Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: KUseKRuQ6Tuqv9cuV1mH1hAhacB+8XFEMP7fMuKlpys=
Subject key identifier: F7:F2:26:18:3B:2B:69:60:CA:08:08:33:5C:21:FF:24:DB:5C:84:47
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019EBF23A39D87E88A2E29F5BF7106ED80A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1956
Signing time: Sat 13 Jun 2026 04:00:44 +0000
Manifest this update: Sat 13 Jun 2026 04:00:44 +0000
Manifest next update: Sun 14 Jun 2026 04:00:44 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: 42M2CoogGULrGKToK/m2GTIhkW15qF9bHfhMuYBFdmU=)
2: aG1wC2y3Q6pluT4bomzfriW6qO8.asa (hash: y5OiOJ4JCn8oykPDM8IMuk0COHtj+uOEVrLwak92ue4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:a3:9d:87:e8:8a:2e:29:f5:bf:71:06:ed:80:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Jun 13 04:00:44 2026 GMT
Not After : Jun 14 04:00:44 2026 GMT
Subject: CN=f7f226183b2b6960ca0808335c21ff24db5c8447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:1c:39:dd:53:9d:d1:c4:a5:1d:67:96:04:
7a:db:d0:42:8b:09:79:ad:be:5e:2f:3a:43:81:8b:
76:0c:ea:89:ae:0d:9c:ed:05:b4:66:40:97:ac:06:
bb:48:09:81:9e:81:5b:b0:28:d6:dc:e0:c1:8d:f1:
a9:b1:be:95:76:e2:06:be:3f:f7:d3:2b:dc:47:50:
2f:1e:ae:4d:94:10:a4:17:71:51:ab:28:2a:a2:44:
fc:1c:8a:19:fb:43:7c:08:d4:14:53:3d:4a:4a:3d:
60:00:23:58:ac:0f:30:cf:be:c0:43:c0:8c:2e:5c:
06:20:0f:62:53:cf:e9:95:44:07:35:3c:42:06:52:
50:b1:85:65:0c:12:74:43:67:97:01:ce:b1:de:b5:
c6:42:10:13:bd:c4:eb:13:3b:a1:f1:79:12:26:7f:
94:6b:15:7f:6a:29:d0:c5:84:66:ce:6f:3c:ed:ac:
33:13:48:0f:7d:d9:2e:83:47:7b:d3:12:f6:0c:3f:
54:61:f5:34:c7:e7:b6:9b:d1:3f:89:22:2d:52:78:
6b:5b:bd:66:4d:02:62:67:24:23:96:96:7c:df:c7:
da:04:e1:ea:5a:6c:3d:c1:9e:1a:6c:a2:03:5d:25:
4b:26:c3:fb:8c:01:be:c1:b5:2d:92:e4:97:7c:23:
83:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F2:26:18:3B:2B:69:60:CA:08:08:33:5C:21:FF:24:DB:5C:84:47
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:52:b4:0b:75:db:f0:f0:2a:3d:1f:2e:d3:67:24:71:1c:e5:
81:be:fd:19:90:34:16:94:3d:06:c3:08:85:52:f5:94:c6:60:
6d:a4:78:7f:1c:ad:7c:32:9f:a9:05:55:5f:8a:fc:08:be:47:
33:48:72:92:a1:7a:a6:89:3a:e3:de:0e:ba:3d:67:89:e8:81:
0c:90:e8:4a:2e:92:97:0e:93:56:c0:44:c6:58:6e:68:f9:c5:
0c:f7:77:43:5a:39:3e:4d:c6:ab:26:6c:4c:6d:1f:7a:75:73:
c9:23:a9:35:5e:08:41:8d:9c:9a:c6:8b:26:38:d8:f0:94:4f:
4f:5c:7e:f1:f7:d4:ac:61:54:e8:ac:fd:df:40:11:bc:a4:1e:
19:69:62:fe:67:a3:fa:ea:70:fc:7d:67:55:e5:f4:13:7a:3f:
48:c2:6f:40:85:8a:65:f2:07:c7:49:ef:e8:c8:b0:fa:19:5f:
2d:5e:3f:ff:6f:e0:4a:cf:59:c8:6e:27:83:95:a3:36:b3:13:
1a:8e:3f:86:07:95:cb:3f:5b:1a:94:79:d9:19:36:28:01:57:
4a:cd:3e:41:de:dc:c8:50:93:f9:f5:8f:d7:38:c0:32:53:72:
19:f9:96:d8:f8:64:c4:78:a2:ab:42:be:d5:13:44:d3:20:73:
b1:91:75:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:31:28 2026 by rpki-client