Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: ZTWV2zkchj5rrx4hejeA+Tu/21/yxTLq89Di8p2z9LY=
Subject key identifier: BD:27:30:61:B2:97:1A:C7:C3:0B:40:00:FA:89:78:0B:7A:A8:91:9B
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019D9A3EA9E6E3BECBF29CBBA896E834DD09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0B89
Signing time: Fri 17 Apr 2026 07:01:31 +0000
Manifest this update: Fri 17 Apr 2026 07:01:31 +0000
Manifest next update: Sat 18 Apr 2026 07:01:31 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: 1405k3sVqNLK5fL/O/KP9qe2iWrJW+qdbebhlQeR/xI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:a9:e6:e3:be:cb:f2:9c:bb:a8:96:e8:34:dd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Apr 17 07:01:31 2026 GMT
Not After : Apr 18 07:01:31 2026 GMT
Subject: CN=bd273061b2971ac7c30b4000fa89780b7aa8919b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e3:13:55:86:0d:d9:4a:07:eb:b7:cf:f9:76:
5b:15:cb:ff:f1:cf:52:87:b4:57:bc:2b:be:cc:e1:
50:e3:37:c8:05:08:63:fe:34:28:37:81:36:50:90:
a1:5f:db:2c:01:66:0c:d7:7a:cc:37:16:be:77:0b:
53:0c:74:8a:47:e0:4b:b4:1f:08:ec:f2:53:35:7a:
61:32:c2:fd:3b:f2:d7:01:af:12:f4:90:f1:a1:3c:
30:c5:08:39:f4:e2:42:b7:f4:80:36:bd:cb:f9:48:
d9:08:72:08:14:d0:6c:15:68:4b:68:0b:66:87:66:
b5:bf:29:4b:81:a3:aa:68:6d:f7:79:f5:0a:1a:aa:
42:95:70:ed:d9:f2:af:0c:b6:52:db:6f:c3:cc:c0:
f3:8d:5f:b0:d3:7b:1e:02:f3:56:f2:e7:70:d2:18:
ef:4f:ca:96:4d:1f:ac:d8:96:fa:25:d9:0b:4f:b8:
f2:6a:a3:eb:14:57:a5:0b:00:3f:74:9a:e9:9e:d0:
55:0f:3b:e5:15:a2:29:2e:1b:90:79:1f:cd:59:c5:
aa:01:d5:c8:71:14:93:40:bd:e0:38:32:a3:c6:1b:
ef:38:ab:85:21:75:56:eb:f6:8f:c0:07:d1:ae:d5:
a9:15:b1:c8:2e:e3:11:f0:f0:5d:99:ce:3c:42:1d:
93:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:27:30:61:B2:97:1A:C7:C3:0B:40:00:FA:89:78:0B:7A:A8:91:9B
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:2e:c1:a5:e4:e9:26:d9:68:a5:13:8a:64:fc:45:04:27:dc:
a4:b1:2b:04:f7:5e:eb:2e:dc:24:72:33:b7:2e:da:d1:66:3f:
0d:a5:a8:b4:1a:63:89:6f:e4:7c:7c:8a:0b:cf:1d:01:41:52:
12:01:33:b6:cd:92:c1:1a:e7:e7:a5:df:83:da:dd:2d:cc:70:
9d:d6:e0:1a:70:4f:5c:28:ff:a6:82:59:b5:eb:5f:9b:c9:f9:
e5:c7:3d:6d:69:be:07:51:0d:39:6b:1b:4a:e1:cd:09:6c:d6:
a2:91:72:51:a6:84:72:aa:66:a4:e6:df:e4:01:16:64:9d:1a:
19:5c:0f:7a:f6:57:48:c5:d7:23:ca:54:e6:b9:c8:a1:d9:c1:
fd:10:ad:69:73:b1:42:c6:62:21:f2:c9:87:77:4c:da:61:59:
6a:ad:d2:04:67:9f:e9:6f:b6:63:41:ea:8b:c2:87:20:b4:9c:
01:ca:11:75:c7:1a:65:1d:d3:6d:5b:66:ea:0b:d4:fa:e6:41:
e7:e6:02:61:f8:27:d3:d3:74:c4:d6:f4:8b:5d:a7:1d:29:be:
1a:d6:28:79:8e:5e:21:05:18:a7:c1:93:af:34:69:bc:d2:61:
10:3a:92:63:60:cc:a9:d1:af:69:dd:e4:1e:bd:55:87:e9:4d:
c2:71:02:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPqnm477L8py7qJboNN0JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkODk3YmQ4YzZkZjFjYjcxNDEwZmUxOTRiZWQ3MzlhMmY4
YTY3NzMwHhcNMjYwNDE3MDcwMTMxWhcNMjYwNDE4MDcwMTMxWjAzMTEwLwYDVQQD
EyhiZDI3MzA2MWIyOTcxYWM3YzMwYjQwMDBmYTg5NzgwYjdhYTg5MTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOMTVYYN2UoH67fP+XZbFcv/8c9S
h7RXvCu+zOFQ4zfIBQhj/jQoN4E2UJChX9ssAWYM13rMNxa+dwtTDHSKR+BLtB8I
7PJTNXphMsL9O/LXAa8S9JDxoTwwxQg59OJCt/SANr3L+UjZCHIIFNBsFWhLaAtm
h2a1vylLgaOqaG33efUKGqpClXDt2fKvDLZS22/DzMDzjV+w03seAvNW8udw0hjv
T8qWTR+s2Jb6JdkLT7jyaqPrFFelCwA/dJrpntBVDzvlFaIpLhuQeR/NWcWqAdXI
cRSTQL3gODKjxhvvOKuFIXVW6/aPwAfRrtWpFbHILuMR8PBdmc48Qh2TMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0nMGGylxrHwwtAAPqJeAt6qJGbMB8GA1UdIwQY
MBaAFD2Je9jG3xy3FBD+GUvtc5ovimdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzkt
ZjlmOTIxNTBjZDM5LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzktZjlmOTIxNTBjZDM5
LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAby7BpeTp
JtlopROKZPxFBCfcpLErBPde6y7cJHIzty7a0WY/DaWotBpjiW/kfHyKC88dAUFS
EgEzts2SwRrn56Xfg9rdLcxwndbgGnBPXCj/poJZtetfm8n55cc9bWm+B1ENOWsb
SuHNCWzWopFyUaaEcqpmpObf5AEWZJ0aGVwPevZXSMXXI8pU5rnIodnB/RCtaXOx
QsZiIfLJh3dM2mFZaq3SBGef6W+2Y0Hqi8KHILScAcoRdccaZR3TbVtm6gvU+uZB
5+YCYfgn09N0xNb0i12nHSm+GtYoeY5eIQUYp8GTrzRpvNJhEDqSY2DMqdGvad3k
Hr1Vh+lNwnECbA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:05:19 2026 by rpki-client