Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: 8joGe8qG4IefLfY4DtZ8Q2toOON2CPV8tGQQH6TW0+Y=
Subject key identifier: AE:77:C9:FE:74:09:94:C2:88:F4:68:3A:EE:03:E2:FF:F3:03:E2:6F
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019D612A74549F667295F6F621CF6AE11D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 0B7F
Signing time: Mon 06 Apr 2026 05:01:05 +0000
Manifest this update: Mon 06 Apr 2026 05:01:05 +0000
Manifest next update: Tue 07 Apr 2026 05:01:05 +0000
Files and hashes: 1: 5-fSRldHA_TyCo0Af_n4H7VHHoo.roa (hash: n/VVjN3d2+A+fBj8+Kv149bG42PjdEV7GiSsjv6L+Uw=)
2: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: RJPcNXp5Ps8YzjoJJ6LkdNL8X6ixx6pmcCufQbwqKJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Apr 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:61:2a:74:54:9f:66:72:95:f6:f6:21:cf:6a:e1:1d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Apr 6 05:01:05 2026 GMT
Not After : Apr 7 05:01:05 2026 GMT
Subject: CN=ae77c9fe740994c288f4683aee03e2fff303e26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:30:1b:6f:b5:76:27:6e:41:1e:38:1d:95:cd:
5d:4f:97:0b:ba:4d:08:a5:a5:df:b3:ab:31:38:6f:
38:77:ff:3d:42:c5:36:01:ff:f6:fe:79:aa:31:0c:
0b:75:c7:f7:87:c0:e8:f0:ef:bc:12:58:c9:c9:fd:
9d:0b:41:fb:c5:16:45:4d:9d:71:1a:62:48:34:50:
f5:45:44:a4:4b:72:26:cc:73:3f:26:2f:36:4d:e8:
1a:2e:0a:84:84:15:7b:ad:bb:e6:5b:09:3c:f5:b9:
c7:37:8b:66:bc:33:7b:aa:a5:0c:46:c3:9a:1c:86:
e7:c2:39:db:46:35:2c:48:9b:28:93:a7:4b:d8:4c:
9f:48:d8:d0:84:54:e7:e4:12:96:d4:05:dc:5c:64:
9c:29:00:c7:7e:58:d2:f0:0e:87:c2:33:f3:5f:ca:
52:9c:be:d5:31:bc:b4:31:5f:16:72:39:10:e9:af:
6c:2c:b7:1a:31:c8:f7:ab:77:cd:d9:2e:5e:69:81:
d9:df:81:98:7d:6a:d4:a0:39:e7:6a:8c:b9:86:86:
e4:f9:a7:47:f1:3d:30:f4:aa:5a:8e:62:03:25:2d:
24:1f:94:3f:b0:c6:67:ee:e5:26:c4:e7:43:3b:18:
6e:e4:bf:b2:4a:e4:c2:3d:f2:54:32:60:c4:b6:1f:
4a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:77:C9:FE:74:09:94:C2:88:F4:68:3A:EE:03:E2:FF:F3:03:E2:6F
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f0:9a:e9:ae:a8:b4:e2:f4:eb:e5:3b:f7:95:c7:9b:e3:df:
c6:f6:39:b6:cc:c0:c1:5d:77:f8:ff:55:5d:e2:08:e8:45:51:
af:97:84:78:a5:54:d6:6f:25:7c:e1:69:e3:b7:55:d2:f9:fd:
b6:e5:32:a1:24:4d:03:97:76:4d:a4:45:9b:34:e8:9a:49:51:
b6:c7:e7:be:1e:2a:5a:cd:98:22:1d:2f:ca:5e:0e:72:2a:ff:
81:2c:65:62:e3:02:35:fc:e5:08:a8:73:80:e9:26:8b:38:27:
9b:d7:ff:68:e6:4e:2f:27:50:e3:f9:3c:a5:bd:52:71:0d:19:
12:a1:41:dc:dd:d9:f5:6a:25:ca:47:17:f3:5a:c9:30:f9:77:
98:c2:3b:90:05:bb:29:f5:48:af:d5:43:2a:6f:f7:de:13:dd:
88:5e:40:65:83:05:30:6e:bf:df:25:24:af:69:d6:e1:1c:b7:
bc:6a:ce:b1:e5:7a:27:d5:52:92:ea:d3:d8:38:d2:36:77:f0:
b0:9d:8e:da:c9:5b:2e:e3:87:20:2f:0e:4a:72:fa:2c:88:56:
c3:f8:e4:cb:12:6b:33:76:e0:51:8b:1d:72:77:a5:af:74:fc:
b0:49:90:bd:94:bd:dd:41:9a:59:79:8e:c1:8e:58:02:86:66:
a5:de:c3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 13:37:04 2026 by rpki-client