Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: 9KiB+ws8jzoqlWTypmYLGj/h2XnxknEviFFa2GEvlMg=
Subject key identifier: 1C:73:AA:BB:CA:49:44:33:67:99:77:2C:BF:88:D1:44:23:0E:76:A9
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 019D36E54D87154EB58263393DFFDBE9BEF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 1115
Signing time: Sun 29 Mar 2026 00:01:30 +0000
Manifest this update: Sun 29 Mar 2026 00:01:30 +0000
Manifest next update: Mon 30 Mar 2026 00:01:30 +0000
Files and hashes: 1: 4AdOdTjOjrDpwgtyy4ktcWWGP6A.roa (hash: wU5WQoYZymnHyBEb3RrJmAMH4p714dRTeA6U67NEuks=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: jFAkMCnAASKY05s4hC4KXjUYmKN5DTo0CZedzRU4OtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e5:4d:87:15:4e:b5:82:63:39:3d:ff:db:e9:be:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Mar 29 00:01:30 2026 GMT
Not After : Mar 30 00:01:30 2026 GMT
Subject: CN=1c73aabbca4944336799772cbf88d144230e76a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b8:3f:22:42:70:dc:69:f3:e2:79:fd:45:4f:
02:76:78:e1:3c:59:4f:a8:18:e6:49:9e:45:23:96:
f6:51:cc:d9:ec:62:6b:70:06:a2:fd:53:13:3a:37:
41:fa:fa:59:38:f3:c9:22:fd:8f:fd:6c:c6:c5:53:
0b:df:76:c2:92:25:bc:56:b9:ac:d8:c2:82:69:57:
1b:2c:3e:a7:16:56:27:3f:20:51:75:f6:41:ca:bd:
48:ec:e2:38:4d:23:28:f2:0a:46:f3:7d:66:99:d3:
75:ac:50:d2:87:cc:87:7b:d8:ba:91:67:b8:11:5b:
9d:81:57:ef:b4:9c:c5:71:ff:41:2e:e2:9a:bb:e5:
54:71:fe:4e:51:c2:ea:b1:81:bb:83:1e:68:ed:46:
bc:ed:ae:f0:ba:5a:50:51:a6:98:ed:8d:7b:49:4b:
0e:2b:64:2d:4f:3d:bf:1c:17:4c:05:72:08:de:9a:
22:39:34:00:61:e5:a0:9c:c7:9a:bc:b4:4c:d1:7b:
e8:4b:1d:ce:c3:2f:c5:20:95:db:70:5f:58:9e:cd:
6e:ff:1e:ad:f9:30:fe:19:c1:e8:a2:62:62:b1:07:
38:03:41:c3:89:8a:0a:27:0b:45:9c:c2:34:8c:97:
b8:06:bc:fa:78:b4:a5:42:61:17:28:cb:a7:ef:25:
da:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:73:AA:BB:CA:49:44:33:67:99:77:2C:BF:88:D1:44:23:0E:76:A9
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:99:16:35:3e:f2:10:8a:25:35:03:27:04:80:32:c4:fe:52:
32:68:bd:16:fb:24:dc:62:90:5e:4f:7a:bf:4a:dc:60:5a:50:
fd:e8:b8:94:60:a4:e7:5a:eb:2b:26:64:38:57:46:ac:84:d4:
49:6a:41:d1:13:64:1e:16:45:da:ae:c9:50:3a:0e:c2:65:b8:
6d:1a:59:af:6a:83:ae:a8:bf:71:b8:cd:24:89:a2:ef:7d:91:
32:e0:71:c9:02:11:13:37:fd:c0:9c:dc:77:36:c5:4d:07:c5:
06:1d:7b:8e:39:28:c5:b4:76:08:1a:a8:c1:f7:2c:ea:b8:63:
66:ab:e2:1c:b6:ba:3c:e0:cb:3b:2b:c1:e5:a8:f3:b2:8d:06:
38:34:2d:73:fa:2f:ab:42:6c:4e:11:a4:69:06:e3:10:54:25:
4c:63:b0:20:75:07:cf:63:15:99:44:7d:6f:f6:bb:f6:ed:1f:
cd:3e:5f:40:e2:29:7d:99:4e:3b:6b:52:c9:8d:29:53:5a:44:
68:04:55:9b:60:de:69:82:0e:be:22:c0:2c:05:7d:d4:50:07:
56:09:55:d6:12:11:c8:d9:d5:8b:07:75:b9:6f:c2:37:6d:1e:
c1:23:e9:b2:6b:6d:af:9c:27:07:ff:9c:4d:2a:b6:86:85:e8:
cc:db:fd:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:05 2026 by rpki-client