Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: Sjsrust8S93Ka1MWhgdoU6Z6CqwuG+NKNnrHfDzn4eg=
Subject key identifier: FB:40:F8:71:60:97:30:EA:47:63:07:C7:1E:E7:44:C2:0F:1F:85:41
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 019D3866933216EB6FD063677A0F604F6829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 1293
Signing time: Sun 29 Mar 2026 07:02:19 +0000
Manifest this update: Sun 29 Mar 2026 07:02:19 +0000
Manifest next update: Mon 30 Mar 2026 07:02:19 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: F6EvAOzkAe9c8mh23oluOJBzIaDrwuP+8EL91JCNBv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:93:32:16:eb:6f:d0:63:67:7a:0f:60:4f:68:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Mar 29 07:02:19 2026 GMT
Not After : Mar 30 07:02:19 2026 GMT
Subject: CN=fb40f871609730ea476307c71ee744c20f1f8541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:66:eb:1c:2e:e2:51:e8:8d:c2:32:40:d4:6b:
66:be:a6:c2:aa:5f:08:8a:07:db:6f:d7:56:0c:98:
3b:f4:07:04:f9:ca:aa:c0:24:5e:84:15:d0:56:85:
13:3e:03:8a:83:a2:0a:d8:f7:56:c7:2c:5f:85:cc:
88:d0:23:ad:24:33:4b:31:b8:11:b0:87:02:e4:df:
1a:ee:92:14:00:55:ab:dc:57:7a:91:eb:6a:8c:ea:
7d:b2:2f:79:20:b5:65:64:e0:01:32:5b:ab:5a:50:
95:ea:b0:f1:05:42:4f:07:1e:d9:e2:f7:2e:ba:5a:
8b:c1:18:f4:73:4e:47:cc:9a:52:04:a3:19:80:ab:
78:c7:73:14:66:4f:aa:88:96:d4:60:b3:bb:7b:f7:
48:1f:1c:42:2b:92:33:3f:1a:b2:9f:53:28:bc:0e:
1c:b4:55:15:f6:d4:19:1d:91:b4:4a:a8:dc:bf:45:
29:b8:01:e9:e8:a0:d0:9e:1c:67:cc:ca:77:b7:ab:
db:7e:8f:d1:93:9e:f7:54:a4:91:e4:05:e3:94:a8:
33:b7:ba:be:0f:cf:ee:da:04:4a:1d:8e:db:ca:fa:
e8:7a:68:f8:be:44:d3:a3:48:86:40:b6:23:86:9a:
fb:f5:c4:05:ce:ca:ad:93:8f:18:f8:4d:35:51:4c:
0b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:40:F8:71:60:97:30:EA:47:63:07:C7:1E:E7:44:C2:0F:1F:85:41
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:36:51:38:82:bd:5c:62:5f:f3:b7:ab:d9:c3:a8:62:41:30:
f9:71:b7:ff:8e:e2:5c:c5:b5:b8:f4:cb:70:b4:84:c4:37:f2:
46:da:a1:b0:f6:56:44:71:57:dc:e1:f1:fb:5f:8e:d0:bc:dd:
a3:b4:66:36:e9:6d:d6:ac:b1:83:38:60:e2:03:13:8b:7e:47:
74:96:18:81:fb:0d:1d:85:81:b3:ea:e6:ae:a4:56:95:60:e1:
d8:40:66:1c:97:9d:74:cf:27:5b:42:01:30:0a:bf:a6:bd:0d:
67:89:b3:d3:70:ca:22:b8:bc:5e:16:0f:e7:ca:69:98:29:5c:
ba:26:e6:4a:21:91:3c:98:3a:e5:1a:56:64:29:75:81:c2:11:
72:3d:a6:db:c5:be:c4:16:e9:8e:94:41:50:67:ea:38:5a:f5:
67:b1:9d:0b:29:20:2b:4c:3c:87:1b:48:f5:c3:c1:e2:56:60:
ac:e5:b8:69:51:d8:d3:3f:03:31:b5:0e:7c:30:7b:84:a5:13:
39:48:c8:15:17:50:ef:a5:70:d2:91:29:e7:e1:34:81:fe:ad:
c6:3e:b6:d2:c9:4a:bb:7f:3e:76:16:96:ba:dd:22:39:a9:24:
0b:9b:d7:85:21:73:fd:50:0d:a7:09:d6:6e:ea:2b:aa:af:31:
4e:7b:21:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:48 2026 by rpki-client