Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: BwPsEiWIZpETH9D5xqcjXiEhPtspOf0NZXMDtT1YmgA=
Subject key identifier: 26:9A:80:3B:1C:4D:EF:68:85:FF:87:2E:9F:3F:CD:70:9A:DC:6D:9B
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019EB98FE3796FCEF1E34686BDCADCAC8926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 18E8
Signing time: Fri 12 Jun 2026 02:01:15 +0000
Manifest this update: Fri 12 Jun 2026 02:01:15 +0000
Manifest next update: Sat 13 Jun 2026 02:01:15 +0000
Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: R4Emm/dBS0dngKaotQjXvVvRZPs8zqOQ5W+Qg6N+F4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:e3:79:6f:ce:f1:e3:46:86:bd:ca:dc:ac:89:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Jun 12 02:01:15 2026 GMT
Not After : Jun 13 02:01:15 2026 GMT
Subject: CN=269a803b1c4def6885ff872e9f3fcd709adc6d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:95:3f:40:94:a6:ea:e6:12:c6:c9:60:de:41:
48:6f:f1:2b:3f:f3:e3:51:5c:87:90:ba:6f:67:6f:
ce:83:01:87:ec:f1:0f:e9:62:03:ae:d0:8d:d5:1d:
03:ea:5d:ed:84:3d:99:68:55:9e:36:62:7e:46:55:
0a:22:21:64:5b:f3:af:18:13:73:c2:24:0b:71:5c:
0a:59:8a:81:c7:a2:79:12:54:22:5c:70:f5:86:55:
07:7b:1e:1c:95:03:8d:3e:dc:88:87:e1:66:f9:17:
25:c3:50:80:83:19:84:c4:3d:6f:f8:87:02:47:56:
bb:60:10:4b:ef:5b:39:cf:b6:d3:47:23:b2:9a:f1:
b7:55:e9:3e:5c:56:a7:77:a4:38:71:f6:14:00:98:
fc:df:53:82:ff:77:d0:e9:a8:4d:cc:8b:c5:06:30:
49:c7:94:5f:89:7c:33:1a:c2:7f:48:dd:03:df:b7:
1a:fe:91:18:2c:cc:82:68:9b:54:20:4d:13:fc:e6:
77:81:ae:a2:e4:09:27:b5:72:6c:1d:38:a7:5d:c2:
90:cf:5d:ec:74:e6:64:a0:3e:26:98:8e:9b:9a:9f:
84:0a:ba:e7:99:e6:ec:d2:3a:50:ea:5b:f1:38:fa:
e0:46:2c:37:0a:82:f7:46:5e:ab:e2:18:2c:df:06:
60:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9A:80:3B:1C:4D:EF:68:85:FF:87:2E:9F:3F:CD:70:9A:DC:6D:9B
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d8:ce:a9:3a:2a:ae:b5:d3:73:82:60:86:09:d0:72:29:d4:
fd:84:95:db:f9:fe:43:f8:6e:e9:e8:20:3b:29:ca:6e:db:ae:
45:d2:0f:04:56:1c:1d:28:60:bd:c1:53:03:9e:c4:5b:e5:77:
ec:d6:56:f6:94:3b:b3:b4:fd:b1:3c:e0:44:31:4d:6b:8c:57:
ce:38:ed:6d:c7:24:3d:78:39:96:a9:9f:21:08:c7:e7:69:fe:
f9:5c:9e:d1:50:02:98:c8:94:cb:b3:a7:37:11:a5:0a:2d:8f:
fc:34:d4:71:11:6b:7d:d5:58:80:40:11:87:64:8b:27:d8:98:
fe:7a:f3:7d:5a:4e:ce:74:51:ea:cd:60:13:6d:32:5d:f8:03:
1d:f8:c3:6b:7c:1b:39:92:ba:84:53:5e:c8:4e:3f:f8:f3:27:
3e:1f:be:9f:31:8c:a7:bd:29:73:a1:ed:b7:4a:2d:60:d4:8e:
10:e2:67:32:44:58:fd:11:7d:2e:cb:cc:e2:8a:2a:eb:4a:fb:
36:1f:94:41:a6:52:67:51:69:ad:12:c2:f3:b5:13:3d:5b:49:
95:2b:f6:8f:b9:80:a0:dd:8e:ee:e5:9e:bd:f7:f0:14:5f:8a:
07:38:d9:fa:42:c1:fa:c8:0f:d8:6b:f5:70:1d:69:3d:ea:88:
25:78:16:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:54:31 2026 by rpki-client