Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json)
Hash identifier: T9r963/S2uCyCV1BGXTe7xCYqC1MKl+xQveoce3Xa7E=
Subject key identifier: 1D:42:41:20:A9:8C:74:F7:C3:FF:FB:26:7A:CE:8E:39:73:DD:0A:A4
Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Certificate serial: 019EEEFE497A9A79EB7D559D4D46454BE200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
Manifest number: 0667
Signing time: Mon 22 Jun 2026 11:01:42 +0000
Manifest this update: Mon 22 Jun 2026 11:01:42 +0000
Manifest next update: Tue 23 Jun 2026 11:01:42 +0000
Files and hashes: 1: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: JlBG6f15lMz2l3ROyPiUdqrX6hYgOT9BPjNZkNQUjpM=)
2: bbcALS1K5TEmKYiB1a6e1mZZWEs.roa (hash: byEO33BLjOD9so540gGEwTdyvs1ahwhfnYTzDETisqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 11:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:fe:49:7a:9a:79:eb:7d:55:9d:4d:46:45:4b:e2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Validity
Not Before: Jun 22 11:01:42 2026 GMT
Not After : Jun 23 11:01:42 2026 GMT
Subject: CN=1d424120a98c74f7c3fffb267ace8e3973dd0aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:da:6e:89:bb:4d:f3:7b:98:e5:d9:4d:27:19:
05:cc:5d:c0:ee:6b:5c:22:de:b6:89:95:05:92:70:
71:95:24:e5:b7:4f:fe:2c:5c:a6:f4:b0:15:06:35:
b3:b7:c7:01:5d:e7:e4:a2:c7:37:4a:22:ae:5b:39:
2c:36:a1:cd:b4:a1:fd:b8:10:7b:f3:1f:1b:fc:d9:
6f:8a:1b:3d:6e:ca:e0:24:84:47:01:46:a7:01:fd:
f5:1b:a0:68:51:2a:12:95:fe:fc:6a:ac:4e:2c:19:
85:ae:13:78:75:2a:60:39:13:59:89:a8:f9:33:49:
ca:e6:bd:ba:75:67:97:0c:7e:f1:a8:56:28:f3:52:
cb:51:d8:26:42:e4:6b:62:6b:f7:8d:66:dc:59:dc:
ee:b1:8d:87:7c:99:24:ff:08:1e:bb:96:8c:c4:d6:
9a:d5:4a:18:b1:b0:f5:7f:18:61:9b:7f:92:71:d9:
2b:d1:59:9e:89:36:30:a4:73:ec:73:80:1b:e3:3a:
8d:a3:57:ec:7a:70:5b:61:35:b1:6d:77:fa:3a:32:
8c:73:a9:8a:07:4f:09:09:40:ab:5e:46:ca:bf:d0:
dc:ed:9f:51:06:c7:d1:ef:87:d0:11:49:15:8b:b3:
b1:69:e9:72:19:15:58:d2:30:4f:0d:2c:06:db:de:
01:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:42:41:20:A9:8C:74:F7:C3:FF:FB:26:7A:CE:8E:39:73:DD:0A:A4
X509v3 Authority Key Identifier:
keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:49:1f:98:78:64:cc:53:08:2d:07:92:80:58:12:e6:c3:ee:
88:38:16:ec:74:ba:c5:1b:5b:58:30:f9:c9:f5:84:44:0f:a9:
cb:bb:9f:1c:a7:3c:4d:7e:85:9c:45:23:15:81:8f:a8:87:ad:
2f:89:3e:89:7c:83:a6:af:2b:3e:94:b3:40:67:25:38:d0:1a:
08:be:a5:67:1c:c4:f9:ce:4a:a3:c6:15:c2:ac:3f:99:b5:bd:
49:2b:71:a5:b2:b5:71:60:16:7b:5b:57:ab:be:a8:8b:7d:d0:
92:85:25:32:94:af:5d:b5:ae:dd:f4:e9:fe:52:75:fc:85:5a:
31:10:b7:d0:46:b2:68:ac:46:47:59:8f:b0:5d:20:a2:e2:1e:
bb:89:d2:86:a5:0f:55:ae:36:07:81:ff:10:68:55:c4:d8:84:
17:0f:60:4f:01:1a:6a:51:58:4f:8f:be:59:cd:84:12:b1:5c:
ea:97:46:07:8c:52:ad:67:54:f7:be:60:06:77:c6:c4:f8:c3:
6d:36:e8:e6:a0:f7:d2:f2:1f:58:2f:91:a1:cd:f4:66:51:32:
fa:c6:71:46:de:e5:79:a4:17:50:25:d2:fe:ce:57:92:17:52:
80:51:ba:88:3a:53:97:91:a9:9d:7f:23:84:db:a7:25:da:50:
ec:84:28:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 15:24:11 2026 by rpki-client