Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: Z/+N1ruWfQzNDk6hByTdPbDJndH6a2/UkQsaJti4ciY=
Subject key identifier: 20:4E:7B:64:A1:74:10:90:DD:C6:48:7C:02:E3:9C:DB:59:B0:D8:C0
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 019DA30ADF8C43B2F30FD9014752AF9C062C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 114D
Signing time: Sun 19 Apr 2026 00:01:31 +0000
Manifest this update: Sun 19 Apr 2026 00:01:31 +0000
Manifest next update: Mon 20 Apr 2026 00:01:31 +0000
Files and hashes: 1: 4AdOdTjOjrDpwgtyy4ktcWWGP6A.roa (hash: wU5WQoYZymnHyBEb3RrJmAMH4p714dRTeA6U67NEuks=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: UQmxNWfgG6cyzh2ttNmg0hXccERq3woWO4tja+8UxwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:df:8c:43:b2:f3:0f:d9:01:47:52:af:9c:06:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Apr 19 00:01:31 2026 GMT
Not After : Apr 20 00:01:31 2026 GMT
Subject: CN=204e7b64a1741090ddc6487c02e39cdb59b0d8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:8b:d4:c1:31:dd:08:10:48:48:f4:75:6e:
7b:b9:24:f3:8f:cf:42:7f:b8:f3:26:4b:3e:ff:f8:
3a:49:2b:85:32:4a:72:6a:9d:59:b5:e5:58:33:06:
97:03:54:25:09:49:1f:1d:be:09:8b:a6:bd:00:bf:
a6:54:4c:ec:2f:eb:43:79:0a:6b:71:54:ba:05:8a:
ef:d6:94:33:38:82:58:0d:fa:71:a2:bc:b7:18:70:
bf:c2:47:d2:9b:08:86:2f:44:ab:16:8c:25:05:73:
66:4b:58:5f:8e:43:5b:a8:ff:55:89:08:d4:4e:2b:
40:93:8c:d3:33:75:84:29:10:1a:85:d5:cd:7e:c8:
c3:9b:9b:13:d6:d2:b3:cf:37:6a:be:c8:6b:08:6a:
80:6d:cb:06:d3:b8:04:0f:b1:21:cf:16:12:4a:dd:
4d:a5:aa:01:3b:6e:57:51:d7:07:20:00:03:f5:e9:
71:85:b3:b3:b5:f3:96:6c:b3:6b:31:dc:52:0e:1a:
4e:5d:7a:03:7d:f1:92:7b:87:17:ef:a9:51:80:a2:
aa:9c:44:ea:71:03:1a:e3:e8:9a:f5:38:7b:d1:58:
dc:f0:ac:ff:2f:24:c9:ce:5f:83:cd:86:66:ce:48:
36:8f:20:45:7b:65:25:84:ef:70:1d:3f:80:7b:3e:
b4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4E:7B:64:A1:74:10:90:DD:C6:48:7C:02:E3:9C:DB:59:B0:D8:C0
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:80:f4:20:b2:69:84:ee:3e:10:8f:d4:f5:0f:95:11:fa:d0:
00:3d:64:ed:a4:54:41:fa:36:36:fd:d4:11:e0:22:ff:92:cd:
f4:5b:63:2a:e9:58:e1:ea:52:3b:eb:a8:1e:ff:ab:e8:a5:34:
41:c4:ac:0b:33:84:62:ef:9a:18:66:2b:1c:c0:3f:57:c4:98:
7b:2a:92:9f:45:ed:35:65:09:93:ba:f2:fe:86:f6:97:85:45:
b1:e3:8e:c3:ca:6f:8b:c5:9e:c1:d2:92:96:2d:23:11:c6:d2:
2a:1c:f2:10:74:c6:56:17:75:02:c0:cd:31:34:de:68:fb:59:
05:9a:91:a7:56:bc:4a:5c:9b:39:be:6b:3f:7e:15:66:42:fb:
41:c6:b6:c9:cc:bb:c8:e3:39:83:d8:06:da:de:e6:2b:10:eb:
8b:62:31:5e:14:40:72:c6:6e:6f:f3:e1:f7:9d:22:42:2b:28:
7e:d6:34:2c:30:63:42:54:09:f2:74:97:80:61:04:9b:b2:94:
95:f1:10:6f:68:da:c7:ba:20:f7:8f:94:b9:e5:eb:8c:1f:17:
2d:74:e3:16:4c:ab:c8:ae:5b:07:52:08:f4:c9:5b:cd:90:3d:
29:f9:0c:d6:e6:1f:03:74:78:03:1c:3e:c6:f2:71:51:4f:f1:
ec:70:57:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:05:27 2026 by rpki-client