Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
File: PUJ2NzsED6msd-VmxbbN81tTuTc.mft (raw, json)
Hash identifier: 8+wfMJ0wN944sef/2XGXBAHL+C4v0bKjgbSQmLeAi/A=
Subject key identifier: 71:B9:DC:DE:74:E6:C9:66:B4:B5:79:76:0F:03:54:61:D9:00:23:1C
Authority key identifier: 3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
Certificate issuer: /CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Certificate serial: 019D2394FF4816875EB8F54F4D734197D35A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
Manifest number: 0766
Signing time: Wed 25 Mar 2026 06:01:00 +0000
Manifest this update: Wed 25 Mar 2026 06:01:00 +0000
Manifest next update: Thu 26 Mar 2026 06:01:00 +0000
Files and hashes: 1: 7bvtPGLStjnkciwxFvPTYgFWfQk.roa (hash: vjeKrroXH7m1N2sP7ErrsCURI+wiwxbcMJEOYB8cjgg=)
2: PUJ2NzsED6msd-VmxbbN81tTuTc.crl (hash: RLZxYdXK5YaQa/XCTRnoJtmzv5yo/GftyIE26pzE8/c=)
3: ci6tN1QYoZrZv06rGimHLD0X5JE.roa (hash: WnzalM5cF/dIA1v+fSMQnZMN9WMkUhH0XGHms4w38Jc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:23:94:ff:48:16:87:5e:b8:f5:4f:4d:73:41:97:d3:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Validity
Not Before: Mar 25 06:01:00 2026 GMT
Not After : Mar 26 06:01:00 2026 GMT
Subject: CN=71b9dcde74e6c966b4b579760f035461d900231c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:9a:bd:03:b2:ee:ee:64:30:4b:2d:61:a6:
75:6b:3e:af:02:5a:1a:b8:be:c3:fa:59:30:e1:03:
45:66:9e:d8:35:70:7b:62:99:4b:1f:c8:b0:35:ff:
18:ab:5c:2e:48:7e:6e:d0:55:3a:fd:83:68:86:e0:
e2:a2:7f:d9:45:43:2b:bd:e2:6a:fc:3d:52:9c:18:
0a:e0:25:62:b5:ca:2c:6b:3d:c8:df:bb:bb:cc:fa:
9f:fb:7a:1f:48:24:20:73:a9:e7:72:10:f3:c8:20:
ca:9a:f1:d7:75:53:0e:3d:8a:22:3a:7d:05:e0:20:
14:3f:b1:94:5b:9e:09:93:31:5a:ee:12:8d:ae:43:
9b:7d:ee:52:9f:41:d6:c3:64:a5:cd:9a:1d:e4:77:
d6:d5:55:ac:81:18:b4:45:bb:38:a2:16:fb:8e:4f:
96:01:b5:9c:2a:f9:85:ec:d2:a5:d5:91:3a:72:14:
3d:cf:f7:46:1b:c5:34:4c:17:e7:78:e4:c9:bb:57:
ab:ea:40:70:6a:70:ff:20:eb:c2:2b:7d:e3:a4:c3:
8e:33:be:90:05:a3:25:75:9e:99:b7:46:d6:69:64:
de:72:bc:24:91:04:ba:1e:dd:6e:86:df:88:47:8e:
8d:58:6a:da:52:52:3f:98:24:b6:b5:09:ed:a2:d7:
c8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B9:DC:DE:74:E6:C9:66:B4:B5:79:76:0F:03:54:61:D9:00:23:1C
X509v3 Authority Key Identifier:
keyid:3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:f0:79:29:d6:d3:25:ee:ea:25:df:7b:ff:eb:9f:91:30:f8:
bb:00:f4:ad:7f:47:b0:ee:c7:60:2e:b7:bb:94:f1:b4:74:a6:
79:71:8e:99:c1:c0:b9:6a:f6:aa:35:19:b2:f6:a9:72:a8:4b:
f4:83:f9:d4:48:92:b8:9a:dc:9e:b6:ad:11:ea:32:0e:d8:f9:
05:d7:9a:c4:d0:cc:86:c4:1e:ee:c6:8b:b6:58:92:3f:0a:72:
2b:90:c0:14:a1:e1:70:71:7b:fb:a4:3d:e4:f5:0f:a5:c3:b4:
c9:92:ce:48:ae:42:25:fc:fa:a9:ff:21:82:8a:26:5a:3e:1d:
e8:50:d4:25:e8:a5:95:a2:2b:99:4a:4b:93:7a:9d:0a:4e:9a:
13:66:73:4b:80:83:ef:07:53:ea:bf:c0:5d:c9:26:c6:17:d1:
e7:cd:97:a7:62:8f:3a:c4:4c:2a:0f:21:66:9d:be:a8:66:95:
23:ca:07:0a:bb:5e:10:06:7c:c9:83:da:40:81:b2:39:8a:78:
70:19:55:c0:9b:25:31:96:ef:50:37:21:a6:4e:03:0f:f9:85:
a5:3b:28:ac:85:79:41:d6:c4:8e:20:ab:82:4c:26:d0:f1:b0:
57:3e:4c:4d:8f:11:44:fe:0e:0e:2d:a0:9f:c3:02:cc:ee:18:
49:e6:30:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 09:46:26 2026 by rpki-client