Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: jsgZ0sqhPZoLMePBT3cDOwGBgf+XYgyek6PgRtcQMmY=
Subject key identifier: 74:7F:18:0C:AB:40:74:06:8B:90:77:F6:1F:55:91:AC:EE:43:94:C1
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019D38D2D893DB7DC9FB604656702CA525D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 181D
Signing time: Sun 29 Mar 2026 09:00:35 +0000
Manifest this update: Sun 29 Mar 2026 09:00:35 +0000
Manifest next update: Mon 30 Mar 2026 09:00:35 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: wcT7AJEASO+k890/x9w4Gs0KGfKwuyMGdhc3TWNb49Y=)
2: ugGgjfrNMaOwuHgQR5J_mmnCoSw.roa (hash: N5PN03imR/rPD+0R00oOm/EBGbZntmCDYE46dLOAj4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:d8:93:db:7d:c9:fb:60:46:56:70:2c:a5:25:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Mar 29 09:00:35 2026 GMT
Not After : Mar 30 09:00:35 2026 GMT
Subject: CN=747f180cab4074068b9077f61f5591acee4394c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:28:56:a0:c8:19:e9:89:e8:89:4e:d8:df:41:
22:61:ef:0a:40:a7:e3:a3:e0:63:38:ac:bf:b7:da:
07:73:f4:7c:1a:9f:af:eb:e9:aa:07:67:a2:ef:df:
59:fd:06:d2:5b:20:a7:1a:0f:9e:80:cd:2e:92:e4:
35:90:01:9b:55:f8:05:32:fa:33:4d:7f:86:f9:0c:
33:ce:90:2a:67:fd:27:f0:63:af:50:ee:b8:66:0e:
d8:bb:90:f5:1c:87:0e:13:65:34:fe:fe:8d:c2:95:
5d:00:dd:57:96:ef:36:84:b9:b9:0f:96:a6:0b:8b:
c0:76:d7:7d:49:1e:b2:28:99:db:6b:95:da:fe:f8:
3a:6c:78:39:01:73:8d:41:f5:f5:cb:91:6e:e4:aa:
db:dd:d4:31:59:e7:42:df:16:40:60:76:be:60:46:
03:05:a7:6e:a7:fe:13:3f:e6:2a:0d:f0:ea:c5:dc:
d9:21:d6:40:4f:9d:fa:a6:fc:13:2c:f5:6c:f7:eb:
24:cd:83:1c:b5:bc:53:a8:2e:5b:29:9c:05:7d:f9:
c9:57:2a:18:a8:b2:de:b6:c3:b9:54:c6:3c:e8:71:
6c:fb:ad:37:44:a4:fb:24:1b:1d:c2:23:a9:d2:a8:
d2:97:fd:a0:ba:61:82:a9:67:68:b3:9d:d1:b2:ff:
32:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7F:18:0C:AB:40:74:06:8B:90:77:F6:1F:55:91:AC:EE:43:94:C1
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:14:a7:f5:c1:81:44:c6:9e:5e:c7:2e:16:7c:fb:e0:55:fc:
53:fe:71:1a:60:7f:bd:1a:57:ec:f3:a0:44:2c:bf:33:20:0a:
f7:04:8c:4c:92:55:95:db:16:27:21:95:2b:00:aa:f4:85:01:
cf:f4:f0:d9:f6:e5:78:7a:ac:da:73:88:8d:c8:13:cf:a9:57:
33:30:5d:e5:88:68:8c:b0:fd:f8:be:0d:60:89:86:d2:fd:24:
76:23:29:8a:ab:6b:59:c4:68:96:df:6c:11:b5:d5:2c:4f:2b:
29:6e:2a:d0:e7:7d:7c:c5:62:20:ee:60:a2:f1:ec:1a:94:42:
3c:e0:ec:9e:ab:1b:60:07:77:a7:c1:c5:b6:99:7b:c8:79:e2:
29:ea:01:45:cf:93:4f:f2:66:8b:f8:92:49:0a:78:35:7e:b6:
c3:f1:31:4c:fa:88:31:5f:e6:63:46:95:c5:4f:b4:d6:9b:ca:
60:85:5a:89:d4:17:d9:d6:08:9c:6a:c8:17:49:c9:2f:88:da:
26:12:fa:66:41:d1:4e:0e:74:bd:b4:0a:9c:26:0a:ee:70:3b:
b2:ef:6c:6d:cc:41:64:74:15:57:13:28:30:da:d1:8f:2c:a9:
ae:e7:89:54:26:fe:49:dd:ff:ea:e8:aa:a3:c3:a4:ac:f5:ed:
52:89:9a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:23 2026 by rpki-client