Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: fJsLeQ3ZXVqWx7C8gMWzsG9PWPmxObFJcXzzi+4cCm8=
Subject key identifier: BB:D5:EB:34:A4:99:BD:6F:2B:AC:2F:7B:73:A6:C7:7D:90:C1:97:8D
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 019E2E170E3520BF424CC9D04994F2180A8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 0B91
Signing time: Sat 16 May 2026 00:02:03 +0000
Manifest this update: Sat 16 May 2026 00:02:03 +0000
Manifest next update: Sun 17 May 2026 00:02:03 +0000
Files and hashes: 1: 6dIzMwo0G6tAhuml4GfIJNjdjVQ.roa (hash: wpsN0tsYTVD9eZ1wIkFPmbb5yPxiazJ0MhFoB9FJQW4=)
2: DR9MoQCYtXaLoml4Dm1_5qJwPs4.roa (hash: nXlN3VKxLNyqdBBXWDPV2SzM6R5K4D1KJpMD50qdg/A=)
3: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: LvvLmVszFt9S57xS8dSwBn2ZBp8oOMxTMXq85k8A8dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2e:17:0e:35:20:bf:42:4c:c9:d0:49:94:f2:18:0a:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: May 16 00:02:03 2026 GMT
Not After : May 17 00:02:03 2026 GMT
Subject: CN=bbd5eb34a499bd6f2bac2f7b73a6c77d90c1978d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8a:52:e4:cd:e7:d8:82:81:2b:c7:27:03:34:
de:e4:33:16:7f:4b:22:a1:de:0b:dd:b9:87:67:05:
a2:9d:89:05:b9:5f:6f:8e:63:cb:2b:7d:f2:38:c1:
67:5d:5f:88:00:0e:fd:10:80:c7:77:f1:06:26:a4:
d2:65:f5:fc:44:e4:25:5a:14:69:ec:ed:81:59:d6:
da:78:c9:f8:42:ac:a4:6e:e2:30:b8:f5:ea:96:eb:
1b:2b:78:55:5f:85:f7:db:cf:0c:ae:84:36:58:0b:
1a:ea:97:4e:d3:0d:3f:d5:5e:ae:45:e0:a4:e5:4b:
42:35:53:5b:a8:2f:da:e9:14:5d:be:58:80:7c:f4:
a4:98:e5:8d:18:4e:65:2a:86:e2:df:a3:78:60:2a:
fd:b9:7d:87:83:31:b1:c3:39:b9:7e:2b:57:9e:4b:
48:80:11:3b:6b:0c:23:71:21:7a:bb:89:2e:92:d3:
20:7a:6f:d5:e5:59:d4:ab:07:b0:c3:dd:0f:77:7e:
a8:33:fe:31:4c:b9:d4:6f:f3:29:01:d6:c6:46:5c:
4e:d9:f3:f8:b8:4d:e1:43:7b:f9:b8:fc:90:5a:b9:
a5:a5:dd:4c:1a:bd:38:70:48:2e:2d:5a:0a:27:17:
e2:3a:a6:d9:f7:9d:7f:57:1b:4e:55:9b:cf:18:60:
22:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D5:EB:34:A4:99:BD:6F:2B:AC:2F:7B:73:A6:C7:7D:90:C1:97:8D
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:70:2e:84:d2:2b:68:19:fd:2b:6c:22:38:59:69:0d:07:83:
8c:0f:84:d2:e1:ec:38:d2:99:91:d3:01:71:7d:70:a7:d6:8d:
cb:3a:05:24:00:16:70:01:cf:6e:22:54:3a:f5:13:2f:e2:b8:
51:28:83:77:65:94:ce:ed:b5:ba:b1:38:33:8a:e6:e4:a6:e6:
78:f8:2a:ef:aa:56:43:2f:84:36:9a:94:2f:8e:81:2f:6e:ec:
7d:23:8c:f8:c4:9e:93:60:30:8c:25:19:88:3c:71:d2:08:cb:
aa:a2:ce:42:34:04:76:c8:20:b1:e6:4c:28:1e:bd:f7:37:62:
c8:31:62:e1:41:a0:c0:eb:ce:4f:c4:08:60:c2:9d:ed:e1:80:
89:3d:8e:ae:22:31:19:d8:42:84:32:d9:71:82:c4:e1:35:dd:
42:cd:1a:c6:39:be:6c:f1:0a:1b:ca:31:f3:47:9e:fe:c5:ba:
6b:7e:77:72:47:6e:2e:58:81:9b:52:f4:6a:6d:6b:13:9a:48:
a3:74:81:86:76:08:1c:e2:8a:83:f8:b3:63:80:4e:ac:f4:18:
73:df:36:a9:67:9d:cc:d7:0b:dc:28:46:7a:7d:c2:62:22:72:
c6:e6:ca:b2:5c:fe:86:33:65:fe:c5:40:b0:d9:b6:c6:ae:ac:
8a:a3:dc:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 02:31:59 2026 by rpki-client