Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: dACDO29/+0CQZ13zPTGJJnXmZkaDLQ48LPGSD7XE8Us=
Subject key identifier: 19:8C:41:E9:63:D2:F5:D0:65:CA:EC:31:3A:84:0D:3F:F8:F9:18:F1
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 019D390A24C13E27C5D037EFE7026FCC8AE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 07A6
Signing time: Sun 29 Mar 2026 10:00:59 +0000
Manifest this update: Sun 29 Mar 2026 10:00:59 +0000
Manifest next update: Mon 30 Mar 2026 10:00:59 +0000
Files and hashes: 1: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: r6hjOXRH+RWN8a3TahZcge9BErn8WaJPaShRBjyvNeY=)
2: VJDz-qaUophwYHtBPQA4i8cS3MA.roa (hash: V9aVBC2KoE26lQ0VCkG45owqJDBEmBnHXtHFUy4VDVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:24:c1:3e:27:c5:d0:37:ef:e7:02:6f:cc:8a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Mar 29 10:00:59 2026 GMT
Not After : Mar 30 10:00:59 2026 GMT
Subject: CN=198c41e963d2f5d065caec313a840d3ff8f918f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:e6:ca:f1:08:35:43:28:14:08:72:78:5a:
45:5b:cc:b5:88:d9:b1:1e:99:01:53:1d:8e:57:07:
2e:5b:42:10:30:94:45:ce:c8:0f:06:70:0e:67:d0:
6f:54:54:bd:47:aa:5c:47:1b:f9:1d:ea:81:90:6a:
31:fc:5c:b4:e5:70:8f:13:ae:e2:d8:50:f9:eb:8e:
b1:cb:1a:0f:04:83:cf:55:af:61:07:ee:bf:e8:95:
74:16:a9:15:8e:c5:c7:15:5e:e1:5f:ab:e0:20:b8:
9a:f7:cc:15:c1:d8:fd:28:f8:2c:ca:c0:4a:63:a4:
4d:b2:c5:2f:9e:7b:60:0d:09:4f:f6:f1:7f:e4:0a:
30:a5:3b:b5:bc:eb:52:dd:2e:83:07:b4:da:ee:c1:
0f:eb:1f:14:72:44:0d:31:d0:dc:27:28:33:e3:c7:
d4:d8:fb:c5:fd:8e:95:93:47:e5:0e:ba:36:93:08:
b2:4e:3d:1c:6f:2c:0b:8e:61:a4:16:45:b5:60:10:
fa:b6:09:07:17:78:79:a7:cf:52:65:2d:37:ab:0f:
f1:cd:31:7a:d6:ac:7f:04:16:70:ed:dc:74:d3:00:
b2:59:66:fa:b1:c4:de:ce:98:79:15:2c:e1:18:ff:
a7:4d:3c:31:0e:31:f6:7f:51:de:f3:43:94:eb:2f:
f0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8C:41:E9:63:D2:F5:D0:65:CA:EC:31:3A:84:0D:3F:F8:F9:18:F1
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:03:6e:35:41:c3:66:fe:7a:13:72:cc:44:8a:87:dc:58:4c:
0e:98:e8:b0:20:1c:dc:a8:9b:f0:6e:16:dd:af:aa:4b:89:e5:
5d:ce:ae:41:83:82:c8:65:33:3a:22:f7:be:90:f5:e0:86:6e:
ef:ad:b5:a5:64:c8:3c:b9:ac:12:c8:61:26:44:c1:e0:80:40:
ae:09:a1:d0:13:d1:ca:33:23:0d:9f:f4:af:67:05:3f:4b:21:
63:e7:50:89:45:b9:4d:a8:ce:79:7e:f7:f2:77:c9:0f:1a:73:
c9:d6:0a:cb:dd:fd:66:b0:a9:0e:cf:4f:08:dc:b2:87:93:2b:
66:6e:4d:e1:ae:b5:f2:6c:b5:37:90:b9:b2:6e:c3:ad:01:ab:
57:36:e7:37:df:19:f9:8a:37:1d:e2:04:17:ea:50:d9:f1:da:
70:94:2b:89:7e:c8:58:97:8f:e7:a8:16:97:24:61:d6:a1:b6:
0a:61:59:54:12:cf:16:b2:73:60:c9:e3:19:84:64:e6:40:84:
8b:50:cf:dd:b4:59:48:4c:95:83:7d:95:b0:a7:3c:95:2e:cd:
27:29:da:f4:8c:27:a1:f6:78:ec:30:1a:e0:93:2b:17:a4:1f:
fb:61:65:e0:9b:75:c3:d2:e6:74:2b:4d:3b:40:d1:27:6b:d2:
77:a0:d6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:50 2026 by rpki-client