Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json)
Hash identifier: 7lkguoMS/3/ZsGmJzy6RP12SX2/9+n0EMUCtGbLXoA0=
Subject key identifier: 0E:60:D6:62:E8:C5:D8:98:D8:0F:B1:7F:0D:82:18:C2:39:C4:12:9A
Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Certificate serial: 019D1B6DBFCFA804F7470D618DFB9BE0A331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
Manifest number: 0574
Signing time: Mon 23 Mar 2026 16:01:10 +0000
Manifest this update: Mon 23 Mar 2026 16:01:10 +0000
Manifest next update: Tue 24 Mar 2026 16:01:10 +0000
Files and hashes: 1: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: GmAB4CkINLEyRgmZ9xhfM2BbS07PE1+hCDQgpS/sKWA=)
2: ycAuPmO_sLVvMbeFsggXQjZ-bEc.roa (hash: IOeAqOcXQYE9MbdToOk7llMBN5GYLYRtb8t8JnGE6Kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 24 Mar 2026 16:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1b:6d:bf:cf:a8:04:f7:47:0d:61:8d:fb:9b:e0:a3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Validity
Not Before: Mar 23 16:01:10 2026 GMT
Not After : Mar 24 16:01:10 2026 GMT
Subject: CN=0e60d662e8c5d898d80fb17f0d8218c239c4129a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:29:2d:38:00:00:61:ed:27:c9:f6:69:d7:c0:
59:09:3e:7f:f2:eb:b6:98:5a:e3:33:d5:e7:67:96:
8c:3d:a5:6e:41:89:fb:31:9e:85:6c:3a:27:3d:9b:
5b:36:36:17:20:ec:ae:77:85:b5:72:2f:29:10:d5:
8c:4e:29:36:4e:9d:b4:63:bd:76:c3:bd:a2:28:fd:
6b:f3:a5:b1:cd:56:9f:b5:7e:cb:55:29:1e:e3:4b:
40:a3:27:5b:8b:44:ba:bd:60:15:fd:03:40:1a:06:
9a:30:64:c3:bc:83:be:ac:0d:b5:c5:4f:0c:33:6c:
48:bc:c5:bb:ac:f8:e9:d4:3d:17:d9:e6:8f:be:d5:
e0:d9:0f:f5:01:42:0c:00:75:9f:b9:c2:aa:7d:7f:
aa:44:8b:6b:04:0b:93:12:42:94:85:fd:63:e9:f6:
3f:fa:45:51:ad:0c:5a:9e:2b:2b:a5:5f:48:42:5a:
21:2b:70:5f:13:0d:e9:1b:53:b6:7b:ff:2a:8c:3b:
c5:52:bb:4c:24:1b:3c:79:43:f8:8a:8a:83:19:06:
42:d2:6f:28:25:4d:66:8d:70:5a:6a:ac:e3:46:33:
f9:dc:13:66:73:83:24:f9:5d:22:8c:a5:60:dc:5b:
ea:70:3e:9d:f6:93:06:f6:d6:8d:cd:5a:6e:69:1f:
cb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:60:D6:62:E8:C5:D8:98:D8:0F:B1:7F:0D:82:18:C2:39:C4:12:9A
X509v3 Authority Key Identifier:
keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:0a:8e:01:23:4f:4a:8a:16:0e:54:f6:3c:b1:03:ef:10:ce:
dc:61:55:61:17:63:5a:11:3b:c9:45:ae:6d:16:a3:81:bd:db:
b6:f6:e7:dc:f1:cd:d8:a1:a2:9d:fe:78:68:1b:7d:2f:43:79:
e6:09:6a:87:8f:1e:ec:19:fb:8a:19:2e:91:83:08:74:9c:79:
e2:8b:04:d5:56:8d:fa:c5:e1:0f:47:7f:30:f7:8f:a4:0e:8e:
eb:fd:24:7a:e9:cb:41:35:81:d2:b7:36:60:4d:f1:72:04:9e:
dc:c4:42:40:2d:ac:8e:85:14:66:11:60:ae:e5:19:8d:36:5a:
a0:b3:ea:4a:3e:88:6d:1f:51:30:1c:ec:19:ba:9b:fb:da:35:
69:dd:01:91:bb:07:a8:e9:d4:89:82:26:7f:9e:17:1c:9a:99:
68:33:4f:83:c5:c2:4c:c0:40:d8:c9:16:d4:88:b9:59:a6:60:
dd:30:0e:55:8e:27:59:32:4c:30:40:af:4d:08:26:be:27:b1:
68:9f:a0:4a:67:59:99:e5:f8:73:c1:e9:aa:71:e4:70:64:4c:
84:4d:5c:7b:5e:2a:c8:ba:ee:7e:7f:99:e3:bd:1a:92:7b:12:
cd:6f:6c:6c:f5:4f:33:4a:a8:bd:bc:14:f9:b7:09:8a:ed:e8:
50:25:c0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 21:55:44 2026 by rpki-client