Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
File: PE71UtfFcTYTTntE1pfLAs3n2H0.mft (raw, json)
Hash identifier: oaFklSb4muGF+e/BjY5VVpPgYm1GzLReBgHJxC0gXNY=
Subject key identifier: BF:20:AD:3E:0A:A6:2D:99:93:99:F9:8F:A4:E3:7D:22:C4:12:FD:D9
Authority key identifier: 3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
Certificate issuer: /CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Certificate serial: 019D9BF56E58898DA0D79C4F9B3CE87EB069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
Manifest number: 0D28
Signing time: Fri 17 Apr 2026 15:00:46 +0000
Manifest this update: Fri 17 Apr 2026 15:00:46 +0000
Manifest next update: Sat 18 Apr 2026 15:00:46 +0000
Files and hashes: 1: M2fsMNeCLbSytrRdZXN8GNnfsT4.roa (hash: ZZlxpGml6cr7CGJbkVDdK84PY4ZB8pkla7yZE+pnKvI=)
2: PE71UtfFcTYTTntE1pfLAs3n2H0.crl (hash: OSr61J7wKXU/ME4VOPk7T9Kqq7MxY8HwBIzF0S6hBIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:6e:58:89:8d:a0:d7:9c:4f:9b:3c:e8:7e:b0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Validity
Not Before: Apr 17 15:00:46 2026 GMT
Not After : Apr 18 15:00:46 2026 GMT
Subject: CN=bf20ad3e0aa62d999399f98fa4e37d22c412fdd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a7:f7:bd:89:08:2e:3b:02:92:37:c0:1b:c8:
9e:02:b1:3d:9d:a3:fb:3d:e6:53:9d:dc:67:6e:5b:
c9:3a:7f:4f:5b:43:67:91:ba:f3:6f:97:04:60:1a:
81:22:f4:7c:aa:bb:55:bb:85:d2:93:1a:18:6b:1b:
1b:14:26:8c:cf:92:41:a1:3c:71:3f:c0:5f:e0:74:
07:38:8b:4e:e9:54:1a:39:2b:7e:63:53:75:8e:22:
cb:fd:f8:5d:33:88:b3:37:a0:fb:94:d0:b3:64:92:
be:3d:c9:c5:b4:e8:71:94:53:54:c2:7c:bc:f1:de:
7e:c0:b7:f0:56:bc:49:0c:59:41:d9:4d:4b:00:c3:
50:df:14:f6:7f:fe:cb:5f:21:03:6b:21:7e:11:5d:
5a:c3:63:95:4d:0a:c5:c5:7c:6f:2b:38:7a:00:18:
cd:16:74:39:82:0c:6e:e8:e8:c3:76:49:f4:d4:0b:
d0:69:84:7a:38:83:68:3c:08:c6:ab:4d:fc:1d:0e:
e0:e9:ac:10:f8:bd:08:dc:6e:a4:4c:e4:50:91:b5:
1c:d5:49:a9:8f:cd:e6:85:00:d1:d4:e7:62:f1:e2:
c5:6b:17:db:26:b9:3e:a8:ee:8c:26:c5:0a:47:cb:
61:eb:bd:dc:d4:4a:ab:19:fb:c1:b6:f3:0f:36:8f:
01:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:20:AD:3E:0A:A6:2D:99:93:99:F9:8F:A4:E3:7D:22:C4:12:FD:D9
X509v3 Authority Key Identifier:
keyid:3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:ff:8f:a8:d7:9f:7c:63:99:6f:01:7a:aa:3f:a2:68:b0:a0:
e5:0a:fe:f1:4d:11:b1:33:ae:c0:90:5e:68:72:c8:6c:e7:57:
74:23:a6:c2:a3:63:aa:dc:55:00:d8:1f:da:d2:77:86:6c:f8:
a9:0e:d6:24:5b:c1:23:27:a4:18:16:df:a1:4c:3c:65:44:3a:
ce:1a:c6:59:36:5f:b5:a4:58:7c:70:5e:2a:6e:8d:f5:73:6b:
ee:8f:d1:37:85:96:af:c0:63:69:65:36:ca:18:41:81:8e:a4:
f0:41:04:99:e2:d6:1b:53:3d:57:a4:cf:ff:db:fb:1e:db:94:
c6:52:d5:8c:e4:c9:c0:fa:2b:17:4b:1d:c9:04:dd:ab:f0:42:
6a:df:c6:35:2b:2c:0c:99:f4:64:08:c8:d5:a2:5d:12:bb:cf:
88:2f:65:0b:36:4e:d6:8c:df:9a:f5:93:d9:28:b8:4c:7d:e3:
2a:f1:86:4b:fd:7b:1f:44:76:0d:69:c4:72:6d:e4:01:51:c3:
45:b0:e8:64:22:1e:6f:26:f3:b0:64:55:00:7a:96:d8:cf:6e:
53:76:4d:c1:90:aa:f8:c0:33:7e:27:87:dd:0a:7d:04:e4:06:
72:27:81:71:65:f5:cd:ce:17:01:f8:8d:69:9a:49:96:7d:de:
bd:dc:c0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:58:12 2026 by rpki-client