Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: qvAh393Y+X2ncVwjjXjzA05lx3iLVIBE954THHhp9Gc=
Subject key identifier: C1:30:8E:06:D0:BD:67:E1:8D:21:73:25:2E:3D:56:66:00:5A:83:C3
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 019CE4B58B144FA616A02E9B4DAFF558AA46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 0669
Signing time: Fri 13 Mar 2026 01:00:28 +0000
Manifest this update: Fri 13 Mar 2026 01:00:28 +0000
Manifest next update: Sat 14 Mar 2026 01:00:28 +0000
Files and hashes: 1: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: KU5bYO0+RD7MuGeyy52hS3h1VG012hWwjWushW2V898=)
2: ymE5Pc8e6QWHOxlrawdscg3hba0.roa (hash: FR/m/K23gzt9WTvqKJ25/MJlgHD/0x10UFRx1gKHX48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:8b:14:4f:a6:16:a0:2e:9b:4d:af:f5:58:aa:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Mar 13 01:00:28 2026 GMT
Not After : Mar 14 01:00:28 2026 GMT
Subject: CN=c1308e06d0bd67e18d2173252e3d5666005a83c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7a:f8:65:46:c6:39:55:e2:84:a0:60:a6:40:
b0:6f:ff:05:d0:7c:35:07:8e:6d:81:7b:e2:5f:e8:
5a:9e:b9:e6:c4:d6:b9:a7:68:d4:35:2f:ce:56:8c:
0c:69:80:59:8f:ff:b9:b8:61:75:8a:04:8b:a3:35:
64:d5:55:94:37:df:1a:bb:13:19:2c:73:12:1e:d8:
e3:0c:b8:f5:5c:30:e3:36:60:11:08:8f:8a:8c:4e:
89:e1:83:5e:ab:6f:f9:ca:0f:70:b3:9f:7f:f6:3e:
26:77:d6:1c:30:f1:77:38:72:88:d2:c5:4d:f7:69:
2e:ba:88:7c:e9:57:b1:c4:b7:2f:3d:62:f9:f9:12:
c6:d8:f8:bc:b7:c8:6d:c9:7c:5b:37:14:dc:74:8b:
9c:49:d8:01:d7:9e:2e:16:dd:ff:4e:a0:2a:6e:15:
ea:84:c2:80:20:e5:cd:1b:02:a5:f8:ed:ea:da:5c:
5e:ae:d9:c9:09:13:02:a4:11:31:d6:2f:89:e1:85:
0e:c3:7e:6d:15:08:23:75:74:62:ce:49:e3:6d:40:
93:fa:e8:ff:80:31:15:a7:2b:f0:29:76:3b:de:20:
25:92:7c:6f:37:a4:69:7e:3a:c0:ab:01:a8:69:68:
16:c5:c8:5f:73:49:50:0e:b0:cf:a4:e1:78:96:96:
c7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:30:8E:06:D0:BD:67:E1:8D:21:73:25:2E:3D:56:66:00:5A:83:C3
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:05:52:47:89:66:c3:de:59:c9:ce:34:fd:0c:32:53:0e:98:
e8:40:ab:af:46:a1:92:86:4e:e9:8e:1e:6a:b4:d8:89:cc:c7:
e0:b7:ba:a5:4f:e8:37:ab:ea:a8:9b:fe:72:da:5c:06:b3:43:
e4:97:73:f1:67:a3:ac:d7:c1:20:20:0d:7b:f6:f0:36:71:76:
e4:43:c2:93:42:1a:f6:94:99:f8:6d:00:04:56:59:40:19:45:
07:62:98:8f:33:ba:82:4e:f8:ec:c7:d9:e7:34:41:98:d3:7a:
ed:29:e4:05:40:fb:05:19:ba:00:25:11:b1:6f:31:37:88:13:
c6:f9:06:0f:f6:85:c3:ff:89:aa:d8:2d:34:6c:91:6d:87:a3:
6f:95:05:01:41:e3:a3:fa:37:a4:17:16:23:4a:2d:e2:04:a1:
65:de:50:01:84:34:66:5b:a2:e2:6b:24:46:b5:08:89:cd:1e:
53:48:3a:59:11:eb:88:c0:0b:d2:fb:c0:07:fc:32:f9:d8:d8:
d1:58:a8:50:bd:ea:12:27:9f:e7:25:c7:10:b9:89:03:e8:64:
65:70:1e:1a:e7:70:58:3f:c8:d8:40:1c:98:29:ad:df:a7:4f:
87:e2:a9:1f:a1:30:c8:83:90:ec:43:32:15:be:89:fb:db:6d:
8c:aa:50:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:51:46 2026 by rpki-client