Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
File: Pq9YPXwbe09XMQE8iymLpQVGTlI.mft (raw, json)
Hash identifier: tMxnhGQlgWBHmMKU+cCa+KW7ZKCBkwSA9LpeQjSz4qg=
Subject key identifier: 39:FC:9B:E0:22:B6:BC:CD:A7:86:52:54:6E:7E:C5:F9:63:AD:98:E6
Authority key identifier: 3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
Certificate issuer: /CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Certificate serial: 019D9A3E53573CF307184FD07C850489248B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
Manifest number: 14DB
Signing time: Fri 17 Apr 2026 07:01:08 +0000
Manifest this update: Fri 17 Apr 2026 07:01:08 +0000
Manifest next update: Sat 18 Apr 2026 07:01:08 +0000
Files and hashes: 1: Pq9YPXwbe09XMQE8iymLpQVGTlI.crl (hash: uul9wC30uVkHg9UDG4rB5tzBn2hTPaTL3f5H6Hk/KrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:53:57:3c:f3:07:18:4f:d0:7c:85:04:89:24:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Validity
Not Before: Apr 17 07:01:08 2026 GMT
Not After : Apr 18 07:01:08 2026 GMT
Subject: CN=39fc9be022b6bccda78652546e7ec5f963ad98e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d1:bf:b5:da:99:f5:fe:54:83:a8:6f:bf:de:
07:dc:27:1a:cb:24:df:4e:5d:66:f9:c6:72:eb:f6:
58:f7:1c:4e:56:14:4d:ef:9b:d8:f7:11:d8:cb:4c:
5d:3e:93:af:0a:33:d6:e6:a0:60:9e:71:e9:22:db:
19:7f:5a:f5:7b:1a:be:5a:57:51:95:07:47:fb:29:
5c:ac:70:ba:1c:9f:05:ea:9c:cd:ac:6c:c6:21:a0:
d3:6f:f7:f9:8e:4e:a2:fd:ad:6a:2d:10:a9:e8:12:
48:9d:7c:64:cf:05:1a:8f:f2:30:77:a8:31:23:4a:
fc:b2:2e:ac:90:1c:5f:a2:f4:d1:d6:70:29:0b:bc:
84:30:0c:43:55:a1:53:6f:07:cd:c9:9c:59:0a:f7:
c6:b8:a2:a2:e2:7c:17:bf:b7:23:bf:72:a2:bd:77:
7a:75:69:47:94:0f:75:ff:1f:ba:16:ab:82:54:c3:
c5:9a:fe:42:e8:9e:28:55:c8:b1:f9:c0:60:70:3b:
de:20:be:f0:e9:d7:d2:c5:ca:24:12:73:bc:8c:9b:
a8:81:2d:96:de:74:ee:11:d7:14:09:b7:ec:a6:e0:
53:e0:f2:5f:ba:6b:14:fc:0e:c1:ba:23:19:0f:a4:
8b:01:a2:6b:14:cf:a6:c7:fc:1c:1b:69:da:73:83:
f3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FC:9B:E0:22:B6:BC:CD:A7:86:52:54:6E:7E:C5:F9:63:AD:98:E6
X509v3 Authority Key Identifier:
keyid:3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:67:58:c7:a7:eb:f5:79:64:d1:e5:da:e3:1f:ea:5a:06:fe:
36:8b:3b:e7:ce:b3:01:82:87:32:f4:76:d5:69:e2:24:27:cd:
83:1d:6f:28:40:54:e9:42:a0:9d:fa:be:f1:8e:45:73:bf:15:
21:42:bd:d0:35:28:02:40:3d:7d:8e:45:64:ae:2e:1e:8c:1c:
86:18:a8:b4:de:8f:e8:48:bf:d1:a2:50:8a:3b:a4:00:63:aa:
b8:3d:49:ad:d7:6d:b1:4a:ed:1b:0e:94:9e:72:99:6e:82:5a:
47:26:78:a4:c4:a8:33:ac:85:7e:8e:1d:54:09:e6:da:41:f1:
4b:f8:06:d2:55:3b:8f:2c:c3:4e:6b:23:2e:6a:b1:53:f6:da:
55:58:d8:07:22:c4:4f:f1:04:1d:6d:55:b6:52:76:2c:f7:c9:
1b:d3:e6:c4:49:50:27:e2:74:88:34:5c:cc:09:74:36:3a:d3:
8f:59:e8:34:11:76:c6:db:ef:cf:fa:fe:8a:2b:d9:0e:be:8d:
5f:76:47:cd:e0:76:64:b5:07:92:97:c3:f9:29:7f:67:65:0b:
b4:91:fd:20:ac:e2:bd:44:26:d2:77:04:17:87:a8:ed:2d:0a:
f1:61:95:cd:ad:8f:b1:fb:00:11:76:c0:69:67:5a:17:7c:e8:
88:cf:c8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:35:00 2026 by rpki-client