Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: HxMuQRDQO0DB1vWbF0t+zDSayyC0PQ1bOd2v80eFD7Q=
Subject key identifier: 94:78:B9:C9:19:1C:A0:D8:14:60:D5:35:68:AB:3C:B2:4E:36:39:E9
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 019DB2EB75DDA4B1FF90F61622358AFFBD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 120C
Signing time: Wed 22 Apr 2026 02:01:08 +0000
Manifest this update: Wed 22 Apr 2026 02:01:08 +0000
Manifest next update: Thu 23 Apr 2026 02:01:08 +0000
Files and hashes: 1: gIBhWboHIlbVLsOrG6_KrzVsgsg.roa (hash: JloPm0symVV0m3PFdsgfuUWNtGXtbv/UJhvDlmOgv8I=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: TXzEW/r4TiLoZTfjxsW1hnutcSQ1d6NjXpRzFCtoZ64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:eb:75:dd:a4:b1:ff:90:f6:16:22:35:8a:ff:bd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Apr 22 02:01:08 2026 GMT
Not After : Apr 23 02:01:08 2026 GMT
Subject: CN=9478b9c9191ca0d81460d53568ab3cb24e3639e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9c:6d:f2:fc:40:b4:c4:2a:dc:d7:d3:83:11:
21:86:26:85:1b:f8:a3:a1:c8:51:ba:48:dc:ef:2c:
64:12:2c:8f:4f:6e:d1:7c:ab:4b:ca:af:d7:46:4e:
a2:67:4c:7a:73:c0:68:f3:c0:ec:8e:97:70:50:2d:
71:c8:37:c8:17:d2:57:3e:bc:de:a5:d6:74:e9:97:
7f:cf:e6:5c:5f:4a:18:e8:96:07:b8:3f:42:96:06:
e0:c3:03:bc:6c:85:8c:f1:00:88:52:8b:e0:fc:e3:
8f:b8:3b:61:b7:c4:3e:24:3a:43:c0:2b:f9:f7:67:
b5:96:7f:8d:1e:29:26:32:a5:58:96:1d:f2:8d:9d:
8e:1e:26:b2:a0:94:1b:50:71:77:5d:2a:d0:bc:2b:
0f:b0:e5:08:e1:51:0f:a2:76:9c:cd:0d:cf:ac:68:
4e:c1:f3:c7:fb:b8:c8:65:35:2f:c6:dc:d1:75:b3:
1b:b2:af:c2:80:ac:8c:76:31:27:ea:db:a2:1e:d5:
dc:e0:da:a0:dc:66:1e:20:0b:5a:ab:ac:3e:d5:28:
31:ab:6b:99:b1:67:16:ac:21:08:a1:a9:42:37:69:
58:97:c2:0d:be:b4:bf:d8:20:d9:17:59:b4:d2:4b:
b4:8a:c5:02:83:7e:1f:f7:7b:56:ac:3d:45:67:7a:
ee:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:78:B9:C9:19:1C:A0:D8:14:60:D5:35:68:AB:3C:B2:4E:36:39:E9
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:82:28:51:7d:87:50:88:81:53:31:15:78:fa:b9:8c:71:87:
cb:25:c3:6e:73:cd:bd:07:f3:50:4a:76:59:20:26:df:50:f2:
65:37:de:d2:fb:1c:57:b2:ce:7a:e4:4c:ab:98:fc:6b:6a:06:
c1:40:32:25:80:f1:7c:2c:37:06:ac:f2:3b:3e:1b:c1:90:ae:
b9:db:f5:cc:1c:ff:bd:70:41:af:fb:a7:43:66:e1:fd:08:0f:
b0:80:05:47:b2:fa:b0:6c:5b:04:fa:5f:91:71:78:40:88:60:
8c:d0:80:05:0f:2c:63:f5:0a:76:a2:bb:af:db:15:b8:13:59:
36:11:63:6f:56:d9:b5:02:a2:8a:79:44:1a:f7:87:c0:02:01:
8f:06:c9:0f:af:19:ba:45:49:2c:79:8e:a7:64:12:20:7d:61:
ec:dd:15:a2:9e:21:9f:90:c7:9e:75:f5:96:21:66:4b:f6:31:
4f:58:6c:ee:48:20:3d:60:a5:eb:0d:26:c0:60:9a:26:b8:e5:
f8:9f:17:2d:f7:f8:83:c1:db:71:97:ee:0f:e0:54:92:a6:68:
c8:e6:2f:0e:9d:8a:ac:46:09:9a:30:ae:52:5b:05:fc:f0:a4:
85:55:65:2a:d0:83:76:70:3b:ba:8b:9f:32:63:c7:61:7c:e1:
5b:77:ad:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 07:57:50 2026 by rpki-client