Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
File: PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft (raw, json)
Hash identifier: RkN4ykGyMj9yeEV384zv1hLZMHutWYHEZZERPRNq508=
Subject key identifier: 9B:76:C7:08:71:47:45:E0:A9:1E:31:F8:17:9C:6B:FE:90:3D:75:3E
Authority key identifier: 3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
Certificate issuer: /CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Certificate serial: 019CAB6BA6BFA4473EF395DCBF38CE55F6E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
Manifest number: 05CA
Signing time: Sun 01 Mar 2026 22:01:24 +0000
Manifest this update: Sun 01 Mar 2026 22:01:24 +0000
Manifest next update: Mon 02 Mar 2026 22:01:24 +0000
Files and hashes: 1: PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl (hash: tFV9XW5apxmRZ3MW46uoX6EVOcsf/29u9d1q56YMy70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:a6:bf:a4:47:3e:f3:95:dc:bf:38:ce:55:f6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Validity
Not Before: Mar 1 22:01:24 2026 GMT
Not After : Mar 2 22:01:24 2026 GMT
Subject: CN=9b76c708714745e0a91e31f8179c6bfe903d753e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:00:5e:b2:f9:36:19:24:0a:6d:a3:9d:f8:
a3:a4:a0:b6:ed:a2:dd:1b:51:de:a2:a7:f6:c6:4c:
58:62:ce:8d:9b:0c:9c:d9:23:3f:85:01:98:f8:23:
ea:5c:4f:a3:16:bb:e5:4d:38:08:21:c9:56:e4:c6:
31:f9:3b:c9:d5:2b:45:ac:d4:42:41:cd:a2:87:e7:
b2:47:4c:d8:18:1a:c7:79:9c:2f:b6:99:98:b9:e2:
fb:a1:85:28:91:ba:38:bf:10:75:9b:34:0e:40:e2:
bf:34:d8:09:a6:4b:df:6c:b6:c1:11:1e:03:fb:1f:
e4:ce:bd:e1:83:b1:c2:81:43:a2:e2:ed:6e:a5:cc:
44:f6:44:21:70:5e:e9:e1:ed:70:5d:92:33:26:34:
5d:4f:68:ab:13:ee:b4:f6:b9:88:0c:32:a9:c4:aa:
69:f7:51:d4:0b:f7:0c:d7:be:0a:da:1a:8e:3e:73:
a0:da:7c:dd:14:0a:c2:bf:ce:37:eb:a7:07:18:c9:
61:66:74:e3:b4:26:4f:7e:1d:83:fc:a1:ea:c6:3f:
03:11:ee:57:6a:65:06:b3:b5:bb:ce:e8:ce:57:a5:
a3:ab:74:d9:41:64:8e:01:b5:b0:94:14:6e:6a:f5:
da:08:52:a7:77:6b:24:d1:54:95:d3:62:b7:16:95:
98:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:76:C7:08:71:47:45:E0:A9:1E:31:F8:17:9C:6B:FE:90:3D:75:3E
X509v3 Authority Key Identifier:
keyid:3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:96:89:b2:4b:5f:a5:d8:41:94:98:37:cf:c8:05:ae:f4:05:
e2:9d:8d:de:27:21:fd:9e:c9:03:a7:db:e2:5c:11:84:3a:4c:
8c:9f:50:38:e7:90:ae:73:1a:dd:a1:07:e2:99:be:eb:8d:d8:
16:69:c7:5e:c2:e8:a9:0b:29:7a:89:2d:79:3c:62:3f:ad:25:
8e:bf:14:5c:54:7f:d8:1f:3d:d0:df:ce:19:80:54:89:06:3b:
89:ac:19:85:91:48:7f:9f:8c:aa:fc:a3:0c:4e:d0:f5:49:a6:
32:08:75:18:aa:6b:23:e6:1b:7b:02:90:6d:bc:87:50:50:01:
77:18:16:6d:6c:b9:1e:ed:a9:88:52:20:84:35:8d:9a:93:6f:
56:7e:c8:0c:d6:c5:f5:29:8a:7b:2a:da:3e:1b:81:73:63:bc:
56:d6:4e:e5:2e:ae:d2:5f:f6:7a:1d:54:7f:0c:d8:cc:1b:74:
72:a3:02:ce:5e:d2:aa:56:36:0b:8b:5f:03:d1:00:7d:40:93:
4b:08:f7:eb:15:aa:05:00:b5:b0:6e:4f:7a:2c:23:1d:32:2e:
82:e0:13:92:d8:01:f6:1d:1a:90:aa:61:fb:39:8e:b7:1a:73:
6e:8d:23:26:1d:d4:61:df:5c:5c:4a:38:7b:85:08:39:77:fd:
63:66:eb:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra6a/pEc+85XcvzjOVfbhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMWI2N2NjZGE0OWM4ZGU0ODkyOTM0MWY2ZGU4YTJiNjAy
NWIzYTYwHhcNMjYwMzAxMjIwMTI0WhcNMjYwMzAyMjIwMTI0WjAzMTEwLwYDVQQD
Eyg5Yjc2YzcwODcxNDc0NWUwYTkxZTMxZjgxNzljNmJmZTkwM2Q3NTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2oAXrL5NhkkCm2jnfijpKC27aLd
G1Heoqf2xkxYYs6Nmwyc2SM/hQGY+CPqXE+jFrvlTTgIIclW5MYx+TvJ1StFrNRC
Qc2ih+eyR0zYGBrHeZwvtpmYueL7oYUokbo4vxB1mzQOQOK/NNgJpkvfbLbBER4D
+x/kzr3hg7HCgUOi4u1upcxE9kQhcF7p4e1wXZIzJjRdT2irE+609rmIDDKpxKpp
91HUC/cM174K2hqOPnOg2nzdFArCv84366cHGMlhZnTjtCZPfh2D/KHqxj8DEe5X
amUGs7W7zujOV6Wjq3TZQWSOAbWwlBRuavXaCFKnd2sk0VSV02K3FpWYQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJt2xwhxR0XgqR4x+Beca/6QPXU+MB8GA1UdIwQY
MBaAFD0bZ8zaScjeSJKTQfbeiitgJbOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9kOGMwOTgtNzg2Mi00MmNkLWFkMDMt
MDhiMjRiZTEyNjg5LzEvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9kOGMwOTgtNzg2Mi00MmNkLWFkMDMtMDhiMjRiZTEyNjg5
LzEvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACpaJsktf
pdhBlJg3z8gFrvQF4p2N3ich/Z7JA6fb4lwRhDpMjJ9QOOeQrnMa3aEH4pm+643Y
FmnHXsLoqQspeokteTxiP60ljr8UXFR/2B890N/OGYBUiQY7iawZhZFIf5+Mqvyj
DE7Q9UmmMgh1GKprI+YbewKQbbyHUFABdxgWbWy5Hu2piFIghDWNmpNvVn7IDNbF
9SmKeyraPhuBc2O8VtZO5S6u0l/2eh1UfwzYzBt0cqMCzl7SqlY2C4tfA9EAfUCT
Swj36xWqBQC1sG5PeiwjHTIuguATktgB9h0akKph+zmOtxpzbo0jJh3UYd9cXEo4
e4UIOXf9Y2brXA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:43:09 2026 by rpki-client