Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: xzA8naBpbrOgyfJ5BWwN6DBuvWWUkg8Dgt94vs3Tks0=
Subject key identifier: 5B:31:AC:6C:33:43:99:5E:A7:4B:95:14:CC:87:37:7F:9A:B8:6A:7C
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019D39AE77BB7ABB9C6024DF15B98E14A503
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0B57
Signing time: Sun 29 Mar 2026 13:00:28 +0000
Manifest this update: Sun 29 Mar 2026 13:00:28 +0000
Manifest next update: Mon 30 Mar 2026 13:00:28 +0000
Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: /xwgX4lwuPY0oUcFANKYmPETUeEx71I0UAWvWd0Mfng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:77:bb:7a:bb:9c:60:24:df:15:b9:8e:14:a5:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Mar 29 13:00:28 2026 GMT
Not After : Mar 30 13:00:28 2026 GMT
Subject: CN=5b31ac6c3343995ea74b9514cc87377f9ab86a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d9:8e:f9:93:3d:2b:f5:a9:e0:9a:06:82:88:
e3:17:50:80:8c:fa:80:cd:b4:cb:85:be:da:06:d6:
27:79:33:6d:c3:a7:55:51:58:89:5b:3b:12:9b:8d:
90:2c:f6:5a:23:6a:0a:c3:b9:86:f2:5b:8b:e1:db:
dd:e9:1b:b2:8e:6b:ac:d0:c9:9c:4a:ce:25:c1:47:
9c:f5:68:02:fa:98:f2:24:08:6c:8c:b4:27:7a:30:
b4:e8:57:e8:8e:d0:e9:8e:77:40:16:5a:dd:b4:a7:
f1:30:a9:46:5d:b1:61:8c:a8:ba:44:38:ec:a8:fe:
8d:88:a4:75:43:89:3d:37:e0:d9:0c:01:a5:14:59:
31:5b:a4:59:db:b5:67:0f:e8:57:53:c0:9c:ee:6e:
1b:1c:6c:af:90:bc:08:c2:79:99:1a:a0:ea:85:53:
a5:df:d1:dd:bb:6d:4a:98:64:96:50:5a:53:d1:ea:
23:bf:81:28:05:16:c3:0a:a0:2e:de:4d:e3:fd:cb:
13:24:29:7b:23:83:18:e2:ec:03:e3:4c:01:ce:0f:
98:57:81:68:44:67:e9:62:6b:98:6e:29:71:20:23:
70:74:b1:38:2d:0b:47:ee:27:a4:7a:fa:14:9b:9e:
39:ef:e0:ec:c6:d0:0f:6a:fd:85:33:57:e3:32:dd:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:31:AC:6C:33:43:99:5E:A7:4B:95:14:CC:87:37:7F:9A:B8:6A:7C
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:fe:6e:1c:36:a2:7d:05:10:0c:b1:71:9a:bd:40:d2:c0:43:
79:e0:12:43:ec:2a:08:0e:aa:5c:09:d2:64:7f:ad:83:f3:61:
c9:84:7f:7b:a4:a1:fa:71:e7:4b:fe:6e:af:9a:0a:1e:22:19:
6e:61:ee:67:9c:72:8d:99:ca:5c:dc:0c:75:b2:35:db:ab:94:
01:da:e5:36:4d:af:4e:44:c4:5a:89:37:80:eb:48:45:1a:e9:
5a:59:85:39:ca:d1:c8:06:13:08:c7:0b:de:64:6d:8a:10:86:
d7:fb:0c:c3:0f:60:94:18:c4:8c:30:53:01:06:90:3b:f5:87:
75:36:1c:3a:ca:46:77:3c:2d:0e:06:3f:cf:38:d9:f6:07:c4:
03:c9:8b:a4:7c:94:ae:80:fa:0e:cf:8a:ef:34:49:96:02:ad:
04:30:53:bd:0f:04:5e:8b:79:40:8e:77:4d:83:6c:29:86:ef:
c3:66:58:4e:1f:cc:db:97:e9:77:4b:a1:ae:fb:65:88:85:dd:
ab:2b:63:07:ea:15:dc:56:7d:83:4d:9c:76:af:3d:77:4a:56:
d5:57:4a:59:63:00:a1:6c:68:ea:2d:6d:89:0b:fc:a3:75:1d:
2c:65:ce:f5:f6:c5:9f:1a:b3:cf:a5:9f:2d:a7:91:85:05:63:
be:cc:ce:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:31:49 2026 by rpki-client