Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: hqM6Y/urRH4gI7+MUogyiy62VMLgimAutZcybx27qB0=
Subject key identifier: 0D:71:85:BF:14:F3:D0:93:37:BE:14:EF:8E:B2:24:1D:D1:62:F7:68
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019CACB54E0C9795B2BC7528AA173E2AD4CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0B0E
Signing time: Mon 02 Mar 2026 04:01:28 +0000
Manifest this update: Mon 02 Mar 2026 04:01:28 +0000
Manifest next update: Tue 03 Mar 2026 04:01:28 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: RqemEz6yxV27JhX5Ycy+OrEBb5hih3c1l72sTeO7Ljg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:4e:0c:97:95:b2:bc:75:28:aa:17:3e:2a:d4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Mar 2 04:01:28 2026 GMT
Not After : Mar 3 04:01:28 2026 GMT
Subject: CN=0d7185bf14f3d09337be14ef8eb2241dd162f768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:53:44:8f:de:77:14:bc:80:e2:5a:a1:80:a3:
f4:7b:b7:f6:61:d9:88:1d:80:55:16:e9:2f:44:90:
ff:55:f5:e7:b2:e2:9f:20:27:05:98:10:cf:2e:37:
eb:f2:fb:f6:c3:6e:2c:28:b3:76:dc:73:8e:6c:af:
6f:65:3a:7a:97:56:cf:59:31:a4:3f:cc:8b:cc:30:
57:54:90:4e:49:95:48:0a:4e:c7:b7:2c:b3:7c:1a:
76:c8:27:d9:88:62:6f:3a:c1:63:2f:5b:11:5b:0e:
e2:96:38:77:4e:f9:c6:0d:c1:03:0f:59:78:03:2b:
fc:28:ff:8d:65:05:e8:42:a1:e9:21:8d:21:90:93:
b6:6a:8d:85:7c:19:fe:2d:7a:b9:3f:33:75:c2:32:
4d:d8:98:e3:06:b1:a4:0f:42:90:cd:6f:f8:ba:1e:
9d:8c:ed:56:8d:cc:b7:d2:b9:1a:27:65:ab:a5:87:
10:c9:e9:68:71:0e:f0:60:60:b4:e8:80:d5:a5:98:
3a:60:35:23:8a:08:9e:7a:71:17:93:de:31:dc:28:
dc:50:a8:4c:a8:27:b9:e3:2d:24:d4:fb:f5:ff:84:
bb:6e:50:15:f8:8c:b6:1d:a3:88:e7:a2:da:1c:d9:
59:28:2c:26:48:66:8a:32:e2:d2:a2:eb:e8:0a:03:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:71:85:BF:14:F3:D0:93:37:BE:14:EF:8E:B2:24:1D:D1:62:F7:68
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:3d:67:cc:28:7d:6a:fb:89:c7:cb:91:26:9b:bd:df:b2:15:
ef:ec:44:cd:be:15:d8:06:2c:f3:5d:27:24:c8:4f:a9:38:74:
9a:ed:01:ed:8c:b3:0d:94:d0:70:42:a5:e1:c1:86:e8:ad:06:
1c:8c:44:4e:d8:43:ce:8a:f5:54:30:c8:d4:f9:29:7d:bb:0d:
e3:ee:56:7e:fe:36:d8:78:4e:0b:8f:e3:98:0a:c7:1b:a5:51:
dd:ca:9c:25:7a:72:48:53:20:93:f6:8d:5b:63:e7:18:7b:5b:
35:37:51:8c:38:e6:92:9c:61:99:6e:b5:2e:9b:dd:4f:4e:c6:
36:fb:5f:70:c1:5f:51:3e:96:e0:9f:17:c2:ee:79:b9:16:56:
9e:f1:e5:83:54:98:95:b1:1d:50:50:72:f1:78:33:9d:30:88:
0f:ca:69:67:41:29:e9:28:2b:b2:92:21:92:5c:e7:b6:ac:59:
79:d0:57:2a:fc:a1:28:09:21:62:80:b9:7f:95:05:77:04:c4:
93:d7:e3:3d:c1:90:0d:69:30:bf:56:33:36:85:3e:71:c8:b7:
61:29:a8:41:51:49:f2:61:14:8c:20:e9:7f:fa:55:0a:9b:4b:
32:e2:6a:cd:70:4a:db:d9:53:83:ae:8a:19:bd:34:07:4d:00:
13:7b:95:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:19:01 2026 by rpki-client