Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json)
Hash identifier: nVg862rHLgCLFNRLfEhKxh03xdL/91ZNgBSGJMaTcvQ=
Subject key identifier: 56:43:9E:D7:C7:BE:AF:85:10:1B:D3:C8:23:93:79:0C:0A:3B:7A:3D
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 019D37C095293E990FDC78F5C24B951C46EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
Manifest number: 17FD
Signing time: Sun 29 Mar 2026 04:01:01 +0000
Manifest this update: Sun 29 Mar 2026 04:01:01 +0000
Manifest next update: Mon 30 Mar 2026 04:01:01 +0000
Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: kM+MXvBxK8LlDPBdmsTnwCc7QRS3sqBlGtRa3TCD/xY=)
2: uJd7RZN3ZAsoJQnJhc2M-mLjChI.roa (hash: /6Alyhe3uGVuPv9iCIcAX55KfuQ8Pqr9aqLM0Vwt394=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:95:29:3e:99:0f:dc:78:f5:c2:4b:95:1c:46:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: Mar 29 04:01:01 2026 GMT
Not After : Mar 30 04:01:01 2026 GMT
Subject: CN=56439ed7c7beaf85101bd3c82393790c0a3b7a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1a:ca:3b:9a:71:3f:4f:82:54:ef:c0:9a:1f:
ed:9e:3e:70:16:08:d9:76:bf:cc:3c:9a:20:fb:a6:
9f:4f:a6:ff:b4:c0:dd:dd:1b:9d:c2:07:f9:06:34:
85:76:90:b0:df:cd:ec:cb:50:3c:4e:24:85:f2:4a:
8a:79:da:4a:fd:27:bc:86:59:50:63:87:33:5a:92:
85:df:1e:7d:c5:dd:2b:7c:65:e1:b6:21:93:f5:be:
19:7e:10:9b:7b:fe:e6:ed:88:a9:6b:81:3b:4e:c5:
e2:04:6d:63:78:2f:86:c3:ff:19:88:09:af:d0:87:
e8:f9:9c:3b:43:5d:bc:6b:fb:78:56:46:de:cb:9c:
d0:80:f4:54:2d:11:9a:81:1b:8e:5e:15:30:46:ac:
7b:2d:4b:a0:76:1a:5a:56:bd:7a:78:60:0d:d4:57:
72:4e:b2:56:7c:37:03:2f:82:3f:ce:65:ce:85:c3:
b8:1b:7c:98:49:8c:15:82:e3:a1:b9:76:aa:98:94:
c1:ee:d1:58:9b:54:3a:b3:f5:73:5a:ea:2c:42:94:
66:72:30:b9:b9:92:21:2a:e1:b2:9f:f0:57:6d:b1:
8b:2e:df:10:e7:b4:ae:f1:0c:fc:65:2c:56:fc:40:
13:47:af:30:78:0e:75:0f:bf:af:41:93:cb:50:76:
3e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:43:9E:D7:C7:BE:AF:85:10:1B:D3:C8:23:93:79:0C:0A:3B:7A:3D
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:1b:53:60:6b:e2:30:f6:6e:e6:88:7a:d0:c4:1a:a9:37:89:
bc:fa:eb:14:a1:af:81:7b:1e:87:ad:27:c4:52:0a:d4:f1:45:
d9:9f:0f:9d:67:22:41:b3:5a:40:3a:80:84:b8:55:7a:07:7b:
cc:7d:41:7e:60:09:b6:62:92:82:0a:15:66:08:8b:71:86:c7:
7a:70:fc:7b:a2:98:66:71:f2:45:46:2c:ab:1c:34:94:ef:2a:
ca:31:2f:bd:bb:7d:65:4e:e5:8d:f7:fa:1c:a1:f5:42:da:70:
31:52:a9:ef:b4:cf:5f:af:f2:ea:87:f4:5c:bc:a6:55:47:ab:
67:6b:43:ef:ae:17:a3:a4:0f:33:c5:b9:85:98:74:9f:cf:40:
00:a2:78:a8:25:95:6b:96:71:a5:e2:3d:de:39:f3:84:10:21:
af:77:e2:6e:38:2b:02:d7:55:fc:18:36:09:79:c5:26:32:16:
f9:97:6c:b6:17:1c:9a:a2:49:c5:7c:05:fa:26:0a:cb:67:0a:
34:87:10:a6:2c:1c:fb:17:eb:b2:c9:cd:d0:2e:8e:42:8f:00:
f5:55:90:df:3e:31:28:fc:f7:22:75:91:1e:41:ff:32:cc:85:
3a:5d:c2:a5:d4:8f:de:5f:a0:0f:4d:5c:d8:c0:08:80:6d:e3:
93:db:4a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:11 2026 by rpki-client