Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
File: PYr-wXpBs52_aQE-yhZ732Oqhl0.mft (raw, json)
Hash identifier: SSdZJqK2msoLfqqbccG4Uxwn4B24ORSpOgp3yPlBrRw=
Subject key identifier: 8B:7E:95:60:24:FD:EE:70:7C:AB:51:E1:6D:5E:55:62:19:E1:D9:9C
Authority key identifier: 3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
Certificate issuer: /CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Certificate serial: 019D3789B520B594A0B57C7AAC6C80324EC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
Manifest number: 098E
Signing time: Sun 29 Mar 2026 03:01:04 +0000
Manifest this update: Sun 29 Mar 2026 03:01:04 +0000
Manifest next update: Mon 30 Mar 2026 03:01:04 +0000
Files and hashes: 1: PYr-wXpBs52_aQE-yhZ732Oqhl0.crl (hash: TA5B/Wnf/ZRg14kO4ImIXrrOLyR4lrs5pS+BSYCMy+U=)
2: s5XvdPg-n8_dBuNrjHOe9XWX_NI.roa (hash: BNwYHP0l3nBNhLmZ7ujjnphTmZw0h/PTPtEuxgq/BC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b5:20:b5:94:a0:b5:7c:7a:ac:6c:80:32:4e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Validity
Not Before: Mar 29 03:01:04 2026 GMT
Not After : Mar 30 03:01:04 2026 GMT
Subject: CN=8b7e956024fdee707cab51e16d5e556219e1d99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:70:f2:4f:45:7d:5c:3d:ae:8a:f7:77:04:
88:61:ac:2b:73:c2:53:4b:c6:86:66:b5:54:d7:41:
9a:ca:7b:83:17:a6:66:a6:e6:5c:08:b0:33:bb:b8:
e9:3f:41:4a:3d:51:33:1b:99:72:a1:7b:4e:8d:d9:
7f:4a:ae:b9:ab:e5:73:af:55:57:86:9b:b9:5e:69:
8d:26:f3:60:e6:20:bc:98:f9:76:37:93:e0:b2:2a:
66:01:97:62:73:27:eb:79:1c:82:86:4d:d2:67:d2:
0c:01:eb:a5:3d:5e:7f:03:2b:81:b3:8f:34:20:b9:
8d:81:51:8b:48:77:16:3c:d3:36:77:3b:8b:65:f8:
58:99:12:64:49:5d:fb:68:a6:72:ea:00:bd:7b:2e:
cb:ea:1d:98:27:6b:6e:d0:96:fe:07:65:a4:f0:36:
ef:99:b7:7e:38:03:55:32:ab:2d:eb:5d:1c:99:a2:
d6:c0:3a:70:f9:b8:62:16:d9:5f:98:56:98:c7:a2:
f0:7e:c3:ca:27:5b:b2:7d:81:ef:8b:23:fc:20:f4:
3e:81:1f:dd:bb:1a:17:5d:2c:95:37:90:fa:1d:18:
b2:88:6f:aa:b0:70:79:de:07:8e:f2:6b:9c:5a:97:
8c:4c:1a:ab:b1:4a:fd:96:4f:11:37:d0:85:4a:4a:
65:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7E:95:60:24:FD:EE:70:7C:AB:51:E1:6D:5E:55:62:19:E1:D9:9C
X509v3 Authority Key Identifier:
keyid:3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:fc:cd:11:e3:35:d0:36:59:0f:b1:ec:5f:9a:2a:44:b1:13:
07:68:83:43:a3:35:e3:9b:bb:12:f5:d1:52:94:07:b0:97:75:
97:c6:01:2f:8a:e0:ce:0c:ec:7b:ca:9e:5b:1a:f8:2d:b2:c6:
5d:7c:eb:a7:f6:e5:32:f2:fe:54:7a:b2:e0:f9:a1:19:95:f8:
56:b5:08:e8:8a:cf:1b:c0:65:c0:58:97:1c:c7:21:74:b3:c5:
3e:e8:ff:76:18:81:eb:c8:ae:17:6c:bf:a5:4e:f2:db:af:09:
7d:ee:63:8b:38:b4:a4:69:ee:7e:09:b8:07:32:16:76:55:6e:
e3:aa:15:ea:e3:56:35:d2:04:8a:83:5d:1f:bd:0e:39:6f:65:
d5:01:f4:d7:64:c5:af:3c:96:25:15:8f:ae:7b:bf:ee:7d:d4:
c4:52:b9:14:58:25:c1:01:3a:76:d4:17:13:2e:6a:2d:d5:79:
08:c6:bd:2c:76:9d:ab:c6:d9:69:e4:48:85:c0:4b:fd:12:d0:
f9:e5:6a:97:9c:58:d9:c2:69:fb:7c:4d:6f:fd:a2:83:36:a3:
f8:e9:12:c3:24:d4:e6:0e:6d:a2:e6:97:1c:8c:28:ff:ae:da:
82:84:30:65:0e:c1:45:c8:c5:41:99:b3:06:91:47:b5:4a:af:
28:f9:ff:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:19 2026 by rpki-client