Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier: fWvJEbumMDshSHZM/HtHfBIc7Bxz9GukHky+1UN3BE4=
Subject key identifier: 80:4E:32:4C:29:49:2F:4B:A1:00:82:FA:8D:FB:04:6D:27:D1:25:78
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial: 019D9962F4D2383A15022A533694FA240371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number: 16E2
Signing time: Fri 17 Apr 2026 03:01:32 +0000
Manifest this update: Fri 17 Apr 2026 03:01:32 +0000
Manifest next update: Sat 18 Apr 2026 03:01:32 +0000
Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: 08mleVwbmOJ36MHGyU3tCS7aIYsi8Ul23quMR8ykCls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:f4:d2:38:3a:15:02:2a:53:36:94:fa:24:03:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Validity
Not Before: Apr 17 03:01:32 2026 GMT
Not After : Apr 18 03:01:32 2026 GMT
Subject: CN=804e324c29492f4ba10082fa8dfb046d27d12578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:a1:35:a5:0f:66:8e:7a:ed:3f:1b:5b:ba:
31:c4:30:71:32:83:fc:d2:b7:8e:37:30:13:f8:75:
f4:1a:76:0c:e0:75:7c:48:f5:7a:01:8d:16:5c:ae:
ed:70:e3:f0:f1:fe:f2:3c:93:fb:0e:65:8c:69:42:
09:97:37:bc:21:5e:4b:73:b3:85:1a:f3:8f:d2:bc:
c9:db:80:85:e0:99:96:f0:5a:5a:d7:3e:8b:62:10:
88:77:c7:2f:86:96:14:16:99:b1:98:18:0a:ab:dc:
8d:87:b7:00:44:bf:b5:23:40:90:20:9a:57:83:d7:
97:25:44:cf:8d:05:3e:0b:da:5c:3c:d9:2e:5c:c2:
1c:d1:99:3c:c7:49:78:1f:2a:6b:27:fb:e0:33:38:
4b:59:46:11:c5:d4:44:b8:4e:f8:6e:dc:55:e3:d7:
ad:8b:0f:4f:48:29:79:b5:58:e7:93:a9:d6:8b:20:
7b:3a:61:b7:75:18:1b:8d:4e:64:b2:87:68:cb:6a:
84:d9:a5:61:df:1d:53:04:a4:42:c8:75:5a:85:c5:
65:35:eb:b1:d7:fc:d0:6a:5a:0d:7b:71:ed:1d:ef:
63:ba:7c:9a:55:17:0f:47:29:64:9b:dc:17:58:cb:
75:77:54:a4:36:95:94:46:3a:18:38:21:c5:0c:b8:
28:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4E:32:4C:29:49:2F:4B:A1:00:82:FA:8D:FB:04:6D:27:D1:25:78
X509v3 Authority Key Identifier:
keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:fe:c4:61:f9:1c:51:3d:ef:d0:a6:3b:36:31:1d:c7:89:67:
7e:32:b0:84:b8:37:81:75:44:c9:90:58:ef:4e:46:73:51:e2:
5e:41:86:05:54:e3:63:e7:59:1d:0d:d4:5e:9e:bb:2d:8b:67:
13:8b:2d:4f:76:a0:2c:d2:2d:0d:eb:ff:31:21:9f:5d:b8:05:
2f:fe:dd:33:61:9d:d5:04:2c:d3:97:08:72:1c:a7:6d:2b:ff:
30:6e:02:a0:18:59:12:10:7e:f3:0e:eb:e8:66:b4:5d:71:12:
34:a2:67:a1:91:5a:9d:7a:ed:bd:36:6a:8e:ca:85:4b:23:24:
8f:47:88:f8:e1:45:c4:41:f5:bd:e0:8b:c8:d9:e8:cc:44:05:
53:8c:44:8a:40:00:4d:d3:b0:8c:67:46:18:2f:80:59:ae:74:
46:53:71:bd:cb:41:34:9e:00:5f:fb:1a:e7:5a:b6:eb:65:ca:
f9:ea:48:e2:ea:c9:c0:66:16:29:ae:50:37:49:17:2a:cf:cc:
0c:d0:9f:50:f6:16:a8:2d:3f:23:8d:00:36:74:96:4e:a8:6c:
19:0b:83:c7:a2:82:c1:4c:a1:e4:e7:21:99:37:72:54:b4:fd:
e0:a0:3f:a5:d5:70:d1:f5:e5:b2:db:e2:17:c6:7e:64:6f:d5:
3d:21:ea:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:28:24 2026 by rpki-client