
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: r1IXsXhs9Ts89rSAYu2npltJqAZPsoJWSlTMac4tWb8=
Subject key identifier: FD:FF:D3:3C:2E:D5:7E:44:29:11:8B:68:F8:7C:6A:D3:80:AE:3C:45
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 019F19B1802CDFBEC17934E436A69275654F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 0C0B
Signing time: Tue 30 Jun 2026 18:01:30 +0000
Manifest this update: Tue 30 Jun 2026 18:01:30 +0000
Manifest next update: Wed 01 Jul 2026 18:01:30 +0000
Files and hashes: 1: 6dIzMwo0G6tAhuml4GfIJNjdjVQ.roa (hash: wpsN0tsYTVD9eZ1wIkFPmbb5yPxiazJ0MhFoB9FJQW4=)
2: DR9MoQCYtXaLoml4Dm1_5qJwPs4.roa (hash: nXlN3VKxLNyqdBBXWDPV2SzM6R5K4D1KJpMD50qdg/A=)
3: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: u18PTcw2XqRa4yJLIjqgRubxZhUZ9w623ugbUZIoaH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 18:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:80:2c:df:be:c1:79:34:e4:36:a6:92:75:65:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: Jun 30 18:01:30 2026 GMT
Not After : Jul 1 18:01:30 2026 GMT
Subject: CN=fdffd33c2ed57e4429118b68f87c6ad380ae3c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:20:e9:25:c4:24:4c:f5:83:ff:55:a3:fd:ed:
d1:0c:d2:16:9c:02:15:b4:5b:9d:90:90:3b:98:1e:
8e:68:99:0d:8e:15:80:0f:96:c9:de:c6:ee:6a:59:
7f:f0:a5:8d:28:fe:be:3e:54:aa:12:1d:6d:ed:6c:
de:ae:fd:5f:90:1e:d5:7d:db:6d:2f:08:ed:f6:75:
42:19:f7:88:39:1e:3a:0f:62:0a:80:fd:65:ee:39:
ba:83:1b:58:02:67:50:a7:b0:33:c1:81:7c:74:a2:
d5:53:c5:74:54:a3:e2:20:6a:bb:d7:c6:08:af:d3:
2b:a8:48:34:57:eb:63:17:49:94:a7:01:91:81:76:
bc:9a:71:ad:bb:62:61:21:0e:4a:03:c6:a6:79:0c:
03:d5:fa:e4:f0:6a:0e:d8:f7:02:f0:a2:6a:94:56:
96:2a:f1:c2:7d:ef:ba:55:f2:4a:04:a6:37:24:5d:
d2:ef:8d:85:e3:4e:b1:92:fb:76:fa:e2:b6:34:af:
50:76:34:4f:ab:f8:22:e9:38:08:db:7a:af:f1:a7:
c2:ba:0c:94:51:4e:b1:5d:29:0e:0d:3e:6a:b0:75:
cf:6f:e5:99:a2:80:bf:93:b0:66:4b:be:1f:45:77:
80:c5:95:e0:6c:32:ae:f0:4e:af:14:35:9d:f6:39:
12:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FF:D3:3C:2E:D5:7E:44:29:11:8B:68:F8:7C:6A:D3:80:AE:3C:45
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:42:2c:99:ed:a2:7c:2f:53:76:a6:e7:91:fd:73:ed:ff:57:
ee:89:f0:de:c5:9e:7c:79:32:6e:1b:68:b9:86:01:1e:62:30:
7f:e3:76:ee:45:00:b8:bb:ee:65:6b:7b:8b:ef:76:d4:8a:14:
cf:8a:eb:9c:1a:ef:82:7d:f2:b1:5a:f2:46:30:b4:30:6f:f7:
a1:36:fc:8c:a7:31:48:3e:6f:40:66:af:a5:28:61:b7:32:6c:
28:4c:fa:20:a5:45:cb:69:db:1f:13:3e:19:9a:c9:70:dc:fe:
5f:52:df:1a:e5:15:0e:5e:d5:7f:13:31:89:95:ee:cc:a9:53:
e4:5f:eb:45:6f:08:1c:3b:30:5f:70:b0:14:e0:43:c4:3f:1a:
b0:20:a1:29:04:b4:d8:27:c0:e3:0c:7c:4c:c9:e9:29:1c:ac:
4f:30:82:0f:fe:d8:6f:60:a8:1d:83:d5:ea:ab:d7:d1:5b:77:
56:e9:e6:4b:bb:5c:3b:c7:d9:24:39:52:8f:7a:cc:09:09:06:
3c:b8:3d:bf:d3:2d:a9:2f:a1:6c:98:a5:3e:5f:1e:99:b8:4d:
24:b8:94:e2:e7:bf:d7:21:32:51:18:7e:be:e0:ca:6f:f9:2c:
5b:14:b8:a0:d6:c3:14:d9:5f:4e:b3:25:86:95:ac:29:21:85:
f8:b0:e0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:17:38 2026 by rpki-client