Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: hTeqKrmIsXF0mulO7fWZNXQzrhFZoFgEINqwh4OhSv8=
Subject key identifier: C1:50:EA:51:D7:1A:E2:E5:C3:8F:0F:46:EB:B1:2C:DF:4E:83:D5:F9
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 019EFCF2ADC6B730B4A3EB26FABE3FA975C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1976
Signing time: Thu 25 Jun 2026 04:03:42 +0000
Manifest this update: Thu 25 Jun 2026 04:03:42 +0000
Manifest next update: Fri 26 Jun 2026 04:03:42 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: QsmPkU5m99PZFbn4uor18MAqLlJzfGZpLk1wecGXoVY=)
2: aG1wC2y3Q6pluT4bomzfriW6qO8.asa (hash: y5OiOJ4JCn8oykPDM8IMuk0COHtj+uOEVrLwak92ue4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:f2:ad:c6:b7:30:b4:a3:eb:26:fa:be:3f:a9:75:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: Jun 25 04:03:42 2026 GMT
Not After : Jun 26 04:03:42 2026 GMT
Subject: CN=c150ea51d71ae2e5c38f0f46ebb12cdf4e83d5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:b9:b6:62:24:2d:0d:73:5a:98:0e:a9:d0:
ec:0a:b2:7e:8a:75:ea:0d:4a:90:77:2d:6f:be:08:
eb:5b:9d:46:9b:24:8a:88:ab:50:61:3b:c6:aa:92:
be:db:7e:fd:97:99:f1:f6:65:55:6b:25:1d:02:a9:
c7:0a:5b:4a:8d:31:91:e8:d7:27:d8:ae:6a:29:ef:
ba:b1:a8:44:f8:ec:d8:44:3f:ec:4c:33:e1:9e:1e:
79:53:53:47:71:e8:35:70:f8:18:e3:bc:12:77:6b:
3d:e5:57:fe:b4:e3:bd:e3:8e:ca:ca:8d:21:ad:9e:
31:5d:fd:7c:c6:dd:04:83:26:3d:56:60:b9:dc:02:
ba:79:9e:1c:2e:80:25:f3:6e:9b:5c:2d:0a:a5:10:
e4:29:9f:77:85:92:0e:41:65:0e:65:ae:1a:85:09:
52:16:2a:48:c1:a7:8c:ea:9f:d0:77:96:3b:2b:ad:
2b:2a:12:11:78:70:48:e8:48:5b:e1:b0:ab:36:4b:
71:fc:90:ba:be:a3:05:a1:08:ff:a7:70:2b:8b:3b:
18:6c:6f:8b:72:87:0b:b0:3f:88:f4:4c:ea:6e:57:
f5:0b:96:83:79:b2:51:f5:6f:90:e8:6e:be:07:b7:
46:a5:f9:77:98:21:3d:d1:f0:c7:0b:b4:b8:00:41:
4f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:50:EA:51:D7:1A:E2:E5:C3:8F:0F:46:EB:B1:2C:DF:4E:83:D5:F9
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:f7:0d:13:30:49:ef:24:81:79:29:cb:5b:05:a3:b5:49:a2:
73:5c:e8:4e:20:31:b1:7f:ab:fe:53:16:c9:0c:3c:eb:c9:3b:
b8:2a:ef:3b:7d:f7:1f:f2:0d:7e:34:1e:78:c5:15:e0:f4:ff:
a3:94:fc:49:7a:13:9d:08:09:64:a1:50:a5:dc:f4:94:c9:de:
35:c4:4c:25:f9:50:86:84:f9:e8:65:d3:bb:dc:72:b5:54:f9:
03:54:8a:18:fe:99:bd:58:18:a2:34:4a:21:33:05:1c:6b:13:
5f:f8:d5:a6:95:a2:cb:c9:f3:03:46:f0:b3:b9:4d:9d:6b:88:
91:1c:8d:7e:62:06:b2:d6:81:6e:7e:d6:04:88:ab:9a:19:f6:
14:55:55:4a:1c:ca:2a:fa:13:ed:03:d7:9f:76:dd:5c:10:ad:
a4:46:ab:cd:de:68:10:f5:a1:ff:0f:f0:65:be:81:7e:03:7f:
bc:dc:d2:bf:02:21:b6:d0:3f:27:6f:75:dd:a6:fa:0c:a0:bc:
32:86:c8:e4:39:f9:a2:9a:57:b7:56:4b:32:6c:6f:7d:4d:12:
42:bb:d7:f0:ca:30:35:17:5f:b5:4b:e7:e0:29:f5:8a:e9:f4:
3a:2b:47:64:ec:3b:91:27:bb:f2:f8:24:9d:34:89:f8:c6:d0:
0d:26:a9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 09:41:15 2026 by rpki-client