Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: SHJmkU2EeaNo+WAZmmoLfqDKq5Dkzdywunwm/wOrmV8=
Subject key identifier: 72:2B:FD:E3:8B:5A:4B:27:F5:EE:13:FE:4A:0D:90:CD:60:7E:F4:56
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019EC3A60B07EF017ED85ADD43C58D428539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0C23
Signing time: Sun 14 Jun 2026 01:01:39 +0000
Manifest this update: Sun 14 Jun 2026 01:01:39 +0000
Manifest next update: Mon 15 Jun 2026 01:01:39 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: iBWl7Q0NywD0SFyuWBt8Ip2u3Ngel8HexKu8JFxUM4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a6:0b:07:ef:01:7e:d8:5a:dd:43:c5:8d:42:85:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Jun 14 01:01:39 2026 GMT
Not After : Jun 15 01:01:39 2026 GMT
Subject: CN=722bfde38b5a4b27f5ee13fe4a0d90cd607ef456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:88:7a:6b:48:17:ba:45:2a:b4:b8:3a:ac:5f:
81:7c:4d:d6:53:77:41:63:51:e7:90:f2:bf:73:e1:
6d:19:01:6a:9e:d7:cc:2c:ef:02:b9:5b:c6:a6:29:
8b:84:0f:bd:fc:52:0c:a1:c4:b0:ea:7e:01:f1:d0:
7c:61:96:64:68:ba:4e:43:14:ce:f9:be:e4:de:bb:
c7:9a:8d:29:72:0a:32:a8:a5:b4:86:3b:2c:5d:a7:
ad:ce:a1:24:a7:c8:01:32:4b:55:5e:c5:29:48:3a:
40:b5:01:ff:5c:7f:52:88:1a:59:ce:c8:28:cc:28:
1c:dc:a4:13:90:38:87:bf:db:e5:06:b3:be:7e:70:
6b:26:ba:ea:e8:a8:0b:9a:65:de:9c:b5:c7:4f:d8:
73:45:b8:c8:f4:42:b7:96:2d:ae:40:08:63:5c:32:
7e:1b:11:b3:db:93:a8:5e:2f:97:40:70:7a:f8:18:
9a:3b:ad:ae:b8:44:4c:4e:3d:f2:fd:09:92:bc:fe:
20:12:00:30:64:ec:0e:a0:f7:e5:24:f8:7c:a9:fc:
87:1f:dc:75:33:84:d7:51:9f:97:d2:c0:2d:6d:ed:
76:08:2a:16:70:4e:a9:a7:2a:37:d6:7a:fb:d4:74:
40:1c:56:a5:e2:00:36:3d:3a:ec:da:aa:aa:b1:53:
25:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:FD:E3:8B:5A:4B:27:F5:EE:13:FE:4A:0D:90:CD:60:7E:F4:56
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:b5:86:a6:96:0c:fe:e8:21:e5:2f:d9:52:76:00:b4:b7:32:
17:8f:45:55:da:47:e0:70:c2:ba:02:6e:dd:53:83:08:12:3c:
72:66:f5:17:bd:ba:ca:66:a9:79:bc:95:09:cd:d2:ae:36:86:
c6:8f:be:e6:79:e9:42:38:44:54:df:fb:71:af:2f:3f:f4:2c:
90:99:c9:77:be:c4:65:9a:a2:ae:7a:03:98:13:31:b9:af:79:
2c:fd:78:a5:b9:c7:0c:62:99:4f:be:81:90:a7:1e:a5:7b:44:
7a:33:2f:63:1a:25:4d:53:5b:72:ac:b0:43:f8:4f:d9:4b:05:
fd:7e:69:26:a7:2b:32:00:41:9d:95:9e:3d:54:e1:f1:19:cb:
23:63:50:f7:ed:b4:c8:50:6a:85:b2:21:d1:d3:03:3c:d0:ec:
cb:d6:f2:ea:14:17:91:48:df:6f:47:fd:ce:1f:37:a9:ec:7f:
d7:4c:9f:6a:3f:69:c8:08:a9:0a:80:67:c1:fb:1b:18:5f:8c:
07:04:fd:ec:af:2e:3d:b6:e4:0e:77:a6:49:11:8b:30:d3:21:
ef:d9:be:8d:fe:11:92:45:aa:ed:f6:01:08:da:1e:00:c9:61:
9c:38:2d:3f:56:fc:ab:3d:55:eb:af:e0:2e:10:ed:be:cd:e5:
3c:f4:45:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:44:37 2026 by rpki-client