Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
File: pnUQ3cUswCV-TCVS9b1XVURUxgs.mft (raw, json)
Hash identifier: +cqrOrRQABX02e9+9hEnaQYaXn99LX0FRxUqyUHpQG4=
Subject key identifier: 2B:95:42:78:2A:AB:6D:48:58:25:53:30:67:97:0A:A4:C9:F7:09:C8
Authority key identifier: A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
Certificate issuer: /CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Certificate serial: 019D99998366089357E09F3776978888013C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
Manifest number: 083F
Signing time: Fri 17 Apr 2026 04:01:07 +0000
Manifest this update: Fri 17 Apr 2026 04:01:07 +0000
Manifest next update: Sat 18 Apr 2026 04:01:07 +0000
Files and hashes: 1: pnUQ3cUswCV-TCVS9b1XVURUxgs.crl (hash: soLudLlv2bRq/QvKG0sp4EY+/XqY+D9vNShaXCfxZmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:83:66:08:93:57:e0:9f:37:76:97:88:88:01:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Validity
Not Before: Apr 17 04:01:07 2026 GMT
Not After : Apr 18 04:01:07 2026 GMT
Subject: CN=2b9542782aab6d485825533067970aa4c9f709c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:35:cd:75:d1:6b:7c:6c:72:7f:8a:8d:12:cc:
c4:10:5d:29:00:87:1a:e4:d7:a6:1a:2b:a4:05:6b:
0a:19:4c:ab:20:4d:90:3a:be:29:58:d9:a6:fc:81:
f9:f3:71:e9:96:bb:64:3b:9b:92:b6:cc:80:52:1e:
88:92:83:5c:f1:fe:3d:2e:31:3a:f6:11:ed:59:98:
6b:f8:25:58:8e:ef:81:dc:05:71:63:9b:32:ea:96:
10:68:ae:11:e7:cc:fd:44:78:5a:01:43:e8:2a:02:
a8:8e:f5:fe:ba:8d:b9:48:84:8d:97:70:49:bc:d5:
23:6a:1d:00:f5:ed:28:c3:c7:fa:83:9c:ca:ea:cc:
c9:60:aa:75:e6:d7:65:c8:5f:68:7a:6e:de:7e:d3:
f2:48:c9:f8:ca:28:0b:5b:3d:97:fa:e6:8d:05:49:
34:2b:d4:ea:98:ef:d4:da:11:48:4d:52:9c:e5:00:
82:b7:c6:f9:8f:00:cb:21:71:27:32:49:b7:3e:7e:
a4:67:86:66:fb:0b:e1:35:24:24:94:ce:c7:fc:7b:
62:23:78:10:37:b5:4d:42:b9:9d:ef:a6:14:5d:68:
87:97:1c:60:07:15:89:83:2b:36:62:97:3f:c8:55:
54:85:6e:a4:af:ef:26:74:e0:45:86:ed:97:f0:de:
47:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:95:42:78:2A:AB:6D:48:58:25:53:30:67:97:0A:A4:C9:F7:09:C8
X509v3 Authority Key Identifier:
keyid:A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:d8:76:94:69:6f:a1:07:a7:c7:68:10:36:8a:9b:b5:b3:08:
4b:e5:36:08:a9:0c:b9:a5:33:8f:e0:ba:2a:b6:7e:c8:be:3e:
a2:e7:3d:94:d9:d2:e9:b1:fa:55:a6:d8:1e:5c:28:2a:4b:17:
a0:ab:68:87:e0:18:42:05:b7:6a:c3:12:db:54:1b:e2:91:18:
ab:0b:f2:cc:27:94:f1:5d:ab:90:d6:8d:af:fe:3b:bb:40:54:
d3:4c:0e:70:1a:42:de:e7:38:38:fb:3a:86:b2:31:67:83:28:
b8:f1:fe:00:64:1b:e8:ec:f7:85:8e:3f:87:48:aa:7d:05:df:
af:34:bf:3a:27:3c:61:da:5f:28:53:9b:72:2c:85:9b:2d:04:
84:bf:f0:de:73:de:25:9a:00:5a:97:d9:c0:23:7a:b8:39:39:
33:d5:67:00:de:68:c2:80:3b:85:66:ed:04:ae:70:71:82:25:
47:cc:58:97:10:7e:86:f6:7a:6f:88:9c:d6:d0:ff:77:19:35:
f6:48:5c:4e:f1:40:79:bd:68:2d:96:88:0f:67:43:31:df:28:
2e:64:da:c3:47:e1:79:44:dd:9d:d4:03:d1:4a:cb:b5:75:70:
2d:bb:a3:8d:72:3b:94:f0:e4:18:a6:57:f4:fb:3e:3d:54:36:
6b:20:43:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:09:52 2026 by rpki-client