Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json)
Hash identifier: fStobCEjmyW/kfHy/UtATP0uptBPsOysstUcnix3Krg=
Subject key identifier: 82:A8:EC:3D:3B:FA:74:14:B8:3C:B3:1D:AB:8D:BD:81:71:C8:E6:F8
Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Certificate serial: 019D3865D9C5F03A2A397A405155A97772B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: 9_KMCCpdv__dNX3XCcGQGoY_t7E.roa (hash: 4J310WOIoaFhdk7Rws5ylL5JHddp0w2bpHJlXbfEDWM=)
2: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: cg84egkAgBVxQHoW0e6adOIl6TskLSTZttEolBGJcbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:d9:c5:f0:3a:2a:39:7a:40:51:55:a9:77:72:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=82a8ec3d3bfa7414b83cb31dab8dbd8171c8e6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:2a:40:32:10:c6:14:30:a8:3f:e8:39:72:
58:17:1a:38:32:c1:58:28:0b:c5:b0:d3:ce:d6:04:
0d:9f:e5:aa:9b:86:9c:23:70:fa:5d:cb:76:93:f9:
fd:2e:61:58:a3:ee:a2:d3:36:be:7d:00:40:5b:43:
77:16:1d:07:61:8f:e0:52:be:d1:85:b9:b8:2d:d0:
32:d4:0d:82:a1:b2:fa:77:22:6a:6b:8c:14:12:24:
c8:9b:ac:b1:71:18:73:dc:09:76:70:07:6a:84:be:
b9:9f:a4:15:4f:b5:72:00:a4:1b:e0:ea:13:e3:41:
d9:9f:86:4a:e6:cd:36:d0:f0:8e:e1:68:85:3b:58:
51:82:3f:e8:8b:8c:4a:ba:f2:b6:ae:65:22:e7:ff:
4b:fd:22:16:50:80:d2:c3:7c:72:f6:95:be:e8:9f:
39:2b:9c:28:75:2e:c9:4b:32:b4:f9:1f:5a:b9:6c:
0a:c9:b8:a1:cd:b2:12:51:23:01:dd:19:c5:6f:99:
d3:d2:ef:78:82:15:98:5d:89:ac:32:31:2f:85:a7:
e2:26:1e:2d:e8:b2:de:2d:b0:ca:95:8a:63:c0:64:
2d:d8:94:51:21:57:7e:3c:5d:4a:16:c2:ba:03:25:
71:59:74:5a:35:fa:73:97:df:c6:5a:9c:29:cd:af:
b8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A8:EC:3D:3B:FA:74:14:B8:3C:B3:1D:AB:8D:BD:81:71:C8:E6:F8
X509v3 Authority Key Identifier:
keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:8d:c4:03:54:16:f3:85:83:4c:4f:78:4f:ba:03:b8:68:31:
36:89:b9:75:33:93:e1:bb:91:28:64:db:e1:59:7a:9c:fa:5b:
2d:61:9d:da:c7:ac:e9:58:75:e3:b1:b4:00:67:90:98:45:8b:
39:72:d5:9f:8b:4e:6b:09:a5:dc:9f:84:7f:70:6f:76:46:a8:
8a:76:7e:4b:3e:b1:46:99:b6:29:3d:a3:75:30:af:09:59:46:
a6:1f:75:36:88:c8:3d:bc:f7:4a:d2:77:c9:09:9d:d6:76:b5:
bd:1a:f6:84:7c:18:1b:48:c0:40:9a:75:19:ad:f4:49:ce:b1:
45:5e:38:f2:8f:3e:89:1a:cc:ae:e4:38:02:28:f1:ed:01:6d:
f4:b8:96:4e:39:39:d8:1f:6c:d3:3c:88:c6:20:a8:99:da:56:
54:e8:6d:6f:cf:c4:2d:2e:37:66:4a:67:a4:35:a8:d6:15:3e:
26:11:70:de:5c:18:b0:5a:2e:2d:2d:4c:4c:fe:5b:ad:44:f0:
90:00:9f:61:4e:3e:fb:36:0e:c6:09:f1:50:30:ed:06:46:86:
e9:2e:4d:b5:e9:6d:03:e9:1d:1d:36:92:13:e7:4d:37:b4:aa:
18:41:5d:e3:50:ac:31:4f:ed:8b:4b:6e:7c:5d:a1:28:ae:cc:
33:b7:08:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:09 2026 by rpki-client