Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: Y+pOrCj5zNRcREjf1grybB/gqog//4jbmCAIg8F9DN8=
Subject key identifier: C4:2B:D6:C7:1B:FF:D8:63:48:39:21:EA:AB:AB:56:98:7C:0A:F6:C2
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019DCFE3C4E0EB37E15E2D421C92D04E7668
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 186F
Signing time: Mon 27 Apr 2026 17:01:43 +0000
Manifest this update: Mon 27 Apr 2026 17:01:43 +0000
Manifest next update: Tue 28 Apr 2026 17:01:43 +0000
Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: 53wBi12LnwNz3ZyPFcpeia4UOSu/+t9uwn46hW4rYIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:c4:e0:eb:37:e1:5e:2d:42:1c:92:d0:4e:76:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Apr 27 17:01:43 2026 GMT
Not After : Apr 28 17:01:43 2026 GMT
Subject: CN=c42bd6c71bffd863483921eaabab56987c0af6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:82:50:2c:1a:0c:c7:78:04:7b:79:61:53:42:
0a:b3:3a:23:8d:d7:0e:71:df:7d:05:ce:8f:71:bc:
a5:9a:b2:45:f2:a0:d1:d7:e4:20:68:11:d7:c7:10:
d6:c2:4d:72:db:50:65:23:9a:ea:3c:d9:11:d4:20:
19:31:05:ee:84:7a:7a:6c:7c:a8:85:b5:36:cc:2e:
20:c2:bd:e5:97:62:ef:0a:24:69:f5:87:dd:69:50:
78:52:1c:c3:b7:7b:9c:95:d3:4c:83:b1:08:e5:a2:
ec:97:a0:98:eb:bb:8b:0c:b2:d3:7b:77:68:c3:0d:
fb:12:6c:78:d7:24:27:47:56:d3:74:b1:a5:45:83:
1e:31:4a:d5:bf:e1:60:6e:17:fc:6a:78:b0:58:30:
8f:2c:05:6f:ed:d3:89:7b:da:86:d2:c2:8a:8c:51:
f7:c7:ec:89:ca:f0:3a:68:fe:a0:ad:26:90:71:80:
34:ca:7a:06:e3:36:74:8b:2e:a6:2e:fe:82:71:71:
03:da:fc:d8:c4:ff:e2:8b:a3:4b:86:6c:39:a7:43:
69:97:dc:7e:3c:da:d6:d2:93:cd:38:54:3c:b5:3c:
e7:42:15:28:09:be:ae:81:18:0c:75:85:a7:50:6c:
a6:e3:f5:a3:67:41:84:d4:21:a4:54:60:b3:34:20:
41:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2B:D6:C7:1B:FF:D8:63:48:39:21:EA:AB:AB:56:98:7C:0A:F6:C2
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:c3:29:d5:30:40:de:02:de:e8:d5:8e:57:89:f1:a2:4c:6d:
6b:9f:48:9a:f9:3c:42:86:e8:00:e6:ae:ad:2f:7c:b4:88:7b:
09:47:b9:13:1d:b7:14:7c:b2:ad:33:7a:6c:a5:74:f7:42:7c:
5f:9f:97:99:80:2b:39:f4:79:f0:9d:85:6f:7a:91:fc:9b:f7:
39:d1:d0:41:d4:a6:8f:e2:e3:ea:b6:df:ee:c1:1d:10:e2:ba:
39:8e:6b:f5:72:a9:cd:61:66:43:66:5a:1c:dc:3d:57:4e:27:
51:04:a7:f2:4b:f8:b3:b4:88:23:65:ae:83:73:64:73:e3:0f:
dd:0a:3c:d1:7c:19:34:77:ce:6d:ee:23:31:74:be:7f:1c:ab:
bd:15:04:4a:2c:3e:fa:c8:3a:d9:c5:51:68:42:ee:70:ea:43:
5e:34:6c:ac:75:f3:78:6d:6e:75:92:b3:05:25:75:e3:5b:dc:
e4:14:7e:41:8d:4b:9a:c6:f7:03:73:bd:9f:1a:4a:ca:67:99:
c1:99:e2:3d:e2:55:bd:c2:7a:18:eb:05:da:79:99:c4:cd:00:
a1:f9:23:a1:d5:c0:11:91:e1:33:8d:2a:be:83:29:b0:d0:24:
3a:58:41:a0:3c:76:3e:04:62:3a:9a:db:f7:3d:68:17:dc:cc:
4c:ae:55:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:10:04 2026 by rpki-client