Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
File: PI_isZvT639wpO7atha1MlABFSA.mft (raw, json)
Hash identifier: 3KB53qFYs4M7vgOSCxGmNgy/AriVMhU1M+V0mwpZe34=
Subject key identifier: 07:A1:4F:75:1C:9E:81:C0:5B:C3:A9:D9:4C:EB:D6:3C:D6:3D:C5:08
Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
Certificate issuer: /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Certificate serial: 019D98BD5B6A61FCF78C77A1EC73AC2AD6BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
Manifest number: 0594
Signing time: Fri 17 Apr 2026 00:00:39 +0000
Manifest this update: Fri 17 Apr 2026 00:00:39 +0000
Manifest next update: Sat 18 Apr 2026 00:00:39 +0000
Files and hashes: 1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: limgZrHuMkTr8oyNhhqYZYJvSm57YBs0EKacCWlMYgA=)
2: _wDS1_1VZDZLh1V0Yi_J3rD_hL8.roa (hash: xAETLQSOhALtmZdJmJO16llGLniZWhsZVgeHdBOnhYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:5b:6a:61:fc:f7:8c:77:a1:ec:73:ac:2a:d6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Validity
Not Before: Apr 17 00:00:39 2026 GMT
Not After : Apr 18 00:00:39 2026 GMT
Subject: CN=07a14f751c9e81c05bc3a9d94cebd63cd63dc508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:f1:af:86:8e:ed:e0:1c:fb:de:70:8b:cf:
af:f6:e1:e6:37:26:ca:6a:56:2a:1c:d6:3f:d3:b9:
75:76:b9:f9:12:3c:0f:a7:8d:24:15:dc:1b:ec:55:
e7:7c:e2:e6:c7:ac:0a:3b:b2:fa:0f:1f:83:f5:29:
07:20:ea:59:e4:e9:68:be:26:46:ce:ea:2a:95:50:
82:4c:f7:55:0a:4f:d0:04:fe:c2:1a:6a:61:e0:eb:
5a:45:f8:7a:84:a6:63:9a:d6:ff:3d:f9:74:dd:79:
83:4f:a3:c9:88:57:31:38:4d:32:46:70:5d:b7:02:
6f:f5:16:78:a0:c6:2d:ac:d9:c7:53:e1:22:ee:cc:
43:54:c0:46:3c:a9:25:70:3a:5a:6d:c3:cd:89:02:
13:b7:81:38:1f:5f:44:ce:74:94:46:37:14:b3:cb:
33:3f:f8:0a:f3:a8:3e:14:c5:7b:ee:1a:64:87:f2:
76:40:cf:c2:9e:ba:e2:ae:9a:bc:23:0e:ab:f8:fc:
82:29:17:b5:dc:20:5e:f7:7e:49:79:df:17:04:e8:
4c:fe:81:8b:87:10:88:4a:19:c1:03:4a:23:31:b7:
e1:d2:d9:32:cd:a4:4d:03:9c:ff:be:da:c4:fa:37:
7e:f9:87:be:60:b1:86:5f:65:ca:12:b7:4c:21:a0:
ad:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A1:4F:75:1C:9E:81:C0:5B:C3:A9:D9:4C:EB:D6:3C:D6:3D:C5:08
X509v3 Authority Key Identifier:
keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:8b:02:33:1e:cd:c4:48:95:e6:a0:71:77:84:c2:77:b0:21:
ba:f1:7d:b9:e8:20:6f:8e:7e:87:66:42:52:8a:3f:af:ac:ad:
e2:ce:81:cb:36:8b:ff:d9:9d:26:1a:86:0d:a9:21:9f:29:5d:
73:3d:94:5d:3a:3a:90:af:01:d3:c8:75:03:e8:4e:c7:32:a3:
43:a2:94:06:b9:b1:18:ad:f4:b4:4d:40:a1:58:42:eb:f3:9b:
99:df:3f:44:7e:9a:2b:87:32:ea:a3:8a:fa:1e:d3:51:66:3f:
16:45:53:2b:f1:8e:67:60:c3:3c:db:5d:f3:73:03:04:97:ad:
ed:35:3d:0d:84:92:41:24:59:bf:ae:6e:f4:41:2a:f9:f4:75:
69:4d:c8:c5:e1:2c:09:b4:98:e8:3f:d5:e2:e9:5c:8e:31:13:
1b:95:4e:2a:3e:29:2f:51:2b:0e:3d:1d:45:d5:25:88:58:e1:
f3:ff:3c:29:41:09:ab:89:13:2b:2c:b9:49:0a:24:2d:50:be:
3a:14:af:b6:6e:a4:ef:67:38:36:2b:60:39:d1:4e:48:ee:88:
92:0d:28:84:bc:df:cd:5f:83:9c:c2:45:91:fa:7d:2b:af:84:
a2:65:f7:fe:af:f6:0c:1f:81:f9:c7:20:94:c5:37:29:0a:81:
d0:f4:f7:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:40:41 2026 by rpki-client