Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
File: pxrCOk0-z8vKRROJaxeuToloKng.mft (raw, json)
Hash identifier: wEkC0E2TFJBmwoLM57uhLuOlPBZYT3dTb40IXXvcCqI=
Subject key identifier: 73:5E:9D:D4:A6:7A:CF:55:F9:B7:27:25:D1:8E:6B:06:B3:35:9F:9E
Authority key identifier: A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
Certificate issuer: /CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Certificate serial: 019D397803145FCC464913D7A03FFE14A5E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
Manifest number: 0261
Signing time: Sun 29 Mar 2026 12:00:59 +0000
Manifest this update: Sun 29 Mar 2026 12:00:59 +0000
Manifest next update: Mon 30 Mar 2026 12:00:59 +0000
Files and hashes: 1: lqZ_FZi5OZNxjRgi3lzjeMY1GAk.roa (hash: sEkCH/URmL0mijxwIa1jp+WkOSTIx15bnsPupZsfVfw=)
2: pxrCOk0-z8vKRROJaxeuToloKng.crl (hash: /d0NWDNn/Ft0hAl//XDjsH3K8zqYVN+iy/BUlbZVSyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:03:14:5f:cc:46:49:13:d7:a0:3f:fe:14:a5:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Validity
Not Before: Mar 29 12:00:59 2026 GMT
Not After : Mar 30 12:00:59 2026 GMT
Subject: CN=735e9dd4a67acf55f9b72725d18e6b06b3359f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:42:09:44:0f:b3:21:43:42:1e:b9:bf:f8:78:
9e:91:c1:2c:76:4a:0a:a0:2b:de:51:e3:9c:ad:cf:
28:fd:6b:c6:ca:34:74:a8:e1:f6:74:70:56:a0:4f:
26:f7:4b:f8:19:3e:6d:ca:0a:a9:82:23:91:6c:2f:
07:b7:91:8d:62:71:b6:64:86:49:43:38:fa:5a:ad:
c8:7f:fb:dc:cc:49:ab:19:6c:0f:dd:0a:dd:27:fd:
da:27:54:37:f1:31:14:ce:eb:48:43:33:d4:41:10:
95:84:14:54:4a:41:23:5a:da:d1:65:26:5e:c4:64:
22:3b:57:62:7c:54:dd:5b:dc:62:9e:f5:84:1c:ed:
20:79:93:35:55:b8:6a:70:ed:73:3f:07:98:70:2d:
f1:c2:f9:88:5f:12:31:d8:96:58:9d:2b:b3:3a:c5:
ce:3c:f9:64:ac:5d:24:0f:40:c4:30:7d:77:c8:f7:
41:a0:93:b2:c3:d8:c4:cc:67:13:c0:54:eb:8a:04:
13:56:fc:23:e2:d2:f2:df:2b:d8:10:aa:fa:ea:17:
c0:7e:f9:bf:09:86:d5:36:91:10:1a:12:45:4e:f5:
30:9d:1b:11:5a:e5:f5:d4:10:3b:2a:bc:de:d0:73:
bf:08:a1:3c:ef:d5:24:21:59:27:46:1e:d5:e4:34:
1d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5E:9D:D4:A6:7A:CF:55:F9:B7:27:25:D1:8E:6B:06:B3:35:9F:9E
X509v3 Authority Key Identifier:
keyid:A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d6:51:1f:90:12:68:e2:d8:4d:38:03:ab:17:2e:2a:b0:fd:
75:94:8c:0b:a0:db:20:fe:91:e4:73:40:bf:b1:9e:f5:38:b2:
f1:25:ab:b6:cc:f3:79:ad:16:38:89:3a:79:44:b8:de:ea:fd:
69:cc:c1:35:19:e1:dc:e3:10:68:5c:e9:f1:3a:ba:14:c4:7a:
7d:64:67:f6:cd:5e:b9:97:e7:bb:f9:64:33:80:ce:ad:8e:fa:
2b:9f:e0:d1:6a:af:4a:1b:74:c5:fa:9f:27:f8:13:bf:8d:49:
02:de:e3:9b:b4:50:3b:48:24:2d:37:66:53:82:e9:4e:c2:9f:
de:33:46:85:0c:62:1d:00:8f:a2:e9:5a:61:1a:34:24:55:6c:
1c:66:dd:a3:40:a9:ea:63:34:43:38:99:e3:9b:45:9d:da:2d:
17:e8:4e:d9:ec:5e:bc:18:7b:ff:bd:8e:42:73:6e:59:6c:ae:
2e:93:59:93:06:e7:5b:bf:28:69:61:63:1b:c3:fb:29:cc:a6:
ae:35:9e:bf:71:87:de:34:a4:25:ab:ac:9f:e1:dd:1a:00:65:
1f:e8:04:c4:86:15:75:e4:10:b7:e1:ec:6c:dc:e7:df:8f:25:
34:5e:3f:21:7a:d1:7b:28:85:61:d8:16:8e:58:6c:38:58:fe:
c0:d8:06:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:05 2026 by rpki-client