Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: KmIl+yG48hipwx+2D4ohONOjV1Bd3EFEMwUCSSf2b8k=
Subject key identifier: DB:CE:91:76:9A:7C:8E:AE:97:9A:99:B5:24:2D:9C:7A:D3:31:4E:AC
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019DA30A43879E48142A1159C90E0C3543A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 1854
Signing time: Sun 19 Apr 2026 00:00:51 +0000
Manifest this update: Sun 19 Apr 2026 00:00:51 +0000
Manifest next update: Mon 20 Apr 2026 00:00:51 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: nSLW5tZiyqcDeQgJfcks3/Uao/oDqtvRHaw6PMIHKqs=)
2: ugGgjfrNMaOwuHgQR5J_mmnCoSw.roa (hash: N5PN03imR/rPD+0R00oOm/EBGbZntmCDYE46dLOAj4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:43:87:9e:48:14:2a:11:59:c9:0e:0c:35:43:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Apr 19 00:00:51 2026 GMT
Not After : Apr 20 00:00:51 2026 GMT
Subject: CN=dbce91769a7c8eae979a99b5242d9c7ad3314eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:47:81:17:45:dd:e5:93:07:8c:79:7b:d4:
9f:72:e3:15:aa:85:3d:31:61:3e:af:9a:2b:06:bf:
1f:a4:1f:2c:f6:a9:26:6e:fc:b9:7b:ff:91:23:b7:
c6:77:89:2f:0a:24:f4:33:6e:b7:56:02:49:7e:2a:
8e:8f:0e:7e:67:06:10:4d:48:8b:34:6a:94:c7:63:
56:ea:c4:c4:04:1a:3f:e9:99:40:1e:0e:04:a4:63:
77:c6:61:7b:aa:b2:8f:41:79:b8:35:b7:2c:87:23:
b0:63:17:dd:ba:bb:3b:31:28:92:e7:9c:3a:64:2e:
7a:67:9a:90:07:8e:fa:7d:ec:f5:e0:06:91:a4:85:
f1:b8:f1:fb:11:9a:05:3a:39:3f:f0:5b:f8:76:83:
55:7b:8f:65:60:6a:ef:d2:52:66:8d:f6:58:f6:23:
f6:d8:72:ef:5c:89:10:a8:a4:fa:2d:ca:29:4e:22:
ef:cb:a3:6a:27:2f:76:a5:c0:3d:08:ef:da:92:c7:
ae:d6:8f:64:55:fb:ef:c5:92:23:25:bc:1e:a0:87:
2d:6b:24:56:2e:6d:c3:a3:13:ab:ef:bc:ae:b8:ac:
af:9a:97:6a:3c:c7:5a:67:eb:e3:5c:98:fc:14:01:
18:85:3e:01:e7:46:58:3d:b2:45:c8:7c:52:95:38:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CE:91:76:9A:7C:8E:AE:97:9A:99:B5:24:2D:9C:7A:D3:31:4E:AC
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:71:56:66:7e:ca:eb:64:ab:95:a8:bb:1c:71:d2:f7:a2:80:
16:fc:38:c3:b8:a0:30:ed:c8:10:f6:27:6d:e4:4d:0b:6b:5f:
ea:0e:51:9b:ad:1f:e2:b0:64:72:a5:e0:74:1c:39:10:cf:34:
b1:d8:13:a7:8a:b3:1f:94:08:e9:37:37:5f:fd:55:25:8b:25:
7b:cf:33:bf:df:b6:12:47:bc:33:20:0e:45:ef:97:f6:67:c5:
98:ed:ed:57:db:8c:3d:18:34:a5:26:2f:9d:7d:37:b4:4b:ef:
9c:c2:95:07:34:fa:af:32:e4:80:d2:e2:b7:c2:e1:3e:57:00:
d1:ad:94:35:e8:72:74:29:1a:1a:17:17:ed:f1:c1:ae:78:15:
f9:fb:7f:d7:7d:08:5e:02:aa:89:7f:54:d1:73:ea:cb:c2:34:
73:4f:09:46:9b:f0:31:be:4e:f4:56:3a:98:c9:c7:43:03:87:
75:82:aa:d2:65:52:f4:d1:aa:46:fa:1b:a7:6d:fd:b0:0c:3d:
dd:99:13:3a:74:31:3a:85:76:f9:2e:c5:3b:12:e4:bc:1c:33:
59:3d:e2:ec:0d:c8:89:f8:88:4b:c5:68:f0:55:cf:ee:36:53:
45:86:20:6d:a4:b4:f7:ec:02:d8:b6:f1:7b:32:d1:61:cd:1b:
92:3f:79:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:23 2026 by rpki-client