Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
File: PHQZW9u2a2A65joVGPBm-gsRUfU.mft (raw, json)
Hash identifier: a4iL4Hiapgfiq60VWtK2XZqE4+9mcMGEkHuOQcEXkxQ=
Subject key identifier: E7:1D:B1:63:FF:4A:EF:E6:18:3B:42:C7:11:A3:DB:53:34:E6:8B:B7
Authority key identifier: 3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
Certificate issuer: /CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Certificate serial: 019D98F435BBC6ACF901EE7D07D344240143
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
Manifest number: 0BF3
Signing time: Fri 17 Apr 2026 01:00:34 +0000
Manifest this update: Fri 17 Apr 2026 01:00:34 +0000
Manifest next update: Sat 18 Apr 2026 01:00:34 +0000
Files and hashes: 1: PHQZW9u2a2A65joVGPBm-gsRUfU.crl (hash: vUIw4Fe7ns2lQaTw/6vZc0VzW6bHn5I3KCsVVUofJYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:35:bb:c6:ac:f9:01:ee:7d:07:d3:44:24:01:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Validity
Not Before: Apr 17 01:00:34 2026 GMT
Not After : Apr 18 01:00:34 2026 GMT
Subject: CN=e71db163ff4aefe6183b42c711a3db5334e68bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:47:fc:62:8c:34:fd:58:0f:23:43:6e:e7:e0:
2b:55:a1:66:e0:dc:e7:7f:d3:32:8f:78:27:f9:7b:
5a:56:57:24:4e:72:a5:28:76:be:39:a3:1c:3d:0b:
c2:1a:91:8f:44:36:eb:1d:cd:d0:99:cf:0a:7d:bb:
72:29:36:5a:28:a5:d8:ad:f5:65:23:af:94:b9:db:
0b:95:ab:15:9b:c4:68:7c:f6:74:ea:d4:49:00:97:
bc:92:03:9a:be:47:c0:dd:04:b5:43:1c:c6:41:6e:
de:88:4a:f5:1e:4a:e4:09:b7:13:0a:e8:83:7d:83:
93:17:8a:ff:fd:6e:18:3a:7c:2d:da:4c:9c:e5:73:
18:db:5d:0f:e8:79:47:4f:53:6b:45:14:69:2d:cc:
08:61:3f:a1:96:71:03:ac:38:94:47:55:17:e7:28:
3a:cd:b1:67:b2:d7:b1:69:6c:05:fe:87:9e:19:f4:
0a:ed:6c:f8:15:bd:29:37:3a:94:2f:1c:1d:c0:ae:
8c:11:a1:9f:5a:6d:8a:3d:78:5e:3e:d6:a2:fa:56:
71:f5:20:97:7b:a1:cf:33:ab:d3:02:f3:ce:6f:f4:
2f:d9:a2:37:68:49:26:07:45:38:86:91:e8:df:df:
fd:4c:33:f5:d4:31:f5:5c:42:04:08:62:55:06:d0:
7d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1D:B1:63:FF:4A:EF:E6:18:3B:42:C7:11:A3:DB:53:34:E6:8B:B7
X509v3 Authority Key Identifier:
keyid:3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:a8:b7:68:14:59:de:3e:6b:5c:ed:15:c2:94:5b:28:28:2f:
3e:08:dd:7a:66:c3:93:c6:58:e1:2f:2e:71:e6:0f:84:b1:c5:
02:53:47:05:44:90:6d:0e:31:1c:0a:fc:27:0d:6b:82:68:40:
35:fa:50:ed:e2:74:cd:62:c4:e4:7e:bd:70:1d:4c:1d:24:9a:
ad:d9:fb:92:7a:e9:1a:94:b8:80:eb:bb:84:5a:b1:d4:82:ff:
61:2f:5b:1b:96:ee:6a:65:16:dd:67:f2:90:a4:a4:82:a5:ba:
97:eb:07:39:35:0b:1f:7e:20:75:6b:9e:54:aa:12:07:85:ca:
f3:c3:47:0a:49:b5:70:0a:ee:8c:45:76:68:92:c9:2a:d6:27:
5e:6e:e3:90:68:87:d5:f2:8f:74:65:b6:01:8f:83:0d:9d:ca:
ae:35:8a:ae:8d:41:a8:44:b4:60:ed:19:a0:50:71:0e:2f:3a:
3b:b2:6c:ef:13:76:6a:9f:56:61:02:dc:42:0e:b4:93:d4:67:
58:de:3b:d5:4d:9c:2c:9f:d3:a6:ad:e5:ef:14:be:94:a6:28:
ca:72:98:23:87:61:c7:6d:5c:f7:c4:fb:15:36:a3:fb:53:a0:
02:df:3e:48:d9:d0:db:d5:0a:7a:50:bb:de:62:6c:fc:62:64:
24:eb:2a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:00:51 2026 by rpki-client