Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: 0pziABRlM8WGsLBvFrZsocyD6FA5hyFt8M/X/km7plM=
Subject key identifier: F6:07:B5:86:73:95:6B:DC:FB:F3:51:73:48:6B:A3:18:22:98:B4:FC
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 019CAD59C1BE223D1A44D3D91041B1279150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 124B
Signing time: Mon 02 Mar 2026 07:01:06 +0000
Manifest this update: Mon 02 Mar 2026 07:01:06 +0000
Manifest next update: Tue 03 Mar 2026 07:01:06 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: xjNWiOtFz12j9pxTtkzb5xAlyjVmrYQpGnE5SSnzP7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:c1:be:22:3d:1a:44:d3:d9:10:41:b1:27:91:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Mar 2 07:01:06 2026 GMT
Not After : Mar 3 07:01:06 2026 GMT
Subject: CN=f607b58673956bdcfbf35173486ba3182298b4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:ad:c8:39:36:5d:72:93:cc:7c:52:f3:14:
2a:74:04:71:f1:2b:42:36:f3:57:b6:c7:78:7e:1f:
be:d1:22:e6:b1:92:1e:77:04:85:78:cc:d8:84:93:
33:10:98:f8:fa:a5:2f:c6:25:64:ee:e5:78:09:a9:
17:ec:fa:4f:6d:4c:76:c9:fe:b1:34:b1:1d:3c:0c:
70:cc:40:b3:5e:0e:ef:f9:a0:80:cd:4c:72:b2:c6:
0c:fe:39:17:e7:6e:ca:8f:17:02:62:ad:9f:20:5e:
d0:a8:fa:72:f3:55:77:0e:53:21:f2:47:bb:68:16:
54:ea:2d:3c:4e:39:29:62:48:ca:63:d7:60:cc:07:
3d:ce:a4:3a:dd:8c:6a:67:b3:40:f5:25:6f:92:b4:
e4:fc:fc:02:83:b3:13:b7:d9:37:d3:37:00:70:33:
c5:0f:e8:d2:b6:2d:32:16:78:23:5b:fb:b9:cd:6a:
88:43:2c:a5:24:15:26:dd:5e:5c:7c:c9:7d:5a:ba:
c0:3b:4c:c1:39:46:47:24:e4:d0:08:89:ff:d2:ac:
ac:29:2c:bf:5e:61:f2:d1:bc:7c:ff:a1:d4:51:07:
85:48:8e:81:19:8b:69:11:69:5b:59:17:a8:f6:4f:
b2:69:ff:c6:2e:08:ed:46:f0:8d:9b:c2:c4:b0:57:
01:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:07:B5:86:73:95:6B:DC:FB:F3:51:73:48:6B:A3:18:22:98:B4:FC
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d0:d2:7c:b0:17:19:56:24:77:62:c3:1a:83:2f:4e:fb:7b:
33:0b:80:52:bd:c3:91:5d:f6:9d:a3:6c:66:cd:1a:5f:ee:c2:
90:19:84:5c:19:46:b2:d7:46:86:cc:cc:65:71:9a:45:48:aa:
ab:52:b1:0c:46:9f:ad:b0:eb:bb:6a:98:af:31:e8:62:54:7a:
af:da:32:87:34:a1:41:4b:92:d7:26:2e:38:dd:ce:00:df:9e:
5a:0b:ec:e9:07:ff:ae:49:2e:ce:62:4a:70:5a:8c:35:07:17:
40:e6:5a:fd:d3:d3:45:e0:ea:18:9d:a4:3e:85:58:de:76:eb:
77:ed:48:26:56:e0:46:56:01:8f:76:f5:77:9d:75:fb:91:5a:
6f:d5:2c:c5:50:29:4e:2c:35:a1:08:44:61:d1:64:55:58:9b:
cb:95:df:06:d2:fe:ec:33:76:c8:a8:57:1d:19:e1:03:4d:30:
d0:0c:da:2b:83:e8:33:a3:9f:3c:51:0f:95:c9:2c:7f:d5:88:
9c:47:ce:72:63:45:65:9f:00:68:f3:b2:ee:90:23:45:db:ee:
16:23:ae:26:6b:35:1d:2b:fa:b6:bc:07:79:bc:27:8c:a5:16:
f3:71:6b:01:2c:f2:88:c3:10:8d:35:ab:31:05:ed:bd:e1:48:
8c:7c:90:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:37:40 2026 by rpki-client