Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
File: PI_isZvT639wpO7atha1MlABFSA.mft (raw, json)
Hash identifier: SJTNDgkUTHGgXZa+wWCdm+X14rU+i8ILzMLU3vnHZxM=
Subject key identifier: 12:5E:1C:AA:0E:33:C4:36:C3:86:2C:50:68:E0:27:CE:C4:94:09:D8
Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
Certificate issuer: /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Certificate serial: 019CAB34819208AA3E605A66EA4676C433B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
Manifest number: 0519
Signing time: Sun 01 Mar 2026 21:01:10 +0000
Manifest this update: Sun 01 Mar 2026 21:01:10 +0000
Manifest next update: Mon 02 Mar 2026 21:01:10 +0000
Files and hashes: 1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: FrsIMzqq/4NbjWS5/32LAwMULzb5aPqX+61JFVGe3Ic=)
2: _wDS1_1VZDZLh1V0Yi_J3rD_hL8.roa (hash: xAETLQSOhALtmZdJmJO16llGLniZWhsZVgeHdBOnhYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:81:92:08:aa:3e:60:5a:66:ea:46:76:c4:33:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Validity
Not Before: Mar 1 21:01:10 2026 GMT
Not After : Mar 2 21:01:10 2026 GMT
Subject: CN=125e1caa0e33c436c3862c5068e027cec49409d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9f:4d:9e:f3:ad:65:00:db:19:29:a3:14:38:
1e:7d:1f:52:e0:56:55:d2:89:84:00:46:62:dd:4b:
6e:e8:0d:43:52:67:c4:bf:67:ff:8b:63:77:b5:10:
37:3c:10:e2:52:1c:f4:66:1c:57:71:b4:d1:93:6c:
fa:d8:9d:5d:5b:df:18:ae:8b:f9:c5:8a:8b:a6:e0:
c4:fd:2e:72:30:3e:ee:fd:ff:f8:d5:41:15:5c:a6:
b2:7e:82:e4:79:85:ed:64:8a:ae:3e:b6:e4:e8:2b:
41:33:6f:4a:a3:19:b0:68:a4:79:b6:94:08:5f:e9:
f3:9d:9f:84:cd:cc:3c:48:6e:ec:05:78:90:ba:9a:
22:90:d8:d9:55:6e:58:93:02:da:8c:39:c8:e8:c0:
72:95:b4:4f:c2:92:d5:36:57:09:a6:99:84:c7:49:
ca:2d:3a:e1:9f:d3:93:7e:30:91:5a:6e:89:04:76:
b1:50:15:25:ac:4d:87:cb:60:f8:1d:dd:c0:91:48:
d7:f3:b4:0f:e9:38:ab:f0:98:ad:b9:2e:33:1c:50:
3d:91:52:10:b0:81:a6:f7:0c:80:10:f2:9e:aa:2b:
aa:18:2b:1b:18:dc:86:9d:c0:ce:bd:75:b5:3a:f5:
6a:8c:13:8f:85:ac:3e:2f:79:32:86:52:5e:6d:08:
8f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5E:1C:AA:0E:33:C4:36:C3:86:2C:50:68:E0:27:CE:C4:94:09:D8
X509v3 Authority Key Identifier:
keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:14:09:07:14:b1:65:b2:0f:64:d7:d8:fd:1d:57:94:10:0d:
2d:bc:72:12:82:ad:d4:f4:c5:fc:e6:03:79:04:d2:e0:86:40:
56:04:05:3c:99:7f:ce:81:40:70:a8:46:dc:eb:48:c9:e1:50:
02:93:bb:8a:4c:bf:76:ed:96:16:63:be:83:ef:86:53:2b:6c:
1a:83:24:2c:8c:18:c4:23:fe:98:68:29:41:cf:31:84:a6:a8:
41:fe:70:95:de:9e:3d:d8:d4:0d:8a:97:d7:06:e1:c5:b1:2c:
7f:3b:06:bb:0f:40:9e:b7:aa:6d:69:eb:ff:52:98:fd:4d:5b:
23:81:d3:ee:dc:43:6d:c7:0e:ee:7f:46:62:33:76:b0:13:42:
fc:32:42:35:f5:0d:c9:67:c9:05:21:5d:ab:6f:14:11:3b:e9:
e7:9a:50:66:51:64:a5:30:a9:88:f1:9b:1c:f6:50:8f:d4:bf:
f9:5f:06:c6:a7:32:6c:3f:d1:00:24:80:9a:75:b6:39:44:6f:
dc:83:78:6a:37:59:76:d0:4e:eb:d4:00:f9:eb:10:c2:4d:77:
13:43:3f:8a:7a:71:66:a1:56:58:a8:73:1c:1d:be:14:19:29:
1b:bc:9f:10:c5:ab:da:68:7a:b7:97:25:5e:57:89:4c:d1:93:
a6:17:51:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:51:05 2026 by rpki-client