Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
File: PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft (raw, json)
Hash identifier: PoPInyKLHvZYQpOzuSpNZ2TutiyIpjBFB3Ne6O+IcwE=
Subject key identifier: 03:32:2D:8C:2C:E6:90:91:7F:D6:F0:F8:D8:65:E3:2F:4D:71:D9:56
Authority key identifier: 3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
Certificate issuer: /CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Certificate serial: 019D3A53A0B31696606737D6EE11E9B893F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
Manifest number: 0614
Signing time: Sun 29 Mar 2026 16:00:52 +0000
Manifest this update: Sun 29 Mar 2026 16:00:52 +0000
Manifest next update: Mon 30 Mar 2026 16:00:52 +0000
Files and hashes: 1: PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl (hash: GKuqf4Sstqif0ZOBADpwRVNzxG+PLiJWNRGGolw303E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:a0:b3:16:96:60:67:37:d6:ee:11:e9:b8:93:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6
Validity
Not Before: Mar 29 16:00:52 2026 GMT
Not After : Mar 30 16:00:52 2026 GMT
Subject: CN=03322d8c2ce690917fd6f0f8d865e32f4d71d956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7c:db:27:05:dc:8c:c1:02:f6:95:89:b1:1b:
1b:a0:69:20:08:f6:ef:2c:0d:c6:70:83:20:7b:c7:
51:56:9a:02:2b:77:7c:c0:fd:e7:47:55:92:0d:8f:
6e:83:ea:0c:83:cb:01:c2:15:93:f9:f0:b9:47:df:
ee:15:d7:da:c7:57:de:de:1f:ac:51:b9:dd:37:ef:
ee:0a:5c:c1:b6:d7:4d:2d:d4:19:d7:37:b2:2c:25:
0a:65:21:af:69:99:9f:3c:38:91:c3:7e:17:c2:6e:
41:2d:d4:9a:43:82:b3:c0:fd:98:9f:83:59:17:01:
2f:93:a8:f8:f3:49:3c:b7:ed:33:c4:95:6e:17:1e:
c6:30:74:0b:11:48:7e:c0:ff:ca:20:91:d3:14:33:
ed:7c:b2:45:52:3d:a1:b5:92:37:ae:6a:33:31:95:
54:37:c2:a0:dc:06:32:aa:86:22:2e:5b:c1:88:8f:
5a:82:5f:0f:d8:07:4a:dd:75:28:4e:91:ff:25:b8:
51:14:06:03:c1:91:2f:e9:17:fe:68:94:ca:a9:ec:
aa:21:ab:ac:be:8d:ef:c3:92:a0:2a:18:88:1e:48:
cc:31:29:5e:f5:a7:62:cd:50:38:3b:59:d9:db:03:
8e:9b:f6:bf:d5:e2:96:d7:ee:a5:62:3f:b0:47:b0:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:32:2D:8C:2C:E6:90:91:7F:D6:F0:F8:D8:65:E3:2F:4D:71:D9:56
X509v3 Authority Key Identifier:
keyid:3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:46:0f:24:0a:21:cf:43:48:2a:f5:5d:2b:42:03:e8:98:de:
0e:6e:8d:34:a7:6a:11:30:fc:e9:22:95:68:63:49:e1:ab:0c:
35:22:e7:91:6d:76:be:34:4c:56:11:03:78:af:80:7e:11:03:
0e:93:3d:07:91:b3:7c:71:82:99:eb:1f:a5:1c:2e:d8:b8:6f:
6d:8e:cf:09:cc:0e:44:c3:41:9d:3c:db:1a:c6:00:2c:a8:21:
27:de:18:10:94:87:79:9f:a3:aa:52:09:ad:ef:52:7c:b4:03:
c6:95:5e:a2:dd:ca:4c:de:f5:22:5d:c6:3f:0b:57:ae:6f:9c:
6f:20:cb:82:bf:97:52:33:17:71:fd:60:a2:71:77:dc:21:50:
3b:0d:dc:da:80:4c:e9:d8:21:43:ad:52:92:d6:32:8d:c0:78:
71:24:29:3d:b5:21:af:85:f3:e2:4f:83:63:23:95:18:90:d1:
bb:71:91:cd:5c:53:42:8d:f5:b7:47:c3:03:fa:f7:93:31:c7:
84:c9:e3:35:12:c6:43:80:20:9b:7d:14:47:f7:3f:a3:34:82:
a7:8a:35:f6:6c:66:88:ee:35:e2:cd:da:23:bf:e6:02:2e:e4:
ac:18:d8:91:b7:2c:aa:fe:fa:e4:ae:f9:69:5b:dd:2f:fe:1b:
7c:d6:54:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:21:03 2026 by rpki-client