Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: lTyGqWvfK3Knhg4iA+M/RXrwyir0stTvfXrrHJrShXI=
Subject key identifier: 03:23:F5:F8:7C:3C:EB:50:20:7E:EF:B6:6B:31:4F:E0:53:99:33:5D
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019CAAC71BC6F6C4B604B8C30F66DE4656EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1253
Signing time: Sun 01 Mar 2026 19:01:41 +0000
Manifest this update: Sun 01 Mar 2026 19:01:41 +0000
Manifest next update: Mon 02 Mar 2026 19:01:41 +0000
Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=)
2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: UuzzUxwml81lxVyImr0Tr3ou4etluRGL0TgPRtztZ6I=)
3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=)
4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=)
5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=)
6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=)
7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=)
8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:1b:c6:f6:c4:b6:04:b8:c3:0f:66:de:46:56:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Mar 1 19:01:41 2026 GMT
Not After : Mar 2 19:01:41 2026 GMT
Subject: CN=0323f5f87c3ceb50207eefb66b314fe05399335d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d3:09:1a:42:72:5a:ae:28:c8:0e:1e:f9:09:
5d:36:18:49:99:b6:0c:73:f2:fc:f7:fb:80:2c:70:
55:02:a7:46:54:66:34:2d:a0:d3:1d:0b:8a:17:8f:
7a:af:9d:4e:74:bd:aa:54:97:ed:2f:70:27:31:e3:
cd:52:22:17:bf:8f:c8:69:65:ae:82:a3:de:aa:ee:
5f:1f:a7:42:bc:91:5c:9f:a6:fd:6b:d0:f5:f3:28:
42:8a:b4:3f:65:ee:5b:03:56:7e:0d:c7:64:6a:e1:
2f:f4:fc:60:fc:f1:2a:97:85:13:fa:4d:26:19:b7:
b0:24:b6:2b:18:2c:46:ae:da:d6:74:10:d9:c5:e2:
6b:f7:65:1f:5a:bc:70:61:47:51:fd:e1:f5:c1:84:
88:7b:8e:39:b6:c3:ce:fc:f5:83:1e:12:fc:df:7b:
6b:f3:3a:75:9b:0c:34:7c:c9:d6:d6:1f:b8:ea:bc:
59:7c:8a:30:a8:7b:21:7b:77:25:23:b1:d5:a1:b6:
ee:46:90:5b:6c:ad:18:ef:7d:74:75:a9:cc:9e:1b:
7f:17:83:13:c1:ef:6a:8e:ca:3d:1d:d3:17:b0:27:
0c:68:8b:07:e9:4a:0e:21:0f:d4:4f:23:cf:59:db:
19:77:e3:61:df:0b:f3:5c:11:3d:1b:80:47:4a:1f:
3d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:23:F5:F8:7C:3C:EB:50:20:7E:EF:B6:6B:31:4F:E0:53:99:33:5D
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:e9:f1:ab:ce:c0:be:36:23:37:33:35:55:4f:03:50:c9:ac:
84:3b:d5:6b:89:14:11:e5:c9:a1:dd:81:db:1e:e5:93:0a:16:
5a:1b:2b:39:74:97:e9:c6:2c:74:9c:49:1d:5d:ed:c2:a1:00:
be:0f:be:50:14:af:04:72:c7:1d:3a:c1:54:9b:a8:6a:62:f1:
85:bd:f6:7a:38:ec:91:96:9a:38:28:1b:fd:97:23:66:24:5a:
dc:1e:90:6d:d6:4c:fc:42:5b:aa:a8:16:63:01:ad:fe:97:2d:
a0:37:87:3a:4e:fc:92:77:fe:88:4e:e9:3b:6c:e4:95:e8:77:
ad:f3:b4:7f:04:08:2b:a7:62:80:3d:c4:4b:89:d2:33:92:d7:
eb:ac:6f:b9:67:50:b1:87:2f:e5:9b:77:c2:fc:9e:47:68:0a:
32:fd:7b:06:1d:f2:52:ca:c4:57:37:e1:34:9e:be:5f:bd:23:
1a:b0:6f:6d:37:23:e1:b8:49:3e:7c:04:59:ee:7e:52:d1:1f:
01:42:81:11:e0:57:ed:2d:f9:23:18:f9:c2:6c:07:a2:09:4f:
ec:28:2f:28:05:c4:4b:d4:77:5f:4f:05:d9:20:a8:83:1c:58:
5c:a1:bb:fe:93:08:93:54:b0:29:7f:f3:e9:58:29:50:15:30:
bd:1a:c0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:13 2026 by rpki-client