3b:f3:a6:f9:c4:cb:2f:
47:59:7a:ba:6f:9d:43:86:a2:77:e1:0c:24:57:02:a4:38:8b:
06:5b:45:25:04:96:e8:c1:37:93:2b:40:5d:97:c3:07:3e:52:
9d:17:ae:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:05:04 2026 by rpki-client