Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: J+bIg+cOZk+NA5QEqP887XODGeWiRDKW4TNc6yOrKsk=
Subject key identifier: E8:A1:3B:F8:CD:3E:9D:35:8A:7B:D0:AE:C8:CD:80:C9:A8:A0:97:11
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 019D9A3EEE908C1C227B455E52188EEC2278
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 1395
Signing time: Fri 17 Apr 2026 07:01:48 +0000
Manifest this update: Fri 17 Apr 2026 07:01:48 +0000
Manifest next update: Sat 18 Apr 2026 07:01:48 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: AoUxdfyasy2MoUX0qdfdloGxrHP3pUVQIk5U3lXwD+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:ee:90:8c:1c:22:7b:45:5e:52:18:8e:ec:22:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Apr 17 07:01:48 2026 GMT
Not After : Apr 18 07:01:48 2026 GMT
Subject: CN=e8a13bf8cd3e9d358a7bd0aec8cd80c9a8a09711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:63:5f:18:f9:a8:8f:d9:33:ab:a1:09:0a:02:
2b:ce:2c:7f:11:65:cc:56:c9:a6:21:36:a7:33:51:
8d:95:61:8b:28:ea:53:74:4f:ba:e0:03:78:18:2c:
23:eb:45:86:a3:98:75:01:27:1b:d1:23:a5:09:09:
86:20:b1:e3:07:88:7a:3f:74:2b:b3:ea:b9:66:e9:
37:bc:23:02:20:26:93:1e:ec:fa:51:ea:e1:94:69:
ea:c4:01:11:73:ec:3f:2b:68:f4:fd:d2:bd:f1:4d:
99:63:c1:a9:06:91:b4:56:c8:f2:27:72:c7:c5:7e:
82:91:2d:da:15:bc:4e:cf:ad:00:03:76:04:d3:81:
20:64:62:a3:da:e4:00:b6:47:17:de:08:89:d2:93:
38:b8:bc:82:4c:7e:63:6b:34:31:a0:e1:01:72:75:
aa:07:14:ee:b1:04:0a:13:75:b6:73:d6:9e:fc:02:
d0:9c:40:fd:09:f3:6d:c6:89:d6:a2:68:08:86:8a:
66:dc:2c:aa:b6:be:19:87:e0:7a:26:b3:bb:dc:19:
3c:cc:d8:c1:03:a5:95:9c:69:7a:50:e0:a8:ba:3e:
0d:21:ac:43:4a:6a:52:51:72:1a:26:b4:4a:86:e0:
9d:f0:b6:a6:35:e5:81:04:3e:01:a9:98:00:66:bb:
11:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A1:3B:F8:CD:3E:9D:35:8A:7B:D0:AE:C8:CD:80:C9:A8:A0:97:11
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:df:89:94:5a:40:c0:55:87:b4:5a:ae:2b:e6:1e:af:dc:41:
ca:bf:3a:92:79:d7:17:92:54:2a:55:b8:a6:a4:35:bc:f6:7e:
5a:2a:43:ec:8e:64:c4:47:66:fe:9b:c3:bb:66:02:7d:10:60:
90:ca:07:e3:04:59:b5:f0:7a:27:68:b3:8f:a5:ea:ee:c6:00:
96:e3:8c:ec:70:b8:c0:19:8c:8d:ce:6b:7d:83:ee:ae:c8:48:
5d:27:3a:22:ea:03:07:7e:94:d9:e2:c8:5a:6d:54:b5:e9:49:
16:fe:af:f9:35:74:28:6c:4c:f5:5a:d9:e5:f4:f2:0b:d5:35:
6a:73:d3:d8:da:19:fe:d0:50:50:0a:fa:72:b7:73:9c:61:37:
79:ea:78:1c:30:df:be:0a:cb:ad:27:b9:26:7e:f6:b5:55:d0:
43:af:1c:ea:90:80:d2:ea:83:86:31:ef:be:6d:1f:61:c2:a2:
d7:20:e9:2f:84:ab:81:98:1c:49:a6:6a:87:6e:eb:a2:c9:e4:
c1:14:6a:bf:08:f9:a4:c9:c5:29:a5:25:a8:c5:b7:73:b3:b4:
a7:2d:6c:c3:2f:34:3f:33:f7:16:83:7c:d1:4b:cc:15:a3:c9:
ea:56:2b:39:c9:9c:23:05:15:12:a6:ff:3f:bc:1b:41:d9:ef:
dc:a8:fe:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPu6QjBwie0VeUhiO7CJ4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjNGVkOTQyZTVjNzQyZTc3YmZiOWJlYjk1NGY4NzI1MzRm
NTI4NDgwHhcNMjYwNDE3MDcwMTQ4WhcNMjYwNDE4MDcwMTQ4WjAzMTEwLwYDVQQD
EyhlOGExM2JmOGNkM2U5ZDM1OGE3YmQwYWVjOGNkODBjOWE4YTA5NzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomNfGPmoj9kzq6EJCgIrzix/EWXM
VsmmITanM1GNlWGLKOpTdE+64AN4GCwj60WGo5h1AScb0SOlCQmGILHjB4h6P3Qr
s+q5Zuk3vCMCICaTHuz6UerhlGnqxAERc+w/K2j0/dK98U2ZY8GpBpG0VsjyJ3LH
xX6CkS3aFbxOz60AA3YE04EgZGKj2uQAtkcX3giJ0pM4uLyCTH5jazQxoOEBcnWq
BxTusQQKE3W2c9ae/ALQnED9CfNtxonWomgIhopm3Cyqtr4Zh+B6JrO73Bk8zNjB
A6WVnGl6UOCouj4NIaxDSmpSUXIaJrRKhuCd8LamNeWBBD4BqZgAZrsR7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOihO/jNPp01invQrsjNgMmooJcRMB8GA1UdIwQY
MBaAFDxO2ULlx0Lne/ub65VPhyU09ShIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2Et
NzczNDRiY2M5MTkxLzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2EtNzczNDRiY2M5MTkx
LzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUd+JlFpA
wFWHtFquK+Yer9xByr86knnXF5JUKlW4pqQ1vPZ+WipD7I5kxEdm/pvDu2YCfRBg
kMoH4wRZtfB6J2izj6Xq7sYAluOM7HC4wBmMjc5rfYPurshIXSc6IuoDB36U2eLI
Wm1UtelJFv6v+TV0KGxM9VrZ5fTyC9U1anPT2NoZ/tBQUAr6crdznGE3eep4HDDf
vgrLrSe5Jn72tVXQQ68c6pCA0uqDhjHvvm0fYcKi1yDpL4SrgZgcSaZqh27rosnk
wRRqvwj5pMnFKaUlqMW3c7O0py1swy80PzP3FoN80UvMFaPJ6lYrOcmcIwUVEqb/
P7wbQdnv3Kj+Qw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:01:15 2026 by rpki-client