Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json)
Hash identifier: zdbJjOHYh5ARpORNIOExB6ElyefXu8onHF39q2s1Kuw=
Subject key identifier: 6C:15:A4:8A:5D:B2:98:5D:DC:96:F3:11:A5:E7:1C:BC:0A:73:80:F8
Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Certificate serial: 019D382E44E22FC43AF2A06FC4D2FAD64D6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
Manifest number: 073C
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: XNCsxfU+1325esd2nA+bF1oNZl82fSkvNhArikZ+la4=)
2: kq527hgVr7ukC92yfbPMdR4xku4.asa (hash: LvIhj4F/rl2CGQnbgEZFLJhN4x8R+m0+ZkR3noVX8AQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:44:e2:2f:c4:3a:f2:a0:6f:c4:d2:fa:d6:4d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=6c15a48a5db2985ddc96f311a5e71cbc0a7380f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:71:31:9a:a7:e6:a0:05:d0:16:86:be:cf:b7:
0f:29:94:0d:ce:e4:41:21:36:2f:cb:85:25:95:ba:
ac:0b:7b:d3:c8:df:d5:b0:37:dc:0f:46:85:eb:a1:
ba:4e:7d:89:2d:25:d7:de:ab:16:c9:e5:2f:18:83:
b7:24:da:73:ad:a0:b8:34:b3:f8:d9:34:f3:90:a4:
d6:63:61:ab:ab:6f:dd:2e:3a:97:18:75:13:84:fb:
86:f2:b9:ba:f9:ff:46:29:56:54:03:99:49:19:c3:
d8:f6:ac:d3:f5:d7:e6:a1:6c:7c:ca:31:0a:b9:67:
5f:90:21:7c:1a:fe:2c:2b:d7:50:2a:08:e1:2a:0f:
ef:ce:2c:d5:11:87:ec:20:ec:7d:12:44:54:69:fd:
c8:b3:bd:3a:e2:a9:a2:a5:e7:b1:f7:6e:40:90:b4:
b9:bf:fd:c0:ea:5d:f9:e1:4a:ac:b0:d2:94:aa:6d:
33:ba:c6:7e:11:b3:16:d7:cf:99:28:8b:b1:1b:5a:
3e:5e:ef:3f:27:15:53:d6:23:18:01:5e:e6:64:bf:
54:56:e7:df:c8:38:a2:68:6b:ff:c4:33:c8:d9:7f:
ec:a0:4c:d6:ec:62:6b:d8:14:ea:d6:5d:9c:49:f2:
eb:4d:26:4a:a4:28:59:e8:cf:57:9f:d2:21:76:ad:
f3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:15:A4:8A:5D:B2:98:5D:DC:96:F3:11:A5:E7:1C:BC:0A:73:80:F8
X509v3 Authority Key Identifier:
keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:7e:7e:01:df:ed:72:d6:1a:3e:c7:ba:e7:ba:0c:08:eb:40:
50:ae:06:56:55:86:46:6c:4b:dc:09:ac:24:0e:6f:99:bf:eb:
da:31:eb:17:2e:87:0d:e8:c9:97:19:8b:3d:92:39:54:e2:40:
6d:b5:2e:03:35:29:16:0e:bc:3c:4c:7a:6f:c9:76:06:46:e7:
a4:d1:e3:0e:e1:cd:a5:af:29:60:de:73:6c:f1:87:d3:3e:c5:
75:6a:52:ab:1c:30:8a:52:b6:af:5a:34:6b:21:db:4b:e2:e9:
39:66:29:a4:73:8c:17:76:81:a6:bb:59:bb:20:22:bb:86:81:
19:93:ed:b7:3a:24:24:42:c7:34:71:ba:bd:23:19:91:d7:04:
09:27:49:ca:62:45:be:9b:56:80:a5:b7:ad:24:86:04:77:c8:
0a:7a:2e:90:e2:95:03:85:b7:90:d3:31:b4:24:9a:e2:10:6d:
6e:7e:3c:46:25:a6:cc:23:58:b7:56:8d:77:5d:42:65:62:40:
32:88:1c:b7:da:7f:4f:20:46:25:7d:5b:54:8b:62:f2:cd:2a:
71:ca:1e:b8:e8:4b:0e:5e:36:44:3d:07:90:f4:37:5a:ca:1a:
e6:48:3c:d7:10:0d:d1:97:b8:16:84:a0:46:c8:75:d9:74:cc:
8c:3f:85:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:31 2026 by rpki-client