Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: +ofFvcIyxRstemiE/hcRr0CwCbQa3MtwMEO/05nSKo0=
Subject key identifier: 92:75:8A:CE:D0:E3:C7:6D:02:37:9D:E9:0E:99:3F:F3:CD:24:C1:1F
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 019D9818CDF2C82E84FB7C2B1CBBD3AD7CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 1556
Signing time: Thu 16 Apr 2026 21:00:55 +0000
Manifest this update: Thu 16 Apr 2026 21:00:55 +0000
Manifest next update: Fri 17 Apr 2026 21:00:55 +0000
Files and hashes: 1: N0lWMYy9L6tUgt5C_ALrdVgjFpM.roa (hash: 3TxHIvizHgvT9zapL1jqZMumyRmsqmWLMCRlhTI/E5A=)
2: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: tTzDG1gHe7pgmT1MeOgHz+rAaLFnYUi33TQOFjt8SwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:cd:f2:c8:2e:84:fb:7c:2b:1c:bb:d3:ad:7c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Apr 16 21:00:55 2026 GMT
Not After : Apr 17 21:00:55 2026 GMT
Subject: CN=92758aced0e3c76d02379de90e993ff3cd24c11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:b1:21:87:75:9f:2e:1c:e0:30:89:80:09:
31:fc:15:15:44:e6:9c:85:5f:50:a1:9f:2c:f3:91:
4a:04:1c:c0:1c:6a:e2:2c:30:59:cd:c9:c7:a0:41:
f4:20:a1:e5:a4:5d:11:79:ee:ae:aa:35:5c:a3:1b:
fb:7d:70:95:a3:cc:2e:e0:9b:0d:21:ec:2f:49:ec:
d5:64:bb:47:3b:f9:a7:4a:49:1b:ea:8d:6a:47:78:
ec:06:d1:3a:15:fa:a1:52:62:32:f0:7a:4f:fe:4c:
8b:24:77:b4:d7:f0:c3:0f:35:97:22:71:d7:b3:a3:
da:81:17:7b:b9:41:ac:02:f4:7b:9f:eb:53:bd:7b:
1e:86:2f:c9:82:e1:01:56:65:10:c7:34:6f:bb:90:
19:2f:50:7c:61:e0:f6:d2:95:d3:c8:da:30:d4:85:
2c:1f:d9:5f:e0:4f:9b:3d:38:ad:0b:83:e9:fe:3c:
a6:14:09:7e:66:0e:33:53:a5:f2:5e:4d:de:85:95:
02:ab:5c:ac:84:ab:f3:13:84:3a:82:d7:9e:4f:fa:
36:9b:7b:ae:28:7f:91:a9:f6:2c:09:b9:22:1e:5e:
9e:d8:46:e3:71:93:91:a2:46:48:0d:db:ed:ff:25:
54:08:b6:37:f3:13:ff:30:1a:b1:40:ba:4f:0b:1b:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:75:8A:CE:D0:E3:C7:6D:02:37:9D:E9:0E:99:3F:F3:CD:24:C1:1F
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a0:ad:28:d9:3a:1e:e8:bb:26:90:25:12:27:dc:bb:6d:38:
3b:ff:31:b0:7b:58:68:84:ac:cf:f4:27:9d:e8:51:75:2e:a5:
ae:dc:80:68:ea:e1:f6:a2:b9:10:9f:8a:7e:c2:2c:a7:fb:13:
34:2f:37:e1:06:31:56:d1:41:da:02:73:46:4a:28:92:50:7d:
1d:8e:9d:49:8b:8e:e2:a7:3e:b3:b0:64:9d:d7:fa:0a:fe:f6:
26:33:04:64:b9:e2:12:7e:9f:30:e2:63:4d:1d:3f:56:c6:88:
8b:80:43:95:46:a5:af:a6:e8:1a:6b:19:f4:38:cc:84:2a:41:
84:8f:0c:8d:df:6f:6b:69:c2:9c:04:23:56:41:15:f3:dc:b1:
6c:97:86:4b:cb:e3:56:5a:2e:e8:5d:a1:5e:ee:09:93:51:71:
8f:5b:36:9f:da:31:89:f4:60:2b:66:b7:93:30:65:c9:e3:70:
e5:f5:48:d8:38:77:94:72:75:b4:ef:c1:2a:a4:c7:84:cb:d0:
95:0e:3a:10:b6:dd:02:49:f7:ad:8e:86:39:03:20:43:3b:74:
9c:38:93:bb:12:24:aa:13:ca:30:eb:95:2e:88:b4:76:3a:4b:
4b:c0:ad:84:64:3c:78:a5:f4:32:43:70:c4:6a:55:d7:71:26:
cc:be:ea:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:47 2026 by rpki-client