Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: HUSNHQp9/25y29qypzNoEfQBbP1FPNxCpI3tLu7N1BM=
Subject key identifier: 30:78:0C:09:4F:F3:3E:27:8A:43:E2:ED:E6:23:1A:99:E9:F6:E5:3C
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 019D36E4C8F53ABF57D773A726A7E2657E7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 0B11
Signing time: Sun 29 Mar 2026 00:00:56 +0000
Manifest this update: Sun 29 Mar 2026 00:00:56 +0000
Manifest next update: Mon 30 Mar 2026 00:00:56 +0000
Files and hashes: 1: 6dIzMwo0G6tAhuml4GfIJNjdjVQ.roa (hash: wpsN0tsYTVD9eZ1wIkFPmbb5yPxiazJ0MhFoB9FJQW4=)
2: DR9MoQCYtXaLoml4Dm1_5qJwPs4.roa (hash: nXlN3VKxLNyqdBBXWDPV2SzM6R5K4D1KJpMD50qdg/A=)
3: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: PEbXogk9+6URtBdhnEA07/1c5naO9rDKdMuWZJHrZU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e4:c8:f5:3a:bf:57:d7:73:a7:26:a7:e2:65:7e:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: Mar 29 00:00:56 2026 GMT
Not After : Mar 30 00:00:56 2026 GMT
Subject: CN=30780c094ff33e278a43e2ede6231a99e9f6e53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:20:25:74:a2:43:6a:a3:ba:2d:86:cc:e1:ca:
35:1f:6f:39:25:41:a3:6a:44:6e:c0:e3:41:f5:8d:
b4:0d:d3:94:d7:3a:27:ff:34:bb:1f:93:b9:96:c0:
ab:e2:95:dc:14:48:bd:72:c2:de:e4:3a:44:36:2e:
e1:f8:30:a0:63:ae:87:31:f3:ec:08:2b:a7:cf:98:
b0:6a:99:74:b0:f4:d6:e4:d1:d2:10:18:6b:25:05:
40:00:d7:e3:fc:16:45:2e:61:eb:79:0f:66:22:49:
b0:a5:86:0b:c8:96:34:5e:61:3a:08:5d:33:d9:e2:
36:f3:cc:a0:f5:26:fc:f4:bf:11:d7:79:3e:97:c0:
2d:fc:93:52:b5:51:28:52:01:db:c2:75:ee:84:80:
f5:f3:70:02:e0:3e:68:01:ad:2e:ef:e2:d3:03:43:
94:90:8a:b8:4b:9f:9c:59:87:03:9c:76:2d:e4:12:
21:dc:93:a6:90:24:9b:8b:16:0b:c1:92:6a:ee:e6:
5e:a6:52:01:f1:f5:3f:f3:5c:26:ee:13:a4:c4:5c:
c2:01:37:3a:ed:c0:f4:8a:a1:9a:7f:9f:cf:2a:31:
03:82:a7:a8:d8:11:be:6f:f1:34:39:5f:9c:26:5f:
6e:f6:c4:93:6c:a1:00:7d:fc:f3:ac:48:07:50:b5:
41:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:78:0C:09:4F:F3:3E:27:8A:43:E2:ED:E6:23:1A:99:E9:F6:E5:3C
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:9d:e6:1b:f6:2d:9b:fa:6f:62:be:61:ae:1f:9c:53:51:c0:
29:4d:da:3f:ad:ce:40:b9:fb:a9:22:47:35:37:8b:57:f1:5d:
4f:c1:fc:b0:b1:ca:2e:08:8d:a5:d9:dc:86:e8:7a:43:5e:76:
aa:83:ee:62:85:c7:7e:f5:56:7e:ee:42:d7:9b:ce:df:a1:86:
ba:44:c0:11:42:96:50:a6:da:46:79:b4:2f:93:ea:bd:bf:fc:
bc:30:da:c9:e4:c2:e9:cf:85:1d:6c:65:cc:5e:00:a3:3c:20:
1b:fc:87:cc:4c:42:8a:0f:5f:c6:bd:3c:9e:af:30:1e:80:f2:
c4:7a:16:dc:f9:f7:70:8b:e4:a9:d3:af:3b:12:65:15:9f:8a:
14:4e:af:81:6b:fd:ee:9d:9b:85:60:39:55:63:3b:ef:ee:6e:
b9:cf:f3:79:cc:b0:e8:28:04:e4:51:4b:e9:e2:a3:0e:d4:e8:
c6:e7:60:c8:6b:b6:13:f8:9d:77:87:b4:6e:34:6d:4f:da:dc:
1d:14:12:e5:c6:55:81:07:3e:3f:f9:33:7d:b2:92:27:32:2e:
d1:1a:3e:40:0a:c9:bd:a4:ed:53:f7:b9:9d:d2:e7:e6:f8:14:
8e:36:09:c3:2e:69:82:98:48:d1:49:5d:98:50:15:8e:09:73:
1f:05:4c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:13 2026 by rpki-client