Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: /y0ONLmz0hRSUCMvs2mpIt3Q88WvsdzKb0ZC4Wq5Jjg=
Subject key identifier: B1:A5:6F:DF:BE:E8:6A:41:A3:B7:8C:1A:58:55:4C:A8:92:F8:7E:CB
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 019CABD9BAA3F6C6CAC50DCA980210A39A51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 10CD
Signing time: Mon 02 Mar 2026 00:01:38 +0000
Manifest this update: Mon 02 Mar 2026 00:01:38 +0000
Manifest next update: Tue 03 Mar 2026 00:01:38 +0000
Files and hashes: 1: 4AdOdTjOjrDpwgtyy4ktcWWGP6A.roa (hash: wU5WQoYZymnHyBEb3RrJmAMH4p714dRTeA6U67NEuks=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: be/YnPKHhpIrgs2eGbeOmLa2S5aG9lJAT9rpWA8EBpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:ba:a3:f6:c6:ca:c5:0d:ca:98:02:10:a3:9a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Mar 2 00:01:38 2026 GMT
Not After : Mar 3 00:01:38 2026 GMT
Subject: CN=b1a56fdfbee86a41a3b78c1a58554ca892f87ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2e:af:9f:53:be:c4:e9:80:5f:84:17:3e:04:
b3:85:27:0d:98:48:b4:e4:bd:98:31:cc:bd:73:10:
9b:25:13:43:47:c5:b3:80:f7:17:56:23:7e:1f:d1:
35:ed:7a:fa:3c:f8:43:d8:b4:3d:e2:58:d7:c8:da:
ab:cc:24:24:d8:3d:d7:a6:59:85:d1:29:a7:71:cf:
5c:25:e4:4d:13:e5:27:fb:de:6f:f6:2d:31:07:80:
f6:08:72:0a:8a:3d:f2:12:80:6d:43:51:55:74:f3:
cf:a3:00:cc:59:67:ae:98:d4:a4:0b:3f:14:2f:aa:
0f:4f:13:8e:a9:23:55:44:2d:1f:15:c9:cc:2c:a0:
a1:5c:91:ad:54:92:d9:14:e4:9c:dd:d8:82:00:01:
f7:dc:a3:a5:e7:bd:75:10:d5:af:a4:2a:e2:fc:11:
28:f7:70:85:16:c6:0e:38:9c:12:73:79:7c:e3:25:
b4:63:51:cc:d8:b9:7a:5d:21:8e:dc:2b:21:53:3e:
2d:a5:18:97:85:86:ce:bd:69:43:50:9f:ad:a6:36:
e4:0b:80:9f:6e:e3:dc:b4:fd:ac:52:79:27:fd:97:
43:34:b9:6c:57:ef:e3:b7:59:a3:bc:45:17:8c:d6:
19:63:ae:3b:ff:c0:98:30:f5:42:04:f9:c3:68:14:
30:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A5:6F:DF:BE:E8:6A:41:A3:B7:8C:1A:58:55:4C:A8:92:F8:7E:CB
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ff:8d:1a:ea:3b:98:30:59:1a:6d:a1:50:a3:86:38:94:82:
6d:d4:92:47:be:f9:06:9b:45:09:c8:85:12:4c:ec:f3:5e:67:
ae:69:8e:19:ef:9e:fe:42:8f:ab:fe:1c:e3:60:ff:57:e1:91:
4c:9c:f6:5d:94:ac:00:f0:b6:1c:28:cd:16:1b:6c:98:64:d9:
83:20:10:95:73:62:5a:fa:31:51:1c:e3:18:9e:82:73:30:c5:
d6:1f:e2:78:60:75:99:cd:26:92:47:53:a6:3b:f5:12:43:61:
0a:9b:81:8e:07:7b:0e:14:e7:1f:07:5d:ba:b6:ea:01:d1:5e:
28:7e:39:d5:69:76:95:b5:b5:a7:d8:d7:e4:fd:18:c7:fe:64:
1a:46:e9:35:d4:76:26:77:dd:56:9c:cc:d1:de:78:73:b8:30:
bc:c2:a1:f3:6f:cc:36:10:0a:54:f5:01:db:3e:d4:77:3c:b9:
24:ef:da:dd:05:57:94:76:4e:2b:ea:d2:d0:a0:aa:9b:84:18:
35:8b:f4:60:9b:66:77:cb:2c:f3:6f:85:f1:82:ad:3e:ce:bb:
38:6c:0d:a8:15:e4:8a:11:5a:40:9b:1e:6e:ee:81:12:1e:28:
41:6c:be:26:06:fc:b2:f6:d4:da:91:c8:3f:aa:e5:9f:19:16:
89:da:45:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:28:20 2026 by rpki-client