Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
File: pl24nou2YPIetcSvO5rdUtV-uJ8.mft (raw, json)
Hash identifier: MlcO6hhM0UFEqaZmKZcpyg4CWUu6ClyBvoYgRGHwRaU=
Subject key identifier: 6A:5F:43:D2:A4:BE:30:FE:23:64:36:37:D5:94:9E:98:3E:B8:3F:2B
Authority key identifier: A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
Certificate issuer: /CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Certificate serial: 019DCE630D9F18EC493DFCA7036C88E56EFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
Manifest number: 0646
Signing time: Mon 27 Apr 2026 10:01:31 +0000
Manifest this update: Mon 27 Apr 2026 10:01:31 +0000
Manifest next update: Tue 28 Apr 2026 10:01:31 +0000
Files and hashes: 1: NnDti1qolMnRdu6TKLIWSO85A8k.roa (hash: rZbXVayKsphGvgxDa2Rkpb2xF4uS1h5k4Mw2d6eGCNs=)
2: pl24nou2YPIetcSvO5rdUtV-uJ8.crl (hash: 0fneB7wyC5mml7dr9TNQUECPw88oRuLoA76NlFFdXHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:0d:9f:18:ec:49:3d:fc:a7:03:6c:88:e5:6e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Validity
Not Before: Apr 27 10:01:31 2026 GMT
Not After : Apr 28 10:01:31 2026 GMT
Subject: CN=6a5f43d2a4be30fe23643637d5949e983eb83f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a2:13:f8:07:e4:db:31:f6:15:10:e9:ad:91:
f4:3e:cc:96:00:ba:56:87:b2:5e:38:c9:21:d9:7a:
8b:eb:ad:f1:40:fb:59:8c:59:e1:c4:09:85:1c:bb:
ff:ce:b2:dd:27:96:23:39:b6:b8:24:5a:06:b1:c9:
f0:2e:bc:c7:ee:69:5a:82:40:a7:f1:10:bf:4f:d1:
95:a2:58:fc:ca:d3:c4:21:a7:dd:c2:95:9b:64:9e:
4e:b6:6c:9a:5d:4e:28:0a:8b:26:34:40:df:98:66:
91:1c:ac:70:9d:8e:b1:82:4c:81:41:61:8b:fe:ee:
29:e2:82:a0:45:2e:79:08:04:03:0a:f6:26:30:d4:
c0:34:5e:bf:7f:38:3e:aa:72:d3:d6:5a:1a:cb:8b:
41:ea:26:8b:1e:d4:7e:f8:7d:9c:c1:f7:83:72:1b:
35:d9:4a:8e:ce:a0:c2:8e:4d:e6:1b:e0:3b:23:60:
0d:62:2a:91:3d:7e:99:20:fc:08:c4:4b:b3:ac:41:
23:dd:19:c7:8b:ae:9d:f0:76:6e:7b:ae:9b:d4:60:
b8:7b:cc:ad:7c:6e:80:41:79:55:7f:db:fa:85:27:
ea:0a:b1:fc:56:9a:96:e6:ef:7d:65:a1:20:65:6a:
5e:9a:32:44:86:fb:8b:a9:75:27:38:c8:57:82:7c:
15:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5F:43:D2:A4:BE:30:FE:23:64:36:37:D5:94:9E:98:3E:B8:3F:2B
X509v3 Authority Key Identifier:
keyid:A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:f5:57:85:9c:f2:20:83:66:0e:9a:7f:9d:93:12:6c:f6:cc:
92:ba:90:3b:5a:96:3e:04:89:da:3d:c1:87:8b:b1:9d:0a:d7:
b7:57:38:93:90:15:fa:77:81:74:b4:e1:b3:40:38:b9:aa:c7:
4d:d8:dc:53:57:ee:1b:ec:53:ec:f9:1f:29:d5:58:2a:78:04:
07:28:da:06:d7:51:0d:a2:2a:94:c7:4c:e2:3a:f5:ad:a0:5c:
6a:10:65:58:85:78:ca:c5:e2:cb:46:d9:53:e3:bc:b5:c4:b0:
f8:eb:17:c0:f5:3a:b1:d9:1f:ee:22:fc:72:75:b9:7f:f1:be:
85:81:55:4d:3a:3f:79:82:f8:57:d7:ba:8e:3f:00:12:32:d3:
8b:62:c9:4c:68:c6:f9:3d:d0:46:c4:f3:32:d6:8a:7a:d8:a2:
7e:6f:7a:cb:d2:9a:99:ae:cb:08:db:e4:20:c2:b8:9b:8a:c9:
d8:5c:89:1c:07:2d:9f:40:ff:c6:10:ed:37:4a:72:1d:26:93:
47:e3:e9:ac:09:78:20:1a:21:1c:f2:a0:cc:44:70:36:20:84:
f7:1c:b7:ab:51:7c:dd:d9:25:e2:63:6a:a9:96:61:e8:32:10:
9b:9a:ee:e3:f7:44:a2:80:10:d1:76:e2:f1:3b:a1:2e:7b:8e:
5d:86:2e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:37:35 2026 by rpki-client