Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
File: PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft (raw, json)
Hash identifier: ul97mjtmj9A/8HGMR5b5CjX3Hu+8AcN0R/kNsCEvRnc=
Subject key identifier: 0C:D4:0A:B6:9B:4B:D8:47:88:3C:62:E8:60:67:24:A5:D0:EF:AF:CA
Authority key identifier: 3C:0F:ED:6E:0D:14:2A:2F:09:C0:40:C9:9A:F1:C9:35:60:20:92:91
Certificate issuer: /CN=3c0fed6e0d142a2f09c040c99af1c93560209291
Certificate serial: 019D9B879AED95961201019D8CD75846EDB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
Manifest number: 1345
Signing time: Fri 17 Apr 2026 13:00:48 +0000
Manifest this update: Fri 17 Apr 2026 13:00:48 +0000
Manifest next update: Sat 18 Apr 2026 13:00:48 +0000
Files and hashes: 1: PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl (hash: tLVKPV9wGbr96zXZy49J9Od/LT86vV0qAQzk0Mln3pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:9a:ed:95:96:12:01:01:9d:8c:d7:58:46:ed:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c0fed6e0d142a2f09c040c99af1c93560209291
Validity
Not Before: Apr 17 13:00:48 2026 GMT
Not After : Apr 18 13:00:48 2026 GMT
Subject: CN=0cd40ab69b4bd847883c62e8606724a5d0efafca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e3:14:29:45:9b:db:13:93:18:71:72:3f:35:
ad:d2:df:4e:7f:24:3c:d4:4c:a9:65:eb:2a:54:ff:
5e:09:ee:8f:28:70:49:95:0a:46:8d:6b:06:04:ee:
3b:37:03:e6:41:60:22:e1:ce:a8:e8:73:1f:ec:ac:
b2:66:fa:eb:c8:b4:32:4b:51:f9:7e:6a:87:47:6f:
8e:9c:28:23:96:4d:90:f4:7f:23:47:09:1c:b3:d9:
98:14:95:94:a6:c8:65:60:f5:c1:0c:e3:fe:a9:7d:
7a:43:3a:26:fa:dc:bc:f4:31:82:54:70:4f:af:d7:
6b:eb:1a:1c:b2:4c:ba:ad:1e:a3:a3:c9:56:77:3f:
c1:e3:2a:38:4d:1b:e3:0f:de:f9:d2:09:c5:d2:47:
45:fa:f0:d1:9d:47:04:18:06:62:88:6f:f5:f0:9e:
2a:44:66:a8:90:c2:40:e1:74:ca:46:87:29:c5:62:
85:06:95:9d:8d:8b:a5:e8:17:fc:3d:e5:5e:5f:2f:
b7:9a:89:9f:37:c9:30:92:8f:cf:40:0a:be:d4:b2:
3b:9a:b6:dd:4e:c2:b5:81:01:a5:ea:d8:3c:c3:c3:
44:fd:fa:77:6d:0a:bb:89:67:80:ec:60:b3:35:fc:
2e:ac:40:83:21:78:5a:30:97:69:7f:47:09:17:7b:
37:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D4:0A:B6:9B:4B:D8:47:88:3C:62:E8:60:67:24:A5:D0:EF:AF:CA
X509v3 Authority Key Identifier:
keyid:3C:0F:ED:6E:0D:14:2A:2F:09:C0:40:C9:9A:F1:C9:35:60:20:92:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:3d:20:7a:61:60:83:5c:fe:6f:fd:65:a0:cd:84:b7:94:e6:
86:09:de:16:e4:1b:0a:2e:bb:b8:6e:18:85:2a:b7:8d:33:ea:
0f:4e:0e:07:a8:ff:25:19:31:2e:f2:7d:31:e8:7b:27:b5:65:
07:70:2a:e9:ff:9e:61:2e:46:9e:1d:7c:b8:45:f3:53:ef:04:
7f:f5:42:16:32:c8:48:94:28:19:ab:85:a3:52:a3:11:d7:0e:
0b:17:3a:da:f4:8a:7d:02:d3:49:cd:5b:40:37:69:89:5e:41:
49:86:b8:f4:cc:13:c0:7a:2c:ec:fe:69:e3:c9:dd:d9:01:dd:
ac:cf:53:a7:21:28:b2:11:a5:d3:35:06:ac:6f:27:76:53:f3:
0d:74:0a:e0:77:29:2b:e2:eb:73:83:80:f1:b4:17:6e:72:19:
66:06:fe:5a:fb:3f:82:67:bb:2a:73:2e:7f:ab:11:77:1e:0d:
47:47:e8:7d:50:2a:a3:29:89:ad:dd:95:37:16:66:80:17:f1:
69:94:52:38:01:3f:f1:19:8a:23:35:11:a1:76:45:c3:e0:ab:
e4:96:68:88:8b:c9:94:63:d0:53:b9:a5:9d:2c:53:ef:04:e3:
af:05:3d:13:34:34:84:dc:e5:69:e0:9e:61:bc:74:c4:9d:9b:
2a:c1:c2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:59:54 2026 by rpki-client