Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: 9hdfQznSmrkAgBj1S7eRiZAS6wjinJFSSYm15X4YiGw=
Subject key identifier: ED:A7:B3:1D:13:86:FB:61:8E:FC:29:B6:68:FA:C8:C5:E4:96:2E:E9
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 019CAAC6E2E7897B949A9EE5F86C94CEC12B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 1319
Signing time: Sun 01 Mar 2026 19:01:26 +0000
Manifest this update: Sun 01 Mar 2026 19:01:26 +0000
Manifest next update: Mon 02 Mar 2026 19:01:26 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: 8wiN8fiJ+wSM4nPEBqoGn/D6ySB+WReRdkzw9bkR63o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:e2:e7:89:7b:94:9a:9e:e5:f8:6c:94:ce:c1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Mar 1 19:01:26 2026 GMT
Not After : Mar 2 19:01:26 2026 GMT
Subject: CN=eda7b31d1386fb618efc29b668fac8c5e4962ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8e:73:29:c2:10:82:36:73:17:cf:32:99:93:
76:f6:9d:31:f1:f6:80:1f:16:22:02:31:1d:28:f1:
3f:cc:55:7d:ea:61:7c:06:ca:1e:b9:73:b3:8f:c3:
b4:b6:ca:2d:a8:3d:a0:dc:a9:32:72:f3:1b:ad:32:
ab:d7:ec:fd:6b:2a:a1:6c:cb:39:f1:ee:6a:25:cd:
fb:34:cf:30:13:a2:34:be:fe:15:6f:7c:67:2a:b0:
fc:99:e2:aa:4f:e8:da:e7:fd:3f:07:46:9b:ad:38:
6c:02:93:98:6b:90:96:5d:17:dd:b8:e2:d2:c4:ca:
3a:65:a6:f8:ea:51:98:e5:ad:4d:81:4a:c8:16:01:
02:81:42:0d:79:a6:69:c9:cd:dc:eb:d3:89:30:e1:
e1:5b:f4:94:90:dc:b4:19:bc:1f:90:5e:83:ca:b7:
5e:33:be:cf:a2:77:68:f0:e1:7d:9e:55:33:bc:d9:
93:e3:ff:56:d2:1e:b6:c7:cf:fa:e8:5e:20:81:92:
54:f8:52:19:bc:7d:bc:33:b8:4e:02:7b:15:d1:6e:
b8:34:6f:37:10:6e:1d:df:3c:30:35:9a:a1:1f:df:
8d:41:9c:2f:0d:bb:41:38:bf:17:62:28:ca:95:90:
f5:ed:91:7b:8a:05:df:6a:ab:cd:b8:7a:40:f5:cc:
0a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A7:B3:1D:13:86:FB:61:8E:FC:29:B6:68:FA:C8:C5:E4:96:2E:E9
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:3a:cf:a3:40:dd:9e:7f:d1:0d:a9:ac:90:a9:4b:d8:21:f2:
ca:50:d9:02:50:43:bd:24:05:3b:6e:4d:e4:a7:9c:b0:10:df:
9e:ec:6f:97:e7:87:9b:9e:f3:40:2b:6d:de:41:80:ba:ee:13:
ff:08:9b:e3:ee:67:35:2b:e2:32:48:23:79:4e:b1:64:35:46:
37:df:a1:16:2b:51:98:d5:c2:cd:81:ce:14:80:0b:2c:5c:51:
d8:bf:02:ae:a0:5d:8a:78:52:97:54:a2:4f:e9:67:e0:37:e1:
9b:72:a8:79:62:a4:67:86:69:1f:43:26:3a:0e:e6:34:59:09:
76:e3:47:79:60:f0:da:7b:fe:e7:98:02:34:3c:f0:10:6f:f5:
1e:15:ec:a9:8d:5d:65:3e:0a:fe:a9:a1:a9:c6:16:82:03:7d:
ee:79:c0:7b:87:b3:85:82:eb:2c:13:11:fa:a1:0a:57:36:96:
fc:cd:dd:25:6d:cb:d9:a5:58:0a:1c:10:ce:3d:93:2c:ab:c7:
f2:cd:6f:48:8e:b1:e1:ba:fe:1e:ce:a5:9d:29:08:ce:bd:f7:
cd:97:1c:2c:e8:fd:27:c4:f0:99:ae:00:66:c1:10:5e:5d:5b:
16:50:65:5d:87:dd:d3:2f:53:38:74:25:8e:be:88:8d:80:e7:
a5:99:0f:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxuLniXuUmp7l+GyUzsErMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjNGVkOTQyZTVjNzQyZTc3YmZiOWJlYjk1NGY4NzI1MzRm
NTI4NDgwHhcNMjYwMzAxMTkwMTI2WhcNMjYwMzAyMTkwMTI2WjAzMTEwLwYDVQQD
EyhlZGE3YjMxZDEzODZmYjYxOGVmYzI5YjY2OGZhYzhjNWU0OTYyZWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyY5zKcIQgjZzF88ymZN29p0x8faA
HxYiAjEdKPE/zFV96mF8BsoeuXOzj8O0tsotqD2g3KkycvMbrTKr1+z9ayqhbMs5
8e5qJc37NM8wE6I0vv4Vb3xnKrD8meKqT+ja5/0/B0abrThsApOYa5CWXRfduOLS
xMo6Zab46lGY5a1NgUrIFgECgUINeaZpyc3c69OJMOHhW/SUkNy0GbwfkF6Dyrde
M77Pondo8OF9nlUzvNmT4/9W0h62x8/66F4ggZJU+FIZvH28M7hOAnsV0W64NG83
EG4d3zwwNZqhH9+NQZwvDbtBOL8XYijKlZD17ZF7igXfaqvNuHpA9cwKiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2nsx0Thvthjvwptmj6yMXkli7pMB8GA1UdIwQY
MBaAFDxO2ULlx0Lne/ub65VPhyU09ShIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2Et
NzczNDRiY2M5MTkxLzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2EtNzczNDRiY2M5MTkx
LzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApDrPo0Dd
nn/RDamskKlL2CHyylDZAlBDvSQFO25N5KecsBDfnuxvl+eHm57zQCtt3kGAuu4T
/wib4+5nNSviMkgjeU6xZDVGN9+hFitRmNXCzYHOFIALLFxR2L8CrqBdinhSl1Si
T+ln4Dfhm3KoeWKkZ4ZpH0MmOg7mNFkJduNHeWDw2nv+55gCNDzwEG/1HhXsqY1d
ZT4K/qmhqcYWggN97nnAe4ezhYLrLBMR+qEKVzaW/M3dJW3L2aVYChwQzj2TLKvH
8s1vSI6x4br+Hs6lnSkIzr33zZccLOj9J8Twma4AZsEQXl1bFlBlXYfd0y9TOHQl
jr6IjYDnpZkP0Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:51:50 2026 by rpki-client