Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
File: PxP6dbPOiUzEZAQaipX4WffBxNI.mft (raw, json)
Hash identifier: EBFFWV0HL5rN68Wj/1kr6aEWnCEIaUu6EA39GyLaxOg=
Subject key identifier: 60:10:8E:24:55:62:8E:AF:CC:4B:2E:B6:EF:C8:E4:F8:CA:7F:0D:EE
Authority key identifier: 3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2
Certificate issuer: /CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2
Certificate serial: 019D371B6F13859B9027BDDE8BD17543BEBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
Manifest number: 0413
Signing time: Sun 29 Mar 2026 01:00:37 +0000
Manifest this update: Sun 29 Mar 2026 01:00:37 +0000
Manifest next update: Mon 30 Mar 2026 01:00:37 +0000
Files and hashes: 1: PxP6dbPOiUzEZAQaipX4WffBxNI.crl (hash: 6wvudzJ+LbZOH3aa894NVDI/nKG2z1Lqm/V8vM3S7hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:6f:13:85:9b:90:27:bd:de:8b:d1:75:43:be:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2
Validity
Not Before: Mar 29 01:00:37 2026 GMT
Not After : Mar 30 01:00:37 2026 GMT
Subject: CN=60108e2455628eafcc4b2eb6efc8e4f8ca7f0dee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7d:5a:fc:ef:ea:75:43:cd:db:48:52:7e:52:
03:34:0d:e4:6a:97:a7:8e:04:6c:97:eb:a9:0d:17:
8f:10:fe:b3:a4:1a:bb:05:bc:80:fc:8b:dd:c1:18:
18:21:7a:81:07:5f:66:9e:6b:fe:ea:fc:1d:a9:f4:
9e:91:d8:cf:d7:b3:9f:fc:67:c1:61:15:15:a8:8f:
06:60:19:01:4c:10:c8:5f:a2:48:9f:22:77:16:7f:
1c:9d:2a:f5:c1:be:bb:38:bc:e2:61:4a:e7:3e:ed:
74:53:24:6b:7d:53:d0:ba:37:64:ec:4f:bb:a6:23:
d2:58:95:d1:7d:44:f2:8a:9e:5e:db:43:84:d3:e2:
71:5d:73:fa:eb:e3:36:f9:8d:f3:d7:a3:7e:43:92:
f2:ed:c0:e0:84:2e:b0:bc:dc:43:7f:3e:cb:7a:9e:
c9:86:85:15:06:00:90:8e:a5:01:66:ae:95:c0:7b:
c4:b1:a6:3a:30:a9:b8:31:99:a2:f6:6f:02:6f:fd:
d0:67:af:69:a8:c5:ba:eb:93:0b:18:d0:e9:67:01:
00:f7:3b:68:c9:c8:86:5b:0e:06:e3:ee:53:60:63:
13:da:a3:49:d3:f7:d7:aa:e0:1e:03:25:f7:3f:21:
63:76:c8:49:98:49:d4:f8:43:61:f5:41:e0:48:fc:
4a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:10:8E:24:55:62:8E:AF:CC:4B:2E:B6:EF:C8:E4:F8:CA:7F:0D:EE
X509v3 Authority Key Identifier:
keyid:3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:7d:1f:03:dd:25:be:04:e5:59:f0:3d:6c:da:f0:91:88:51:
c7:92:02:77:42:ac:19:49:1c:62:b6:cc:84:a0:61:8b:3c:aa:
6a:3b:65:06:e4:c4:98:2a:a3:3d:3a:dd:5a:bb:d3:2c:43:20:
00:fe:18:fb:23:6c:98:be:ac:f9:ed:56:b9:67:f5:04:d0:e6:
27:9f:43:78:4a:fd:0a:32:66:31:dc:64:5b:85:8f:25:99:ce:
a4:78:c3:12:22:a6:3d:16:1f:bb:f3:3d:46:9f:bd:47:32:f7:
80:f3:04:ad:8b:ee:ff:0b:2c:d9:9d:7c:74:a0:67:6c:2e:b7:
29:07:9d:7a:70:a5:74:4f:9c:7f:b2:35:14:c1:47:bc:2a:fb:
88:5d:62:24:2b:e6:d3:99:f9:30:1a:7b:df:81:dd:8f:2e:5e:
83:d6:e8:e6:4f:6c:97:c9:25:0a:35:88:18:8b:9e:8a:76:4d:
25:88:e6:2f:c2:ec:12:38:23:de:dc:f7:3c:d1:29:36:c9:a5:
6a:79:36:af:a0:22:6a:5e:20:20:8e:e8:75:d3:f3:38:12:2e:
0c:9a:fe:ec:28:9e:45:61:94:30:b1:78:ad:b5:2c:78:2f:a6:
90:f8:78:fa:f0:4e:74:bb:03:3d:96:c1:73:97:41:b6:4a:b3:
3c:c4:a5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:16 2026 by rpki-client