Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: P4LZrwrWS3xea9d7M7OCTDFIVOLR00jWr6pV/ZBmN2Q=
Subject key identifier: CF:37:E9:26:8E:C0:C3:19:2E:E8:3B:60:3C:B4:F5:78:50:DE:47:D8
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019CA86A991B07EF32128FF3A18A29D0733C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1841
Signing time: Sun 01 Mar 2026 08:01:24 +0000
Manifest this update: Sun 01 Mar 2026 08:01:24 +0000
Manifest next update: Mon 02 Mar 2026 08:01:24 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: MC3ofdLD/jEIMiGDsAXXkOCyBV+eaIDkDAuzkDU+Kl0=)
2: ZyRogeaonWCDX6YHI-BEV3oTgbo.asa (hash: UhcSgiJzCKNgPVuyaZNIhdxTbMyFoRx3xZ1V9omPKtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:6a:99:1b:07:ef:32:12:8f:f3:a1:8a:29:d0:73:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Mar 1 08:01:24 2026 GMT
Not After : Mar 2 08:01:24 2026 GMT
Subject: CN=cf37e9268ec0c3192ee83b603cb4f57850de47d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1a:bb:ba:02:03:d6:09:74:cd:c1:00:d6:9d:
4b:31:ea:7a:02:80:aa:4d:b8:e0:e0:66:21:3e:b4:
0c:63:59:4a:9d:87:ba:3b:f8:99:e9:e3:d5:e1:e0:
56:4d:1c:cf:75:77:e0:c7:f2:7d:98:cd:09:9c:31:
4a:ce:61:de:4f:72:3e:d8:76:aa:13:d3:66:30:da:
9c:73:19:59:17:3c:2a:8d:2a:0b:ef:13:3e:c0:8e:
1d:9a:6b:06:e5:25:0a:83:ee:91:99:1b:c9:83:f9:
f8:62:dd:e5:37:3c:50:fa:06:3e:c7:b1:7b:1e:18:
b3:86:e3:29:7a:63:c9:2b:7c:b6:10:1b:e2:35:59:
1c:5e:52:7c:3e:92:cd:37:6f:a5:53:47:92:a3:03:
33:d9:fb:e6:01:bf:36:a0:43:89:f6:ae:82:ea:1d:
57:ca:36:85:d4:7f:e1:cf:7f:f8:74:72:57:a1:b3:
3c:8e:0b:05:b1:f5:e5:ef:f0:0e:0d:ae:b1:a7:2b:
13:b3:e0:9f:a1:16:59:66:44:07:31:7d:80:b4:68:
68:b7:18:4a:79:f3:12:d9:46:f6:b5:7c:c4:d7:5d:
72:89:ba:19:f7:8d:f8:e1:09:fc:38:08:97:6e:a9:
e0:33:44:fa:d8:20:b0:6e:e8:52:25:5f:d0:3b:fd:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:37:E9:26:8E:C0:C3:19:2E:E8:3B:60:3C:B4:F5:78:50:DE:47:D8
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:88:20:14:51:25:17:ac:e4:e9:f5:28:9b:62:dc:d2:0a:96:
87:46:ed:a8:fe:98:84:0c:d3:05:9c:7f:47:d7:09:0c:9a:08:
d9:7e:0b:20:ed:a4:b7:a8:16:e0:8d:86:38:4e:e1:e5:36:55:
ab:f6:dc:39:3f:4d:ca:8d:9f:d2:e0:7e:6b:01:2e:f3:9e:1d:
19:95:1a:ff:69:80:e1:b4:af:4e:38:e0:90:9c:66:74:00:ef:
5f:30:6d:6b:3c:e6:48:1a:56:11:f0:8a:83:8e:c8:eb:52:47:
31:0f:e7:ed:54:5b:62:98:dc:20:5b:29:c5:f0:ef:54:a6:3b:
02:44:09:3a:27:3a:a2:05:a6:b0:2a:e3:0d:e7:79:ad:95:20:
7c:da:6a:df:55:e7:fb:f4:05:0f:fd:95:5a:9c:43:e5:58:8a:
17:62:21:93:6f:1f:02:9d:1f:21:09:38:32:c9:ab:7d:e4:d9:
d4:fd:3b:d0:20:c2:6f:99:fd:72:81:0c:d2:ee:9a:43:2f:d1:
b3:33:1b:8d:99:75:4e:7b:69:ee:c6:de:56:4e:c3:34:95:c0:
b3:26:6b:a7:2a:db:0b:e8:64:ef:82:20:2a:71:4b:68:db:38:
90:3f:2e:b3:86:7f:41:9c:7b:be:09:a8:d9:6a:26:c4:96:c4:
f8:6f:72:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:31:30 2026 by rpki-client