Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json)
Hash identifier: DejPtAxKKYI9ZaqO29Nlt6ia7xd00VHXJxP8NX0lUTo=
Subject key identifier: 34:C2:D2:64:67:A0:71:B3:22:DB:FA:BE:18:AB:EE:96:33:A0:86:61
Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Certificate serial: 019F122EE693E882BD342A4AD203101D8198
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
Manifest number: 0832
Signing time: Mon 29 Jun 2026 07:01:31 +0000
Manifest this update: Mon 29 Jun 2026 07:01:31 +0000
Manifest next update: Tue 30 Jun 2026 07:01:31 +0000
Files and hashes: 1: 59MC3zCDEqoB6qxXydRSjiwklTA.asa (hash: hvU4mJ/8GiJoU66ydLaONKkQ68qHgCJGT50x/0n4g2c=)
2: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: GyZz60RaBmGEogscnToT0kCMhPDOKddUFX1Egbylk+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:e6:93:e8:82:bd:34:2a:4a:d2:03:10:1d:81:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Validity
Not Before: Jun 29 07:01:31 2026 GMT
Not After : Jun 30 07:01:31 2026 GMT
Subject: CN=34c2d26467a071b322dbfabe18abee9633a08661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4a:b2:42:56:47:4b:24:56:35:92:04:d0:73:
8e:ed:6a:79:b2:6f:21:56:c5:03:46:dd:2f:11:32:
6b:ff:54:bb:1a:7e:15:bb:fd:7c:dc:3f:68:f6:b3:
25:ec:a8:c0:01:b3:9b:d1:6e:db:d5:03:07:03:d7:
3b:4d:eb:3c:f0:cf:b5:43:9b:6a:93:fb:3e:6a:3c:
91:19:39:bd:ff:1d:e2:de:3a:48:b7:a9:f5:91:e8:
10:78:67:4a:10:59:8c:53:d4:37:e4:36:25:8c:51:
b9:14:63:2d:d9:f7:1d:e7:63:03:8d:7c:a7:6c:d7:
f1:19:4d:74:bd:76:00:b9:fc:73:ea:59:56:42:e4:
e4:48:fe:dd:28:58:be:36:50:52:e1:59:43:fc:71:
e4:ef:b7:1e:53:09:4f:0a:ee:c5:89:21:f8:2d:87:
11:8a:21:f9:e8:93:45:30:2b:33:70:de:4b:a0:db:
4f:b5:aa:2d:78:c8:b1:eb:44:b1:eb:55:81:e5:92:
9a:17:5d:76:5b:1a:05:72:dc:da:d4:72:ed:4c:34:
bc:42:28:17:a1:b5:42:f0:d0:7d:b7:9f:88:c6:1c:
44:76:68:c0:ab:37:54:63:52:95:37:a7:ab:d6:89:
9e:db:5e:3d:fc:f3:34:ca:02:9d:31:95:a4:a2:19:
98:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C2:D2:64:67:A0:71:B3:22:DB:FA:BE:18:AB:EE:96:33:A0:86:61
X509v3 Authority Key Identifier:
keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:2e:82:ce:26:74:cd:f7:8e:3b:a7:89:ad:bc:68:0b:04:0d:
c8:88:97:15:d0:08:31:bd:53:65:69:c6:0f:29:80:c3:22:d8:
2d:f2:41:3b:42:1f:8a:2e:e5:a8:fe:c1:92:0d:6c:69:d7:cf:
2e:51:9f:7c:25:87:f3:63:a4:bd:22:77:4f:33:9f:39:cb:b0:
a5:bd:c1:38:1e:d1:ea:76:51:27:49:e2:64:45:52:e5:67:f2:
81:b2:42:97:ad:3f:a8:50:eb:ce:61:49:c5:4c:8a:23:37:ba:
0c:89:80:bc:79:c1:2a:ce:64:45:6e:c0:67:04:fc:64:16:3e:
b3:c9:2e:91:89:43:3d:c4:25:81:50:2c:13:f2:08:7c:b3:81:
92:91:b7:4f:ee:8b:54:31:30:b2:1b:0e:93:7f:39:f3:17:77:
aa:2b:cd:c7:40:ba:21:ff:8d:89:ba:f1:76:c3:73:89:96:93:
60:07:13:2b:b8:d3:16:a3:34:8e:34:45:b6:c0:fa:6e:7f:e6:
5e:b5:7f:91:5a:eb:7a:66:19:ef:ad:8f:2c:9c:cd:81:93:60:
4b:74:3a:4e:fd:e4:0b:b6:c8:ff:5d:05:24:4b:36:00:8b:e6:
94:6a:03:c6:db:4e:bf:2d:b6:d6:eb:a7:5a:10:eb:b1:89:44:
b8:28:52:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:39:46 2026 by rpki-client