Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: WJQgmLlS20fdejQ6dnP2VUH1e0YH3WY2Q2Lu5e14SPU=
Subject key identifier: F5:2E:B4:92:0D:A0:51:B8:20:08:A2:53:6C:30:27:30:B1:92:F3:DF
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 019DD05099255F3B1FFCC0807916D665EE3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 06E3
Signing time: Mon 27 Apr 2026 19:00:36 +0000
Manifest this update: Mon 27 Apr 2026 19:00:36 +0000
Manifest next update: Tue 28 Apr 2026 19:00:36 +0000
Files and hashes: 1: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: y58gbeMn8vpg6kWr05nNvN04nEn7oLfjEs0FsK0lkgk=)
2: ymE5Pc8e6QWHOxlrawdscg3hba0.roa (hash: FR/m/K23gzt9WTvqKJ25/MJlgHD/0x10UFRx1gKHX48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:50:99:25:5f:3b:1f:fc:c0:80:79:16:d6:65:ee:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Apr 27 19:00:36 2026 GMT
Not After : Apr 28 19:00:36 2026 GMT
Subject: CN=f52eb4920da051b82008a2536c302730b192f3df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ab:83:ed:5c:c1:69:ef:5d:a4:29:66:0b:d3:
49:13:bd:ea:39:da:d9:74:5a:32:19:9c:b6:52:35:
38:6e:6d:73:a6:f1:a8:38:fe:cc:4a:81:d7:d1:82:
cd:02:c5:c8:e5:bc:f7:ac:11:40:d4:82:45:62:a9:
29:36:ab:b9:f8:55:f3:b4:8c:2c:93:cd:44:b5:8d:
e9:0b:4f:82:ca:e5:b4:3c:e5:34:65:a6:8e:d5:9a:
91:fc:9b:3e:0c:73:0a:d6:43:2e:9c:32:b7:7e:e1:
5c:98:5b:84:4e:0b:fb:c3:5f:b6:30:84:5f:8b:4e:
b4:af:04:1c:77:ca:74:b8:4c:02:e8:70:44:9b:0a:
9b:cd:13:53:d6:b2:02:35:ce:b5:69:88:13:d1:3a:
18:54:99:62:75:0e:55:d1:d7:5a:58:3d:d6:00:28:
94:36:2a:cc:cb:54:47:0c:62:ca:9f:53:49:50:c6:
87:60:6b:c4:8f:a1:c0:aa:86:10:26:b8:77:12:93:
4e:00:34:dc:01:26:7d:03:99:d2:c6:e7:79:7a:9d:
3b:29:32:69:d9:af:03:12:1f:16:66:8a:04:ed:ae:
4a:fe:4d:71:36:8f:f3:21:81:6a:63:49:ba:8c:da:
59:1e:02:f4:6e:9c:e8:cb:53:1b:98:91:da:31:e6:
5b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2E:B4:92:0D:A0:51:B8:20:08:A2:53:6C:30:27:30:B1:92:F3:DF
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:fd:3a:37:44:e4:40:e6:ea:3e:91:b2:27:51:29:49:e1:1c:
c7:f8:5c:1f:c4:d6:81:70:4d:dc:9d:c3:b3:02:4e:9f:24:cd:
c1:0a:55:69:2a:28:7f:26:94:d8:df:c5:e6:fd:93:bd:a2:dd:
13:c9:14:9c:ef:49:ab:ee:e7:f6:9e:04:51:19:9d:45:9f:fd:
5d:6c:9d:29:f4:ac:81:52:e2:ca:e1:4b:38:48:e2:8a:51:3a:
fe:8b:30:d5:c2:c7:3d:60:db:18:df:3b:6a:e5:9f:90:2c:66:
2e:80:b0:fa:5e:20:46:fc:80:7d:a3:ba:3c:44:fa:9e:03:d9:
d9:b7:d8:39:ba:61:8c:f8:3b:38:ca:b1:23:82:fc:e8:05:66:
53:ad:a4:07:c9:6d:bb:86:bd:0f:c6:27:01:67:11:25:d6:be:
d1:f6:0a:31:fc:d0:46:fb:35:c4:10:ca:e5:0e:3c:86:a5:84:
88:46:3d:25:44:ef:fd:84:6b:5d:0b:93:bc:8b:25:93:78:ef:
b3:1f:27:74:28:ad:3c:f3:dd:b6:7a:f4:32:e2:80:8b:a0:b8:
07:e7:cf:e3:c1:85:a7:af:a8:f2:57:39:c6:aa:a1:0b:17:ed:
ac:35:80:eb:60:33:3b:d7:62:7f:17:a7:6d:c9:c9:a5:a7:d8:
fe:f3:e8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 23:26:25 2026 by rpki-client