Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json)
Hash identifier: 04YD3+0XIqc3oyKOT9AOzq3K4surAoNo/UYSm1A520Y=
Subject key identifier: 41:0B:D4:35:CF:63:0D:DB:CC:E7:05:FF:7A:18:79:94:50:C9:E7:2C
Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Certificate serial: 019E2881B220D17366402E3478E0F3F8B1D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
Manifest number: 07B9
Signing time: Thu 14 May 2026 22:00:48 +0000
Manifest this update: Thu 14 May 2026 22:00:48 +0000
Manifest next update: Fri 15 May 2026 22:00:48 +0000
Files and hashes: 1: 59MC3zCDEqoB6qxXydRSjiwklTA.asa (hash: hvU4mJ/8GiJoU66ydLaONKkQ68qHgCJGT50x/0n4g2c=)
2: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: 2HAbyXPgQuLUHMq+KhLEu1hFL+cM9L5HusI/ncJ8YgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:81:b2:20:d1:73:66:40:2e:34:78:e0:f3:f8:b1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339
Validity
Not Before: May 14 22:00:48 2026 GMT
Not After : May 15 22:00:48 2026 GMT
Subject: CN=410bd435cf630ddbcce705ff7a18799450c9e72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:69:b3:96:d0:cf:85:93:87:f6:89:c2:4f:b8:
a3:24:c0:ea:1f:49:dd:2d:36:27:8d:da:18:e9:fc:
b9:96:ac:00:35:b3:fd:76:c3:ef:fd:4f:1d:82:e1:
15:9d:a7:7b:52:36:83:f6:f3:5a:40:f8:c3:86:f1:
85:93:71:4c:44:5d:27:16:c4:6d:14:f5:2c:8a:7e:
3e:e2:ea:fd:28:4b:9c:f4:9b:97:f5:8f:c8:e6:e2:
87:d2:4e:69:44:4f:6b:a9:fc:01:4a:9c:69:d0:2a:
7a:7a:64:e2:25:55:d1:ac:91:ef:7c:76:81:c1:12:
7d:f7:81:0c:0a:c3:e7:80:17:37:4e:08:db:d1:0a:
5b:7f:da:90:c0:24:2a:d9:c7:b8:e1:fa:6c:db:0e:
20:53:70:f8:d4:ad:c7:24:15:f2:ed:a6:03:93:b3:
9f:0c:33:c7:b4:70:be:4c:c9:db:9e:07:b4:3f:8e:
3f:63:71:1e:56:15:9d:b8:03:f0:99:d5:80:b5:5b:
de:71:b7:d7:4c:85:71:3b:80:d0:79:64:6f:8b:5e:
f4:08:d5:87:27:20:92:ac:d1:ac:8c:ee:95:c5:35:
af:44:c2:bc:51:78:44:e6:ea:0b:34:75:19:3a:01:
80:40:e7:cd:97:d7:4d:3a:01:d7:b0:9d:18:98:5a:
6d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0B:D4:35:CF:63:0D:DB:CC:E7:05:FF:7A:18:79:94:50:C9:E7:2C
X509v3 Authority Key Identifier:
keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:82:bf:38:b8:ba:a8:61:b4:37:df:7c:d3:30:77:ba:9a:f1:
f2:a9:3a:59:d2:f3:e3:6f:a9:e0:e9:3c:f7:5e:5e:32:83:95:
c1:e5:32:d4:05:32:d0:e8:56:03:60:a1:9b:c1:af:af:df:5f:
6f:65:63:7f:d4:4a:e6:7e:47:b9:44:5c:6a:5c:ce:f9:90:a4:
e0:f8:42:e1:85:77:2d:8c:22:5c:f0:e0:cf:29:53:6b:f5:bb:
8b:9b:53:34:47:26:c5:0c:c9:bf:d1:00:42:ab:0a:1d:53:a9:
13:63:f6:42:aa:04:24:55:2d:2d:6d:48:c9:de:ca:4c:ea:8e:
a2:db:ac:1d:7f:99:5a:e1:fc:e9:9c:b3:51:41:8b:83:27:71:
94:72:df:37:66:5e:0f:2e:6d:8d:d6:5d:7d:d9:bd:5b:ae:32:
96:ca:85:14:f0:ad:a6:a5:74:39:b0:49:3f:b8:ff:0f:0c:1e:
36:e3:ba:de:7c:43:5c:b5:16:a9:4c:84:e9:7e:a7:f5:13:e3:
fc:e4:8c:97:43:42:ce:55:a7:4e:8a:de:15:6f:6d:ba:0f:ad:
ea:41:ce:10:12:20:d3:31:fc:2b:af:2e:10:34:48:24:5f:e2:
af:12:75:e2:40:80:c7:2b:f4:34:c5:d6:6d:0d:68:b9:11:c0:
17:ce:48:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:16:12 2026 by rpki-client