Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
File: PRKXkoZrFiE7VsW_pr66x8YYsVA.mft (raw, json)
Hash identifier: OoMJeUjxBkEwaL3LQD3lOBf1aJLlSrrV9bikqTN6Ydk=
Subject key identifier: 93:5B:ED:B7:DB:E8:A4:AE:AE:C7:6A:BA:C5:DA:85:66:BD:B1:A6:74
Authority key identifier: 3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
Certificate issuer: /CN=3d129792866b16213b56c5bfa6bebac7c618b150
Certificate serial: 019CAB6B5010E5121225BBFF6A4D058E0E3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
Manifest number: 13D4
Signing time: Sun 01 Mar 2026 22:01:02 +0000
Manifest this update: Sun 01 Mar 2026 22:01:02 +0000
Manifest next update: Mon 02 Mar 2026 22:01:02 +0000
Files and hashes: 1: PRKXkoZrFiE7VsW_pr66x8YYsVA.crl (hash: cTtWJD+dUVpWfByrURTl46Jm+Fyc3NphWaS2pXaJwyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:50:10:e5:12:12:25:bb:ff:6a:4d:05:8e:0e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d129792866b16213b56c5bfa6bebac7c618b150
Validity
Not Before: Mar 1 22:01:02 2026 GMT
Not After : Mar 2 22:01:02 2026 GMT
Subject: CN=935bedb7dbe8a4aeaec76abac5da8566bdb1a674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:9c:be:e8:2d:59:9e:b1:ff:e8:49:b9:44:
74:2d:c9:d9:63:83:75:f9:5b:6a:5b:c9:8e:2f:29:
62:21:90:2d:32:4c:76:06:b3:06:11:34:bc:f4:eb:
b5:86:d3:f6:62:22:6b:a5:e8:d8:21:5e:16:ab:fe:
d8:51:a2:02:86:ca:47:7c:c8:30:a2:b0:e9:6b:29:
4a:62:e7:3a:b6:67:a1:62:04:f5:04:25:38:82:f1:
46:0e:0e:c2:d9:90:fb:dd:76:66:60:fc:b8:d4:44:
cd:fd:7c:6e:29:36:5b:55:ec:61:f6:28:a2:e1:1f:
18:9f:cb:86:04:04:a6:12:0f:e9:4a:bf:da:2a:0e:
ca:e6:72:5b:3e:30:4d:11:f0:66:f5:b2:0e:0c:5f:
ef:32:8c:a6:65:ae:f4:fb:89:5a:a0:db:71:dc:ec:
c9:15:d4:fc:aa:e9:85:55:dd:1b:7e:ab:d9:66:e8:
dc:aa:06:1d:3c:b5:7a:6f:ae:93:d6:2d:47:31:65:
9c:4b:67:44:da:12:28:28:ba:7d:65:86:e0:e6:b2:
1a:d8:bd:da:d3:e1:6a:b8:fa:72:ae:df:7e:e0:66:
e4:e1:65:be:4c:3c:3c:16:d8:c8:40:d9:97:b4:47:
8d:3c:11:48:c5:8e:ac:bc:9f:08:51:2f:fc:23:61:
94:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5B:ED:B7:DB:E8:A4:AE:AE:C7:6A:BA:C5:DA:85:66:BD:B1:A6:74
X509v3 Authority Key Identifier:
keyid:3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:13:d4:a0:7f:e2:a2:65:5e:8e:a9:b9:61:b8:39:94:61:2c:
18:e6:3a:fa:af:00:16:ec:cb:f6:68:54:9f:f1:a0:f2:d0:82:
85:05:c6:f9:18:c7:10:12:08:3a:4b:89:08:2a:62:75:0c:de:
9e:fe:3d:fa:87:2f:10:f2:f8:bf:6f:c8:21:af:2b:83:64:b2:
b3:6a:cf:bb:9c:9a:ff:1e:27:d1:df:36:62:00:6c:38:07:50:
97:73:3c:ad:be:0d:12:9f:cc:7d:f2:7c:5c:2e:50:bc:52:68:
51:73:92:27:ed:bc:d1:a4:74:d1:ee:0a:40:44:a5:ac:fd:69:
51:fe:73:60:82:17:ed:bc:58:48:fd:f7:a3:53:ee:6a:2e:6f:
c8:ea:da:32:1d:e1:85:95:f4:81:13:4f:18:12:cd:80:9b:b5:
e6:63:2a:c5:f8:a1:84:ab:77:ed:35:4a:d0:72:e7:0c:7c:d7:
f7:98:d3:96:ca:22:d0:5a:b6:3f:fc:a3:5f:1f:f3:16:d7:51:
09:7e:c1:a3:ab:f1:53:b1:2e:1d:50:9f:7b:98:78:d1:63:64:
20:bb:7f:0f:15:83:4c:be:ad:be:5c:6d:6a:4f:20:81:9b:e1:
6d:2a:1c:dd:bd:19:42:d3:d4:65:a7:a3:c8:aa:d1:40:43:36:
22:af:39:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra1AQ5RISJbv/ak0Fjg4/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMTI5NzkyODY2YjE2MjEzYjU2YzViZmE2YmViYWM3YzYx
OGIxNTAwHhcNMjYwMzAxMjIwMTAyWhcNMjYwMzAyMjIwMTAyWjAzMTEwLwYDVQQD
Eyg5MzViZWRiN2RiZThhNGFlYWVjNzZhYmFjNWRhODU2NmJkYjFhNjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTucvugtWZ6x/+hJuUR0LcnZY4N1
+VtqW8mOLyliIZAtMkx2BrMGETS89Ou1htP2YiJrpejYIV4Wq/7YUaIChspHfMgw
orDpaylKYuc6tmehYgT1BCU4gvFGDg7C2ZD73XZmYPy41ETN/XxuKTZbVexh9iii
4R8Yn8uGBASmEg/pSr/aKg7K5nJbPjBNEfBm9bIODF/vMoymZa70+4laoNtx3OzJ
FdT8qumFVd0bfqvZZujcqgYdPLV6b66T1i1HMWWcS2dE2hIoKLp9ZYbg5rIa2L3a
0+FquPpyrt9+4Gbk4WW+TDw8FtjIQNmXtEeNPBFIxY6svJ8IUS/8I2GU2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJNb7bfb6KSursdqusXahWa9saZ0MB8GA1UdIwQY
MBaAFD0Sl5KGaxYhO1bFv6a+usfGGLFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFJLWGtvWnJGaUU3VnNXX3ByNjZ4OFlZc1ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC81NmU5ZDUtZmY0NS00NDY0LWIyYmIt
NjEwYjllNzJhNmJlLzEvUFJLWGtvWnJGaUU3VnNXX3ByNjZ4OFlZc1ZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC81NmU5ZDUtZmY0NS00NDY0LWIyYmItNjEwYjllNzJhNmJl
LzEvUFJLWGtvWnJGaUU3VnNXX3ByNjZ4OFlZc1ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVBPUoH/i
omVejqm5Ybg5lGEsGOY6+q8AFuzL9mhUn/Gg8tCChQXG+RjHEBIIOkuJCCpidQze
nv49+ocvEPL4v2/IIa8rg2Sys2rPu5ya/x4n0d82YgBsOAdQl3M8rb4NEp/MffJ8
XC5QvFJoUXOSJ+280aR00e4KQESlrP1pUf5zYIIX7bxYSP33o1Puai5vyOraMh3h
hZX0gRNPGBLNgJu15mMqxfihhKt37TVK0HLnDHzX95jTlsoi0Fq2P/yjXx/zFtdR
CX7Bo6vxU7EuHVCfe5h40WNkILt/DxWDTL6tvlxtak8ggZvhbSoc3b0ZQtPUZaej
yKrRQEM2Iq85ew==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:15:26 2026 by rpki-client