Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier: FBAYCcrQejggV/EulQgdpM15a7YSyZ+z2jS2q6afl+4=
Subject key identifier: 8C:39:5A:CC:87:FF:17:A1:C9:FA:1D:BE:FC:A4:7E:C4:FC:C2:89:80
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 019DCC748CA74F343561E4AC53C32BF1222A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number: 16B3
Signing time: Mon 27 Apr 2026 01:01:23 +0000
Manifest this update: Mon 27 Apr 2026 01:01:23 +0000
Manifest next update: Tue 28 Apr 2026 01:01:23 +0000
Files and hashes: 1: KDQ-cFcPwQDy3bGFF_WSaIsvNNQ.roa (hash: nE15hquAwl/5m54NEuxKdixrl7Q9eNfNpFSjwL6hasY=)
2: ekbIvq4xoQE_G2aZ6OBWbjCke00.roa (hash: CDCAAwMBxMHZc9k/9U2grgMxj6swO3W7TTk/XqEYqRY=)
3: m7QfGcH9ehj8zUctNJKORHfF7YQ.roa (hash: jEz2eC4AxW2xJSso0f7640cBfazPEGudZTNrPpOM8vo=)
4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: Xy3er544/y2C5iSz3DYr08HslHACtVWRy8iXlETWD1s=)
5: xXThYeFskZa8CsEFNdXzq9WOPuU.roa (hash: cncRVt5HZa39EbyA1UHTjl7763HCDtgzdQM7tatOGC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:74:8c:a7:4f:34:35:61:e4:ac:53:c3:2b:f1:22:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Apr 27 01:01:23 2026 GMT
Not After : Apr 28 01:01:23 2026 GMT
Subject: CN=8c395acc87ff17a1c9fa1dbefca47ec4fcc28980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:28:84:e1:7e:36:20:f5:53:51:a3:87:90:
11:9c:b9:45:92:70:61:c3:93:d1:64:62:38:39:ff:
62:5c:a3:ec:b8:2b:22:43:3f:02:6c:9f:48:ff:10:
58:93:90:d0:87:79:60:1e:6f:b2:9f:44:3d:8e:aa:
21:c4:ec:ed:d1:c0:70:ff:e9:d0:77:ef:e4:47:3e:
33:d7:15:cf:0c:31:a3:0f:2a:d7:5c:89:ec:2f:58:
4f:93:8b:7f:78:db:32:c8:8f:07:90:1e:cf:8c:a1:
53:86:3b:ff:cc:10:21:ff:d6:cb:9c:9f:8f:60:48:
6f:92:56:fa:53:48:ca:b9:69:5c:c1:c9:57:75:23:
cd:d6:7c:87:24:80:94:69:31:cc:e7:02:c8:36:9f:
3c:26:88:c2:e7:5f:2d:4a:e2:af:8f:cc:3a:e0:e3:
20:ab:7e:d2:70:a8:5e:23:55:5c:cd:04:a4:b6:69:
bc:ee:fd:59:11:44:0f:29:2c:63:19:5e:35:41:89:
a3:f5:6d:eb:e7:75:af:06:74:45:00:25:d2:c7:52:
33:4d:7a:78:7f:7d:ed:f7:bb:79:f6:1f:5d:98:0a:
1f:3d:24:dd:9f:39:68:95:c9:bf:60:94:06:83:53:
2b:80:4c:6e:54:ee:16:ba:77:f1:6b:09:b3:d2:cc:
97:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:39:5A:CC:87:FF:17:A1:C9:FA:1D:BE:FC:A4:7E:C4:FC:C2:89:80
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:06:3b:59:40:1a:2e:4d:1b:1e:6d:30:d9:5a:c6:ad:0f:1a:
a6:92:24:22:bd:47:42:b5:24:64:5f:2c:8f:eb:45:91:62:ba:
15:32:74:26:f5:f9:ab:35:3c:6e:44:b9:79:0f:8a:24:4f:48:
e9:53:13:01:1f:ca:d5:92:f3:24:e3:5b:92:87:23:8c:dc:0a:
1b:f4:d9:13:80:fe:bf:6a:75:44:8f:8f:10:2a:17:ff:20:40:
5f:08:4a:eb:57:1e:99:4c:c3:78:d0:ed:34:59:61:32:5a:93:
99:a3:00:38:50:de:e8:51:35:5a:5a:92:32:24:ae:61:ab:db:
42:cc:c0:90:9c:93:4a:22:2f:73:e0:6b:20:cc:75:38:e0:9a:
9f:5f:8f:43:1e:b0:9a:0a:dd:bb:06:3c:5b:86:3b:2c:8d:c9:
ba:2a:9b:fc:a7:92:3d:c0:46:e8:82:7e:71:cd:08:e4:99:57:
72:b5:ba:d9:2f:7c:5b:ee:51:34:c2:70:56:ca:cd:74:fc:81:
aa:cb:d2:2a:d8:6f:52:c0:7f:c2:7f:8a:79:51:e9:5c:41:dd:
84:9e:6c:be:39:e4:36:0c:1c:7d:b8:ee:57:62:29:d8:2d:67:
7d:f9:09:75:c7:ef:d2:13:a3:70:09:08:0f:2b:29:69:d9:bd:
e0:c5:2e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 04:26:40 2026 by rpki-client