Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: 8/BYK4v8K2rkbxSZ60VT/ovHsiLT0PlSs0IX0aF10Zk=
Subject key identifier: C2:9E:AA:79:1B:C1:B9:C3:4D:DD:ED:15:AC:B4:87:A5:76:B8:2E:7D
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 019D9999512F210C95CF712EFD99D330FEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 07D8
Signing time: Fri 17 Apr 2026 04:00:54 +0000
Manifest this update: Fri 17 Apr 2026 04:00:54 +0000
Manifest next update: Sat 18 Apr 2026 04:00:54 +0000
Files and hashes: 1: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: cs7F3bOzM8DkIUOdMEzphBExbaH2wLtb49hnSfUEDaw=)
2: VJDz-qaUophwYHtBPQA4i8cS3MA.roa (hash: V9aVBC2KoE26lQ0VCkG45owqJDBEmBnHXtHFUy4VDVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:51:2f:21:0c:95:cf:71:2e:fd:99:d3:30:fe:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Apr 17 04:00:54 2026 GMT
Not After : Apr 18 04:00:54 2026 GMT
Subject: CN=c29eaa791bc1b9c34ddded15acb487a576b82e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bf:e6:0c:57:94:00:86:14:b3:00:76:15:eb:
88:77:05:cf:8f:09:fb:77:b3:f9:8e:36:62:28:df:
d9:f3:6e:ce:74:56:32:6f:a7:77:5d:23:24:7d:ba:
cf:03:79:18:6d:84:95:4a:b1:99:3f:83:50:d9:60:
f6:4a:8a:fb:bd:60:bd:ad:13:62:e9:c5:2f:e6:d3:
96:cd:66:f5:27:02:fe:6c:c9:9c:08:b8:05:b5:c2:
e8:26:03:a2:85:39:1b:3e:0a:5f:b7:20:52:a7:40:
97:45:d3:4c:71:ce:c6:34:bc:e8:41:67:c1:e9:d8:
3c:cc:d1:19:15:97:bf:b1:4a:6c:fb:b6:64:f7:d3:
87:e9:11:01:8d:3f:79:18:79:18:39:18:81:7d:06:
1f:38:45:41:55:75:4a:34:dc:37:70:48:34:05:df:
a2:e9:6e:7d:05:fa:0d:6d:90:53:6b:66:6a:e2:5c:
a1:34:a0:a6:05:b6:a9:a6:14:f1:7b:45:4b:62:c2:
2f:6c:f1:c3:b9:52:7e:4d:3a:ae:aa:6a:74:b8:bd:
a3:ed:0a:a0:b9:06:87:41:6b:3b:a5:34:c5:b1:22:
2a:5b:61:34:77:43:fb:3e:82:a8:e4:15:96:fc:a5:
3a:7d:92:09:8e:f7:0b:aa:9e:70:5a:30:a6:d2:0e:
7a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:9E:AA:79:1B:C1:B9:C3:4D:DD:ED:15:AC:B4:87:A5:76:B8:2E:7D
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:05:01:5c:f3:46:f8:23:b5:cb:87:49:87:e7:d4:14:be:90:
9b:50:54:3c:49:5e:2f:e8:52:2c:c8:9c:70:43:ee:46:d2:75:
9d:79:1b:09:e4:8e:8c:04:7b:19:19:02:1f:7b:51:91:a7:aa:
28:2c:28:14:77:27:05:7c:02:f6:4a:8c:2a:b1:d6:78:ec:f3:
6c:78:c1:c6:7d:17:50:6a:81:7a:1f:fd:d3:08:29:d0:5d:30:
5d:90:33:3e:4c:fe:5e:4d:86:21:95:90:52:00:62:29:36:45:
38:4d:1a:bc:5b:ff:26:ae:b8:76:fd:e8:6b:f8:7e:c0:3d:08:
6c:77:88:3e:f1:2e:93:c5:a3:c3:bb:5e:33:64:2d:ba:eb:cc:
d1:c7:32:bc:12:36:71:75:91:60:2a:80:be:03:88:31:b7:65:
00:49:10:a0:5d:0c:4d:1a:98:92:71:57:ee:22:ae:1c:d9:9b:
e5:fa:51:ed:31:96:84:bb:81:01:c4:78:86:24:fa:c0:88:f0:
11:9e:80:22:8a:05:7c:b1:50:22:f7:59:f5:8c:4c:5c:43:fb:
ea:8b:94:cd:85:25:d2:78:60:83:bf:31:39:32:39:82:6f:92:
dd:ac:a1:55:cb:3a:dd:14:02:a5:80:a1:d5:83:97:97:46:06:
c2:09:bb:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:17:01 2026 by rpki-client