Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
File: Pq9YPXwbe09XMQE8iymLpQVGTlI.mft (raw, json)
Hash identifier: NohGuCk14tmn2SU7IQ/m2II+SAZQyqGQZcFbW94tHe8=
Subject key identifier: 12:55:D1:0B:F1:89:5C:CC:9D:11:0A:D9:A1:C6:4A:90:C7:B7:B4:7C
Authority key identifier: 3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
Certificate issuer: /CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Certificate serial: 019CAEA3A40751C48D5738772B85D4A6CC70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
Manifest number: 1461
Signing time: Mon 02 Mar 2026 13:01:25 +0000
Manifest this update: Mon 02 Mar 2026 13:01:25 +0000
Manifest next update: Tue 03 Mar 2026 13:01:25 +0000
Files and hashes: 1: Pq9YPXwbe09XMQE8iymLpQVGTlI.crl (hash: 60GFTdvPu/NhhRUPkXmeCemM1gzb1D5ZmF2Hv4DoL1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:a4:07:51:c4:8d:57:38:77:2b:85:d4:a6:cc:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Validity
Not Before: Mar 2 13:01:25 2026 GMT
Not After : Mar 3 13:01:25 2026 GMT
Subject: CN=1255d10bf1895ccc9d110ad9a1c64a90c7b7b47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:b1:81:da:ae:6e:e6:a9:ea:4b:ed:2b:63:
a6:c4:1c:41:6f:9e:5a:09:68:5e:cd:6c:5f:5a:7f:
35:a8:1d:8b:28:cc:83:5d:c9:e5:3f:83:e8:d2:14:
09:d3:24:d3:db:60:14:b8:2e:0f:2a:b4:1c:bd:76:
0b:c3:a4:e6:c8:ca:75:e4:9f:f5:5f:f3:b7:97:d6:
d3:c8:1d:7a:3e:b9:53:ad:db:a4:99:8d:46:c1:68:
28:d5:46:d4:ba:23:05:b0:4a:a1:94:b1:b1:04:30:
f4:b8:d6:9c:ca:12:c4:b4:86:ed:d3:f0:7b:83:0f:
ef:a8:22:02:f6:ee:cf:63:1b:d6:c5:84:e5:4a:4d:
53:bc:b9:aa:c2:9e:29:2e:cd:a0:90:81:22:8a:ae:
5b:8f:12:fd:bc:cc:80:97:8e:df:75:a5:1c:5b:7c:
cf:1d:06:68:37:47:c0:7c:5d:bb:d1:36:ee:02:cf:
70:03:19:b4:bf:4f:f3:50:e9:2d:a9:05:ec:f3:4e:
7e:f9:7a:a5:e6:73:b6:b0:41:bf:84:e5:d3:e9:8c:
32:d1:43:6c:53:d5:7e:0c:11:a2:92:cf:ce:7b:b5:
bb:40:27:26:8a:f0:9a:c0:77:98:78:a8:7e:21:42:
70:ca:56:51:0b:4f:70:5d:ac:f3:13:3e:8f:92:5f:
4d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:55:D1:0B:F1:89:5C:CC:9D:11:0A:D9:A1:C6:4A:90:C7:B7:B4:7C
X509v3 Authority Key Identifier:
keyid:3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:cb:13:f6:5f:7f:34:a5:32:99:75:01:5d:71:71:00:32:46:
e3:b5:5d:f7:15:9a:c2:07:40:82:82:fa:d8:86:61:24:19:8c:
8e:da:04:2a:a3:31:22:f1:1b:d7:67:a0:6a:ec:47:89:c9:ae:
46:d9:2c:8b:7b:fe:6e:ac:2b:f4:e0:10:da:7e:29:76:09:ea:
57:7f:12:67:06:31:e3:ae:85:e9:39:01:3b:1e:ff:42:18:ee:
8f:e0:b2:ce:8f:10:a5:17:8f:f4:90:99:9f:a5:e5:a5:66:56:
75:d8:b1:f1:d2:f9:5f:74:0a:92:6d:63:5e:52:11:5b:a6:42:
75:5a:59:0b:c1:7f:3d:bb:01:e6:c7:3f:6c:db:c9:bd:55:f5:
e9:60:4a:0d:d5:8a:56:08:ea:3a:ce:95:d5:46:dc:77:01:2b:
8c:68:45:c4:46:b0:24:be:56:b0:3c:49:f3:d6:6d:31:25:dd:
0a:d9:21:08:ab:43:1b:3f:62:bd:41:ba:8a:2c:1d:c0:fd:2f:
8c:8b:ab:ea:ae:84:65:91:ec:5c:1c:04:ff:84:16:e5:8c:8c:
c5:2d:96:10:71:95:5e:aa:04:1b:f1:64:0e:8b:e1:19:73:af:
4d:6b:44:90:79:39:3d:ca:87:ef:2a:d8:7c:8f:6f:9a:ea:da:
88:da:f8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:57:08 2026 by rpki-client