Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: lMDMLk3hyicPKH9rH/fiHaNE+qF5MkTtxLavkPTspPI=
Subject key identifier: 3C:31:17:A5:5B:39:A1:09:DA:09:78:8A:5D:2D:C8:D2:32:C3:6C:52
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019D37F742843944711AE981F6B8C603D0DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 15B2
Signing time: Sun 29 Mar 2026 05:00:44 +0000
Manifest this update: Sun 29 Mar 2026 05:00:44 +0000
Manifest next update: Mon 30 Mar 2026 05:00:44 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: ehGcZMyTSRDgMNuqNAKcCmkxSjvwfqqtOikIBtCm0ic=)
2: vTL1N_H41HNiNtowQy-zm9gl9aY.roa (hash: JtmrUvutZdfTDVqTi1wCPoFHIXdZTWrvXh0P19O7xN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:42:84:39:44:71:1a:e9:81:f6:b8:c6:03:d0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Mar 29 05:00:44 2026 GMT
Not After : Mar 30 05:00:44 2026 GMT
Subject: CN=3c3117a55b39a109da09788a5d2dc8d232c36c52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:be:7a:dc:64:b3:55:0c:d8:15:03:64:54:82:
b4:b2:4a:54:b7:37:61:d1:61:5e:0f:6c:a4:e0:5c:
14:48:ae:89:84:d4:86:fc:a0:8a:8a:1d:11:38:b1:
d7:df:3b:47:e4:26:fc:7f:e6:b7:d5:96:69:f8:a9:
b0:e7:f6:c3:46:fe:96:f3:f9:6b:8f:35:af:6b:cc:
42:f2:9e:dc:35:cf:e9:92:5e:30:b8:25:a7:62:0e:
8e:6a:38:d8:be:af:e7:8f:17:90:94:77:d7:07:93:
78:52:94:d4:09:92:48:b0:62:28:c7:a6:f1:f2:7f:
13:97:03:93:52:34:69:31:b5:7e:8d:64:f7:68:c7:
7e:06:7b:5d:6b:4e:b3:77:14:ee:7b:86:95:a5:8d:
3e:09:8c:c4:5f:1f:dc:85:64:40:7b:5d:04:4f:f5:
2d:cd:27:00:23:75:5a:9e:3d:97:dc:1c:c6:1b:4c:
5f:4d:3d:b6:ec:42:71:e9:05:62:12:c3:15:19:c1:
3a:24:0a:5f:6f:71:e4:11:cf:ef:03:5e:af:a4:b3:
05:6c:bf:bf:ef:a6:d4:db:d2:dc:1c:ac:bf:65:98:
ab:2b:d9:a1:9a:92:65:f0:a6:f2:aa:34:be:2e:8c:
5a:df:18:3c:66:dd:4a:a6:54:04:c3:e6:51:8b:8c:
eb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:31:17:A5:5B:39:A1:09:DA:09:78:8A:5D:2D:C8:D2:32:C3:6C:52
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e0:1c:cd:4d:f5:17:54:9e:e5:55:3b:99:73:0c:c1:86:b5:
9e:c9:43:10:e8:16:b5:8b:cc:b6:88:d4:0e:f9:32:ce:99:fc:
d5:1c:44:ca:1e:78:2f:0a:6e:7e:bf:f4:db:b8:3a:95:b5:7d:
55:0f:19:c1:13:ee:c1:ec:74:fc:c4:33:cf:ec:ec:de:75:08:
6d:49:55:13:19:0c:e9:3d:0e:3b:43:6a:2a:69:ec:04:dc:62:
d9:8e:f0:db:39:46:dd:f6:10:bf:a5:5e:5a:21:23:7d:4f:b8:
d1:3b:4e:43:aa:1c:54:9b:72:b2:38:c8:c2:46:c4:bf:22:17:
c8:22:1c:f0:d7:91:90:b0:ba:af:75:20:f2:a9:58:76:ef:12:
f4:a3:5f:b3:c8:2a:08:19:4a:0e:fb:0f:e1:78:b9:d4:a7:24:
98:99:4d:a4:8f:07:99:58:5d:2e:64:12:0f:f9:6a:63:16:3d:
fe:e7:61:b2:29:7f:0e:66:57:96:df:fe:3e:3a:37:9a:f7:61:
8b:63:b6:da:14:f2:0f:26:cb:d3:47:64:95:ec:22:bf:12:3d:
36:74:9d:91:ff:71:4c:8d:4a:61:dc:71:5c:00:09:08:ad:07:
8b:c3:79:4f:09:26:a1:a1:59:39:b1:8b:42:ef:a2:eb:a9:f3:
3c:77:01:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:48 2026 by rpki-client