Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json)
Hash identifier: ssST2dNE4zgLxoR31tShSw59JH0HD0XJAOlIJjdyHyw=
Subject key identifier: CB:75:0E:15:A2:9C:38:E1:94:81:00:B2:59:E1:47:90:E2:F7:28:F8
Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Certificate serial: 019D277260F5945A0E8149EE37B30013129A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
Manifest number: 05CE
Signing time: Thu 26 Mar 2026 00:01:40 +0000
Manifest this update: Thu 26 Mar 2026 00:01:40 +0000
Manifest next update: Fri 27 Mar 2026 00:01:40 +0000
Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: ApKFO2wyk1aZOJap+mJU+u7xTBYYPfXM7N2dUfrRMCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:60:f5:94:5a:0e:81:49:ee:37:b3:00:13:12:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Validity
Not Before: Mar 26 00:01:40 2026 GMT
Not After : Mar 27 00:01:40 2026 GMT
Subject: CN=cb750e15a29c38e1948100b259e14790e2f728f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:31:09:bf:03:b2:51:57:ff:7a:15:ba:9d:
33:12:6d:ff:dd:03:07:82:b0:ad:ad:13:9c:d1:3b:
50:95:f3:e5:53:df:86:97:55:60:56:26:d4:10:55:
6a:6e:ee:50:ea:fd:f5:75:83:4b:1d:09:09:65:92:
9c:0b:9a:25:ff:a2:6b:dc:93:35:40:af:af:4c:b6:
4e:3e:a9:f1:1a:73:69:26:b3:66:9f:fb:03:45:1e:
a7:8f:6a:2b:50:1b:92:34:d2:41:53:09:54:58:81:
f5:a9:b7:8f:c1:8d:05:c8:a2:0c:95:a6:cb:e4:d2:
68:82:df:77:0e:2d:82:13:31:41:06:ec:d3:0e:e1:
84:37:a6:06:f1:6f:c3:ba:3d:fe:73:9a:44:d0:45:
e7:fa:ab:ea:b7:b2:09:79:10:e6:0c:87:ba:e4:eb:
42:f2:2a:05:94:71:de:e6:70:aa:1d:c5:b3:ed:2e:
3d:68:c6:69:06:59:48:08:95:0d:55:b7:fc:4b:ba:
90:cb:bf:dc:2e:e0:d8:d7:a7:ed:5e:20:3f:14:ec:
11:05:1b:67:34:b4:bb:86:c0:1d:23:07:28:71:1d:
86:18:5e:76:56:ed:1b:35:81:54:15:50:76:dc:ea:
1f:a3:8e:fa:fd:85:df:f0:ff:06:4a:04:b6:41:f5:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:75:0E:15:A2:9C:38:E1:94:81:00:B2:59:E1:47:90:E2:F7:28:F8
X509v3 Authority Key Identifier:
keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:95:b7:5a:3d:d3:e3:9b:a4:00:ac:14:51:9f:a1:bc:8e:20:
fc:f1:6c:fe:37:1b:b1:7c:b1:f8:d0:66:03:ce:83:29:fb:7d:
7d:a9:ad:91:4b:c2:b9:27:3c:4b:a3:4c:fa:8f:e6:88:34:e7:
e6:d9:c6:a0:85:f2:48:4b:cb:f8:e4:87:a0:9a:e1:9b:fb:6b:
0e:ae:fa:5e:15:03:88:f4:52:51:55:b5:ca:b1:dc:7a:64:d9:
1c:35:a9:f8:91:37:6d:13:90:9b:73:4a:1c:33:bc:dd:4a:a2:
83:37:af:e9:2e:cb:de:c8:13:c8:63:c1:fb:4d:1d:57:e7:0e:
ad:a4:38:b1:12:e8:59:6b:26:35:19:51:74:06:8f:a9:28:e0:
d0:a2:a0:91:54:20:62:03:9c:72:6b:e7:0d:79:e4:d9:fa:cc:
89:b3:ea:fc:f1:82:f7:75:b5:d0:f6:41:40:4a:90:e4:65:76:
17:d7:5e:b4:27:94:50:fa:e1:ab:b3:51:5e:a6:8e:f3:24:35:
1c:84:86:34:6d:8d:29:02:64:8d:69:c2:60:3b:17:5a:36:da:
a8:2b:9f:73:ee:10:a1:1b:70:16:d1:10:5d:ad:c3:68:20:1b:
a3:6d:a7:41:fc:0f:d5:b7:55:2e:65:3a:be:54:1b:85:17:22:
e5:6e:ae:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:56:35 2026 by rpki-client