Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: tvUMt+Un5TriVzAJgXmCuliXXXiFyqbUXpsHrOZ12GA=
Subject key identifier: DD:AE:36:B2:88:E6:BF:BF:5F:DF:99:6E:65:8F:C2:21:67:A8:CF:87
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019D9B87A4F6A50C54E74E658EDBA26AABF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 13:00:51 +0000
Manifest this update: Fri 17 Apr 2026 13:00:51 +0000
Manifest next update: Sat 18 Apr 2026 13:00:51 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: Ln5WcKxGgMbcb0yum4/2C3TGsFX3OOohJVvVtBuAKNk=)
2: aG1wC2y3Q6pluT4bomzfriW6qO8.asa (hash: y5OiOJ4JCn8oykPDM8IMuk0COHtj+uOEVrLwak92ue4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:a4:f6:a5:0c:54:e7:4e:65:8e:db:a2:6a:ab:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Apr 17 13:00:51 2026 GMT
Not After : Apr 18 13:00:51 2026 GMT
Subject: CN=ddae36b288e6bfbf5fdf996e658fc22167a8cf87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2e:cf:84:84:3f:dd:b0:c8:21:89:35:2f:2d:
2c:b1:50:b5:3f:39:16:37:16:b6:b4:54:82:dc:84:
9b:f5:da:85:10:3e:3c:e4:6a:c6:c4:da:a3:04:36:
21:63:65:8c:a8:c2:16:31:ff:04:80:66:02:7a:a5:
67:49:b3:da:be:1f:b1:37:b4:f1:df:31:c5:5a:13:
33:86:6e:b8:0d:f8:62:12:5b:00:ee:0c:9a:a4:e7:
f2:b2:91:0d:d5:61:be:5b:5d:46:cc:b7:9f:d9:27:
cb:de:b6:77:7b:4b:29:15:34:18:8d:65:44:92:8d:
29:74:61:cb:cc:0e:53:58:f9:99:36:a4:a9:4d:74:
d2:b7:69:1e:57:18:eb:b3:16:de:6c:87:cb:03:f8:
da:3e:75:f2:f8:fe:b2:9e:79:9a:45:54:f6:69:a2:
b0:3c:00:e7:b5:60:e5:36:96:26:13:b3:60:2a:02:
43:25:f4:94:83:5a:b8:7a:60:a7:29:07:db:63:c7:
03:67:30:b8:dc:2c:ed:ba:12:39:7c:06:60:ec:6f:
b9:3f:17:e9:ff:ab:a9:a6:1b:d8:42:40:b6:29:f0:
43:12:76:1c:47:2b:87:33:3b:c9:80:ee:87:18:1d:
2a:c2:2d:d9:1f:ab:85:15:ce:28:d7:e6:8a:dc:34:
b1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:AE:36:B2:88:E6:BF:BF:5F:DF:99:6E:65:8F:C2:21:67:A8:CF:87
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:21:e7:6f:48:d1:e8:c5:76:dd:d6:03:29:38:32:c7:53:3e:
31:4a:58:b8:bb:70:e6:81:8c:fe:c2:f4:b9:c2:d6:c7:1e:d7:
9d:b6:e1:a9:7b:bd:82:8c:6c:a5:a1:1b:42:ea:f4:eb:fc:9f:
20:6f:3c:0b:1e:65:18:bf:24:5d:fb:94:1c:ba:71:3b:f1:b6:
3f:72:f6:54:99:f3:1c:18:56:42:08:bb:2b:aa:31:ca:a4:5d:
a5:5d:7e:e2:81:2a:17:f3:2a:f2:14:b9:b2:69:14:bc:23:8e:
52:2a:64:b7:a5:21:0e:75:3e:64:48:1e:ba:46:2a:9f:77:de:
06:8a:bf:bc:b1:c8:ff:0c:6a:76:a0:77:63:ba:5f:7d:6c:81:
91:9c:d0:5b:77:8f:d6:b0:77:c8:2b:0a:4e:3e:a0:ee:3d:59:
09:02:af:fb:eb:fa:13:e4:45:12:07:02:a7:e2:55:66:4c:81:
d8:3b:ed:9e:fd:d1:49:6f:52:8d:0e:c9:57:a8:0b:c3:0b:b1:
4a:aa:8e:6e:b0:98:f7:30:71:78:d4:98:9c:db:67:5a:5b:e3:
a4:b2:20:0a:01:3d:ae:3f:bc:8c:c2:df:b3:c2:4e:07:91:b5:
2a:29:f6:c3:7e:b7:f9:85:19:f5:84:f2:24:71:68:b9:2f:26:
c9:42:67:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:30:18 2026 by rpki-client