Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier: /CUXXXa7jPS6M7goTBtbQmbMjwNqEKARAdSUbV94Xn8=
Subject key identifier: 11:9E:57:BF:80:DB:3A:AD:DB:B4:81:17:13:7D:3F:B3:DF:56:A5:49
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 019EB620CCD8823A2EB65EBDD7EF363D8C92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number: 172C
Signing time: Thu 11 Jun 2026 10:01:03 +0000
Manifest this update: Thu 11 Jun 2026 10:01:03 +0000
Manifest next update: Fri 12 Jun 2026 10:01:03 +0000
Files and hashes: 1: KDQ-cFcPwQDy3bGFF_WSaIsvNNQ.roa (hash: nE15hquAwl/5m54NEuxKdixrl7Q9eNfNpFSjwL6hasY=)
2: ekbIvq4xoQE_G2aZ6OBWbjCke00.roa (hash: CDCAAwMBxMHZc9k/9U2grgMxj6swO3W7TTk/XqEYqRY=)
3: m7QfGcH9ehj8zUctNJKORHfF7YQ.roa (hash: jEz2eC4AxW2xJSso0f7640cBfazPEGudZTNrPpOM8vo=)
4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: jVqShnNcObgzabhtH3gE0IeaJ/afA2rfLdo3GedlAh4=)
5: xXThYeFskZa8CsEFNdXzq9WOPuU.roa (hash: cncRVt5HZa39EbyA1UHTjl7763HCDtgzdQM7tatOGC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 10:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:20:cc:d8:82:3a:2e:b6:5e:bd:d7:ef:36:3d:8c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Jun 11 10:01:03 2026 GMT
Not After : Jun 12 10:01:03 2026 GMT
Subject: CN=119e57bf80db3aaddbb48117137d3fb3df56a549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:11:a1:a6:da:45:d9:0e:96:0f:74:fc:3b:
03:b5:cc:d4:13:15:27:bd:eb:fc:46:47:2d:dc:21:
61:f1:a4:1a:75:5c:0b:80:68:cf:2d:82:52:70:ae:
8f:9b:a4:a5:c7:1c:9f:e7:ee:12:fd:2e:5e:05:88:
b6:d3:5a:a8:96:ba:69:b0:cc:5c:a1:d7:6f:63:2e:
1e:cf:ee:e0:2d:6f:35:e1:13:0c:25:49:18:94:d8:
fa:c3:d0:3b:fe:64:1f:d6:4d:dd:a1:32:ab:23:f0:
20:ee:35:4f:d6:2c:ed:83:5e:da:db:0b:37:c4:32:
4f:46:b2:cc:26:e0:7e:f5:0e:bc:f8:57:31:4a:ff:
67:f5:67:50:cd:e9:00:98:0c:00:3e:21:0a:33:ed:
f8:15:69:86:e0:ac:81:d0:55:87:b5:f5:7e:2c:1d:
a1:f6:31:c3:9d:4c:40:6a:3e:3c:05:d2:1b:63:b0:
e5:3c:46:7c:17:f1:74:2f:70:df:64:10:d1:a9:c8:
7d:08:4e:b6:c9:27:b1:b9:68:af:38:ff:eb:58:3d:
cc:fc:c5:31:4d:c1:9f:f1:83:be:9e:9f:d1:fe:c2:
f0:86:c8:ec:1d:52:38:cd:c4:7c:cd:04:7e:4b:d9:
f6:80:2f:a7:d7:3f:ef:3a:89:84:55:2d:2f:be:e4:
76:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9E:57:BF:80:DB:3A:AD:DB:B4:81:17:13:7D:3F:B3:DF:56:A5:49
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:23:cf:31:cb:88:8a:c5:06:eb:cc:83:ce:2d:1d:0a:3f:a2:
5a:eb:e4:08:d6:92:ca:a1:bd:55:54:9f:c0:70:9f:2e:86:a8:
f7:cf:f2:a7:70:03:17:0c:87:c6:99:92:10:43:0e:be:8f:eb:
3d:6c:37:67:5b:9e:cf:f8:34:4f:da:95:06:35:bc:67:80:8a:
d2:bd:00:22:66:19:6f:8c:77:98:76:b4:35:33:3a:42:65:46:
d7:f8:5a:31:7e:d8:9d:77:04:a2:e6:bb:92:bb:25:ad:c7:9b:
da:e4:2a:29:3f:65:76:23:9f:84:b1:e5:a1:7c:3a:62:47:74:
be:e6:b2:83:51:61:d4:c3:d3:65:a7:fa:f9:f7:e5:a9:0e:74:
2f:b9:b0:43:5c:4f:88:a2:21:a0:ca:4a:24:30:73:16:3b:67:
76:3e:70:2a:ca:3f:3c:54:e9:03:10:54:15:a4:2a:93:54:08:
f6:ad:6e:b3:89:d8:79:0e:db:fa:93:3a:79:52:8f:5a:c2:22:
b6:3c:5c:e4:4b:83:48:11:63:17:2a:0f:62:5d:ee:34:1f:2c:
23:6d:1e:f5:b8:36:9c:de:52:db:e3:97:2f:71:ef:88:d4:91:
01:28:75:b0:82:4b:f8:21:50:eb:4f:87:1c:63:f2:7f:2e:05:
e8:5f:43:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:03:31 2026 by rpki-client