Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: b7CYZiBdDtgVUAYz16+Bup9RlToR11xC28D+Aw8fesw=
Subject key identifier: 25:B2:46:F7:DE:15:EF:37:C6:47:1E:AC:22:3F:44:85:BC:2A:DE:25
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 019D3940A53EB822F5619EC10D51DB010650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 077B
Signing time: Sun 29 Mar 2026 11:00:31 +0000
Manifest this update: Sun 29 Mar 2026 11:00:31 +0000
Manifest next update: Mon 30 Mar 2026 11:00:31 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: lXGXPZI0uItGoj+Sp3lLpipPEVKDdcWfuJAE0kXWQns=)
2: ZOFtNvohh1GT6QmRpbTj8yFColo.roa (hash: icnN57OgCydR3QaLKU2WG6f0DKQefqL0klzmHG6LRNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:a5:3e:b8:22:f5:61:9e:c1:0d:51:db:01:06:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Mar 29 11:00:31 2026 GMT
Not After : Mar 30 11:00:31 2026 GMT
Subject: CN=25b246f7de15ef37c6471eac223f4485bc2ade25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:00:6a:d6:66:a7:f6:64:63:02:e3:6c:00:5a:
d6:c8:46:9c:df:2c:06:de:17:ec:63:68:e0:c5:2e:
d5:ea:23:dd:9f:24:d3:ef:99:7f:d3:2a:6f:1e:5e:
7a:e1:93:da:86:51:c6:f7:99:85:b5:38:0f:7d:38:
74:ea:7e:b8:56:76:e3:6d:bd:68:be:cd:9b:57:36:
00:0f:92:9b:70:db:77:49:25:91:f7:d7:fa:bd:4b:
0e:f1:32:8b:db:32:8e:36:fa:69:11:af:de:20:47:
5f:fd:23:a3:4f:f3:e4:0f:32:be:9c:fa:f8:21:ec:
ef:22:bb:8a:36:23:68:83:21:b0:3a:29:c9:58:f3:
76:cc:2f:6f:34:f3:04:b3:67:8a:37:77:5a:f7:4a:
6e:14:b5:b0:6e:9d:b7:83:35:3b:d2:be:6f:12:db:
d9:74:b8:10:3b:40:ef:b6:ea:bd:89:5a:dc:6e:20:
13:cc:0e:8c:72:0d:34:c7:b2:c3:41:50:b1:47:18:
15:fa:8d:7e:52:e2:f8:1d:29:8a:0d:6c:d7:2c:b8:
04:34:a8:69:8a:18:ce:a6:0c:75:d1:e5:fe:13:11:
9c:49:fe:db:12:7b:0b:61:c4:66:f1:0c:e1:eb:03:
01:c2:37:1a:a2:68:eb:57:9a:c8:40:b7:a0:af:95:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B2:46:F7:DE:15:EF:37:C6:47:1E:AC:22:3F:44:85:BC:2A:DE:25
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:08:98:0c:bd:71:8c:28:b8:8f:34:fd:b2:55:dd:62:59:bf:
63:72:9f:ba:92:ff:81:4e:f5:4e:05:c0:97:94:2f:ff:8c:a1:
4d:88:f9:08:db:07:be:db:7b:b0:3a:c7:a3:34:1f:48:fa:49:
a5:8d:d0:de:37:20:c7:e4:67:7a:87:4c:7c:b2:3c:ea:f2:4a:
cb:18:d1:7e:4c:85:85:02:6b:00:41:a6:8c:68:b3:e8:20:46:
a2:03:16:1b:b4:43:68:83:0e:4a:bc:dc:29:da:66:dc:59:9d:
5b:b3:ef:cb:95:81:af:87:eb:f9:e1:59:1b:ed:ea:6f:08:8f:
fe:5d:c6:e2:49:00:a4:c7:fd:f5:bc:19:08:e7:93:2c:8b:13:
0d:9e:a2:68:d7:1f:c8:5e:92:6d:56:b1:98:f5:d1:85:c7:16:
bf:ce:a3:b9:bc:3c:94:71:f2:4f:68:bb:0c:8b:54:26:68:b3:
9b:3c:af:5a:f8:b1:de:aa:a8:8e:2b:13:27:f6:69:49:7f:d2:
90:c6:b9:b8:c1:34:be:d3:a5:33:ae:78:e7:b5:5d:28:71:d7:
88:bc:b5:59:2c:d1:22:cc:71:a9:28:65:80:77:8a:9e:11:25:
e0:40:b2:d0:2a:e9:43:40:d3:9c:ba:da:2a:d7:d8:63:be:8f:
31:1c:47:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:41 2026 by rpki-client