Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft
File: PbbHfudmfXoeivbnKly0P5_DSA4.mft (raw, json)
Hash identifier: qy8jiOUD66DEnPgTu5+XW/f2rhQ0qtJf1GOOb7xvIv0=
Subject key identifier: 03:46:BD:2E:14:52:5F:E2:4B:AF:10:25:D3:15:3A:E2:12:10:AF:39
Authority key identifier: 3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E
Certificate issuer: /CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e
Certificate serial: 019D37F6F270D63A01FC42FB1145D51FE01F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft
Manifest number: 02F9
Signing time: Sun 29 Mar 2026 05:00:23 +0000
Manifest this update: Sun 29 Mar 2026 05:00:23 +0000
Manifest next update: Mon 30 Mar 2026 05:00:23 +0000
Files and hashes: 1: PbbHfudmfXoeivbnKly0P5_DSA4.crl (hash: eJ1XGrVLtACQXh1RqPB7Q+qfdlPK3paQr5J2ufQywLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:f2:70:d6:3a:01:fc:42:fb:11:45:d5:1f:e0:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e
Validity
Not Before: Mar 29 05:00:23 2026 GMT
Not After : Mar 30 05:00:23 2026 GMT
Subject: CN=0346bd2e14525fe24baf1025d3153ae21210af39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:34:c7:77:d4:a9:3c:60:a7:48:1f:ff:c8:
24:6e:03:38:39:57:42:9c:c1:e6:6d:f0:ae:2d:fd:
06:1a:48:f2:54:06:0c:94:7e:0d:bc:1f:5b:2d:98:
b5:2f:54:09:c2:c8:ad:6c:3c:9a:e0:e3:fd:cb:36:
32:b4:36:6c:71:30:9f:51:71:fe:97:ee:9f:86:5d:
f6:86:bc:27:98:05:91:45:d4:44:a7:39:aa:03:ac:
81:9e:d6:83:ec:2d:d2:6d:35:13:a9:3b:65:a8:86:
fd:01:b9:7a:dd:1c:b1:50:f5:9e:96:d0:9a:12:fb:
4d:aa:a9:44:ca:51:f8:92:9c:b5:d8:34:79:9d:e9:
de:ad:56:9f:7e:18:50:83:99:82:64:3b:75:14:41:
63:b7:0e:ff:b9:00:a5:57:c4:ba:f1:cc:7d:c2:19:
e6:67:76:b1:50:a0:90:1a:93:fb:e4:c1:0d:92:64:
13:af:33:ca:f5:c6:33:db:f3:ee:91:82:e3:69:e7:
29:aa:df:f9:72:7d:8b:f6:50:d8:0c:7c:ae:fe:f4:
60:7e:cd:8e:69:77:97:5d:47:f0:e1:d9:6a:17:66:
ee:d7:d2:c3:87:dc:62:0c:1a:88:1a:11:49:42:a9:
b9:c9:21:7f:62:b6:20:95:3b:2c:33:88:8a:02:f1:
86:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:46:BD:2E:14:52:5F:E2:4B:AF:10:25:D3:15:3A:E2:12:10:AF:39
X509v3 Authority Key Identifier:
keyid:3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:b4:c3:47:9c:5a:b2:50:67:b4:6e:ad:f6:d4:f9:79:a9:22:
11:13:a7:ae:57:12:fc:e1:ac:d6:e9:34:b9:a3:25:c2:30:0d:
67:dd:40:38:37:aa:9b:60:be:ab:1c:ea:6f:52:a1:14:db:ac:
a3:8e:54:30:8c:a9:73:73:96:ec:f4:f9:e1:7c:63:66:48:cd:
4c:73:f2:e6:55:5b:56:47:83:91:12:f6:41:81:ac:d5:04:b8:
0c:5a:77:86:2c:31:d1:8b:f2:16:a1:ab:af:a5:4c:6d:ab:f1:
8e:e9:94:48:44:ad:39:11:6d:53:47:6c:67:c6:98:be:0e:84:
3a:92:c3:72:6a:d1:58:35:e3:dd:8d:ff:e8:c6:e8:32:bc:d9:
1e:56:e1:df:42:9c:51:0f:57:5b:85:18:28:e3:7c:41:3c:54:
ad:4c:79:c7:41:11:28:83:79:f5:e6:c5:9d:ec:fa:d3:53:f5:
5e:92:52:7c:6f:de:81:41:0a:d4:ed:fd:3d:2d:f0:52:e8:88:
1f:e1:c0:1e:60:98:86:dd:6d:0a:c3:20:40:35:f1:62:52:dc:
79:47:2a:4c:93:83:fc:b3:e5:32:47:9d:b7:da:75:5f:ac:47:
10:54:d6:4d:53:62:ab:a5:5f:ed:63:5a:db:f6:e0:45:3d:1c:
21:cc:6e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:36 2026 by rpki-client