Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier: BGJiagpjfwKCegfWdRZfiiM2ylYlZxBp8IlXDv99x2A=
Subject key identifier: EC:BE:0A:FB:BD:B8:A0:17:6A:BF:99:4B:0C:EF:C8:AF:90:E6:E8:44
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 019D382E2C4B86588C63CC7A8A952AB37235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:00:43 +0000
Manifest this update: Sun 29 Mar 2026 06:00:43 +0000
Manifest next update: Mon 30 Mar 2026 06:00:43 +0000
Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: zSkcIYdXNhZ1iXLvIdCHFD8lde6mfP9gGUWbc55hIpg=)
2: zdHtSRxpJBMjN_Z0z26JXK0mycs.roa (hash: lc2L7OCAHky1r/MwYr4M0nrrYwYly2np0Be8FYu8I7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:2c:4b:86:58:8c:63:cc:7a:8a:95:2a:b3:72:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Mar 29 06:00:43 2026 GMT
Not After : Mar 30 06:00:43 2026 GMT
Subject: CN=ecbe0afbbdb8a0176abf994b0cefc8af90e6e844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2f:b4:20:b8:68:09:1e:3e:83:86:5e:d4:2e:
6e:d8:fb:48:b8:f9:c4:a8:f3:1f:94:09:7b:f9:50:
30:79:da:82:4d:f0:cb:00:f0:df:01:6f:2d:78:a2:
8a:39:34:6f:65:24:77:ee:fa:23:dd:72:3b:73:0b:
91:5c:18:66:46:d9:db:9a:3c:f2:dd:d5:d4:c5:ee:
d3:6b:3a:9b:5f:ac:b0:db:d5:65:13:bc:55:28:03:
5d:65:4b:3b:6b:6a:3c:54:a8:42:fc:06:40:f3:1d:
5e:56:49:51:8c:df:9d:5c:0c:2d:41:92:6d:b3:44:
82:2f:24:9f:1f:f2:38:6e:68:23:81:72:98:45:6d:
c7:f6:53:44:ef:8c:b2:13:e4:9a:87:11:5c:55:c0:
2b:28:5c:db:e1:40:9a:56:0f:7e:e2:b1:a8:64:7d:
4a:b9:01:fc:d6:6c:e5:d0:4e:48:76:56:40:9a:71:
ef:0e:df:d9:0e:ec:a9:72:65:95:4e:6b:a9:a9:b6:
d4:96:b2:10:44:5c:14:a7:e7:64:12:be:ee:09:96:
61:1f:d7:d3:89:c7:ab:a5:50:16:2c:75:ec:e0:e7:
06:47:e8:c3:27:95:c0:f8:06:20:62:ed:32:17:66:
cc:cf:4e:df:0b:5f:61:7d:54:25:21:65:87:52:6c:
38:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BE:0A:FB:BD:B8:A0:17:6A:BF:99:4B:0C:EF:C8:AF:90:E6:E8:44
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ef:fc:16:28:1b:58:7c:cb:ad:ae:82:f1:2f:62:c9:e8:8d:
f9:69:b0:56:fe:a4:f1:7a:dc:7a:83:58:62:1a:e7:69:a5:33:
bf:d2:01:08:b7:f3:04:74:dc:28:5b:0a:50:a0:2a:c8:41:68:
03:e0:f4:f8:2f:ee:93:3e:b0:7a:01:25:4c:ae:01:3b:c7:ce:
5d:3b:e9:b4:7a:7e:90:7d:d1:12:a1:78:ca:d9:31:a3:1e:cc:
f1:cf:5a:03:10:0d:cf:34:4e:32:05:34:ce:c6:29:20:49:06:
8b:4a:74:a6:18:c3:d0:5f:fa:64:07:f8:6e:e1:bd:9a:a8:11:
03:27:fa:13:7b:2d:73:81:cc:f2:04:10:bf:0a:1d:5b:d1:fb:
31:1f:9c:35:ec:18:b8:bb:20:e2:e0:d6:b8:ae:a0:22:60:6e:
e0:9b:04:9c:df:98:49:fa:7f:cd:2c:12:a5:b1:0f:c4:80:74:
b4:ce:8a:88:c5:89:fc:73:fa:cc:1b:18:d4:dd:99:2e:f0:77:
08:e4:02:3b:b3:0e:25:88:d7:7c:72:07:e8:8b:30:27:4d:bd:
89:c6:2c:8d:be:b2:54:a7:13:0d:85:9e:85:3a:07:00:d4:90:
7a:6b:0b:ec:22:de:22:b4:37:eb:3e:d2:30:4d:4b:ea:e0:ed:
50:8b:35:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:17 2026 by rpki-client