Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: AF17dwXDCAXfFKLFEtBQKmhLbv8pFE7TVwquhfDYL+w=
Subject key identifier: 49:BA:1E:4D:BB:03:F1:04:5B:46:32:AB:6B:6A:E4:85:F8:74:ED:CA
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 019E9C982EBCC8F9955EE31AA9E863035A1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 1285
Signing time: Sat 06 Jun 2026 11:01:19 +0000
Manifest this update: Sat 06 Jun 2026 11:01:19 +0000
Manifest next update: Sun 07 Jun 2026 11:01:19 +0000
Files and hashes: 1: gIBhWboHIlbVLsOrG6_KrzVsgsg.roa (hash: JloPm0symVV0m3PFdsgfuUWNtGXtbv/UJhvDlmOgv8I=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: fxnNCjxtzJW6ACdIubhHPJVvg73B0kG+8tXyoh4PSKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 11:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:98:2e:bc:c8:f9:95:5e:e3:1a:a9:e8:63:03:5a:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Jun 6 11:01:19 2026 GMT
Not After : Jun 7 11:01:19 2026 GMT
Subject: CN=49ba1e4dbb03f1045b4632ab6b6ae485f874edca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5a:ae:19:29:c1:3b:dd:ae:83:6d:fa:69:46:
66:70:12:ed:15:92:4c:02:16:d9:43:29:96:a1:30:
95:a0:bf:30:79:76:50:0a:af:10:3b:0b:3a:e9:cf:
e8:e1:28:5a:9c:6c:25:d5:49:16:10:e0:fc:27:54:
73:ae:e5:cf:e1:67:ac:bc:83:b1:6e:4c:42:c1:73:
00:f7:9c:cb:00:23:ee:6b:a6:2a:cb:1d:dd:b4:6e:
6e:bb:a1:8e:2b:65:a1:18:1f:b4:84:e2:58:c6:0e:
28:c8:da:c6:19:7b:72:ca:e5:b4:7f:76:63:8a:6d:
d5:ff:09:50:22:77:ef:dd:3d:c4:c2:c8:44:f1:82:
9c:ed:35:3d:1b:f4:1b:ab:c0:70:7c:8b:2d:2b:bb:
42:36:d5:5b:87:c5:e0:e4:18:1d:14:e2:c8:8c:8e:
10:af:7f:a4:6b:a1:98:84:a6:85:29:f0:9f:57:de:
a6:98:0d:f2:84:52:ff:64:41:f9:6a:fd:6d:d0:3c:
d8:ac:f4:85:70:38:91:1a:42:b5:ba:44:4b:37:20:
44:41:94:92:35:98:29:0b:4d:51:ad:8b:fe:67:64:
2a:4a:6d:5f:4c:4b:5f:ca:0b:d3:e8:2c:f7:b8:db:
40:16:55:24:32:92:6d:32:6b:e9:b1:2a:b5:cf:3a:
99:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BA:1E:4D:BB:03:F1:04:5B:46:32:AB:6B:6A:E4:85:F8:74:ED:CA
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:4a:45:ce:9b:46:d6:f7:89:13:03:7f:c9:90:9b:6e:e4:48:
5c:55:99:c1:a1:1f:b1:25:53:b4:b9:3a:7b:73:d6:22:be:47:
3e:97:cb:cd:39:fb:36:fa:6f:57:3f:4b:39:1a:c8:4c:03:a7:
4d:05:12:b0:ff:c9:d9:36:72:c4:44:c9:23:1f:8a:ff:86:17:
8b:5e:74:69:7f:a1:da:18:4a:66:a2:c3:5e:80:fe:80:6c:4b:
d8:d0:51:8a:67:0f:ee:20:37:33:46:a4:3f:dc:12:4c:10:01:
39:f5:ff:0c:09:22:a4:29:d4:cd:8c:9b:42:2d:4d:46:b9:64:
29:e6:61:fd:71:03:6b:a4:13:fe:a6:59:2d:ab:d3:c6:1b:80:
4c:57:98:c6:4c:08:f6:7c:aa:1e:b6:77:aa:a4:2e:78:85:bf:
66:f7:13:a0:31:41:bf:3e:26:c3:3c:34:69:3a:25:db:d1:68:
25:f8:ad:82:8f:c6:02:5e:77:a4:e2:22:e8:48:d0:d3:b7:4d:
9f:37:3a:a8:21:88:6c:df:ed:77:19:a5:b0:e1:4f:07:dd:1c:
b8:3f:1b:5d:c7:30:1d:16:ed:cc:98:6b:b2:38:c9:aa:46:17:
3a:f3:42:ea:93:e7:bd:15:53:0d:c9:7b:5e:b1:64:0b:f2:a3:
b3:ee:89:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 19:30:24 2026 by rpki-client