Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: yypRVTbE2JhCFn4zF6gFecQo+DBWLgkb1Gq7JJjiBXM=
Subject key identifier: 1D:4A:54:D9:E4:24:AD:B6:30:6A:D5:A9:62:7D:58:A0:8C:94:E3:24
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019E30E0ECA9D954024B950F5265DF3E46B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0BD7
Signing time: Sat 16 May 2026 13:01:47 +0000
Manifest this update: Sat 16 May 2026 13:01:47 +0000
Manifest next update: Sun 17 May 2026 13:01:47 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: xxJxZD/AFgh5e9afMx4IdRpUT6qOS4DeAlxftRqP9c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:ec:a9:d9:54:02:4b:95:0f:52:65:df:3e:46:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: May 16 13:01:47 2026 GMT
Not After : May 17 13:01:47 2026 GMT
Subject: CN=1d4a54d9e424adb6306ad5a9627d58a08c94e324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:42:01:d7:ca:6b:10:d6:8a:ad:20:c7:e0:6c:
14:fc:bd:02:43:c3:53:9d:8c:b9:7f:0b:e3:98:7f:
a4:89:53:b9:50:48:17:bf:0c:ac:d8:67:ca:7e:99:
88:7e:97:38:3d:c3:19:a4:b1:d1:10:eb:45:14:08:
d8:2e:fa:d2:49:79:01:05:13:7e:11:ea:93:4f:9b:
75:51:d3:b3:16:60:b5:36:7f:c2:b6:c1:19:d4:2a:
f1:76:b3:7f:41:fd:ee:38:ae:fb:9b:e0:ae:69:74:
11:33:19:ef:83:b4:48:06:03:80:4c:0d:17:55:70:
7b:9a:08:b6:12:97:f5:74:2c:f7:45:26:ec:41:13:
1e:bf:a9:6b:ae:7d:3b:3b:01:f7:02:ee:46:22:f8:
74:8d:60:d3:00:0e:80:41:c0:0b:6a:a8:1b:5e:91:
92:2c:ce:83:cf:19:dd:cd:e8:aa:3c:b2:96:93:85:
33:3a:73:50:95:bb:7e:e2:96:16:3e:78:98:ae:d1:
fe:45:c1:67:17:a6:25:d0:d2:b2:74:b3:b4:58:9d:
02:55:02:0b:fd:8f:b7:83:ec:14:b9:56:d9:11:f4:
c7:ab:98:c7:a2:8b:f0:a5:c1:07:e6:13:e1:fe:60:
72:d7:73:7f:d3:e8:0e:96:64:31:8b:42:ef:fc:44:
88:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4A:54:D9:E4:24:AD:B6:30:6A:D5:A9:62:7D:58:A0:8C:94:E3:24
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:09:6b:1b:a3:c5:60:e9:4c:24:13:b9:e2:f6:81:4f:89:29:
3f:4b:37:32:d2:74:c3:78:ab:35:94:16:dc:00:46:b7:8d:c0:
1f:3f:6c:2b:16:24:21:ac:66:0d:79:2b:27:c7:34:83:db:9d:
56:8e:f3:f1:71:55:89:08:5b:83:f1:a1:53:94:38:65:55:fe:
4a:fa:1e:76:31:2d:84:6c:89:1d:d1:24:8a:53:7b:67:22:89:
39:73:48:7c:44:ac:0d:c7:cc:2a:d1:e3:e8:2d:be:a5:f5:7f:
6e:31:38:d9:c3:a7:da:a0:0d:c9:41:d7:8d:39:3b:f3:28:6a:
14:70:3d:99:da:bc:4f:f9:5b:f2:72:b4:da:c7:de:0c:de:b0:
3d:8e:50:c1:93:58:87:dc:84:68:35:6a:df:33:22:8a:39:2b:
f8:b3:cd:f3:b2:89:e2:06:5b:39:65:7d:d7:b8:ec:a0:3f:d4:
63:01:d6:25:35:a1:de:14:de:bf:68:d3:15:b0:6b:88:79:b3:
e4:0d:64:55:48:bd:5b:3f:f6:c4:06:ad:de:19:10:fb:8f:9b:
92:c6:26:53:0a:ca:db:cf:87:28:0d:79:98:04:86:27:b0:1e:
40:8b:3a:60:ff:ab:06:4b:13:12:12:b4:4e:a1:64:06:b1:10:
58:20:6d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:02:29 2026 by rpki-client