Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
File: PNKqcak6qcEye3NTigR45PeC9vc.mft (raw, json)
Hash identifier: VUi0/TjBrZG0p8Q683Jlc55pqSz/dcjLxYyCT8MGlLU=
Subject key identifier: 6F:A8:BE:B1:CE:C2:37:A1:2B:F9:C7:A7:A7:EB:B0:5F:5C:36:D6:96
Authority key identifier: 3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
Certificate issuer: /CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Certificate serial: 019D32637D7900DA75F0EC01505B1E7007EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
Manifest number: 1006
Signing time: Sat 28 Mar 2026 03:01:14 +0000
Manifest this update: Sat 28 Mar 2026 03:01:14 +0000
Manifest next update: Sun 29 Mar 2026 03:01:14 +0000
Files and hashes: 1: PNKqcak6qcEye3NTigR45PeC9vc.crl (hash: Z9SJkYHL6k4z6Mq2JI744t3iPX+QfWhVQJ21PMc7+Kg=)
2: uW_Gdpnt7OwD3cAseMegdu6xN8M.roa (hash: 3VkXuruUsY9wPEkXG/tiCZgs9rIhDAAbcoWQ4X0SwBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:63:7d:79:00:da:75:f0:ec:01:50:5b:1e:70:07:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Validity
Not Before: Mar 28 03:01:14 2026 GMT
Not After : Mar 29 03:01:14 2026 GMT
Subject: CN=6fa8beb1cec237a12bf9c7a7a7ebb05f5c36d696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:33:bc:bd:56:49:c5:40:b7:7b:7c:62:63:19:
2c:27:d5:2d:f8:91:3d:95:33:94:15:de:23:54:ee:
70:d6:1c:e7:70:2d:a6:84:11:f1:60:ec:78:8b:06:
c8:af:e0:bf:1c:c4:60:31:b7:50:78:b2:78:a0:8a:
c4:d2:3d:7d:51:a4:a8:e8:f6:62:39:e9:96:1a:35:
d9:e0:ff:8b:0f:97:ac:f1:67:72:1b:12:56:3c:21:
35:df:85:5d:95:05:5d:dd:78:8a:58:ac:34:e4:8d:
2b:94:92:52:88:ea:6b:39:7f:d2:e5:4b:6f:3a:0f:
d5:43:c8:e0:34:9c:5b:1a:ed:c4:ee:0e:ae:53:64:
7a:d0:b1:50:c0:ca:08:2d:82:c2:04:9a:6f:5d:b6:
95:f4:c9:72:5b:88:38:cf:f3:f7:9d:47:fe:22:1d:
53:cd:09:a7:46:af:b2:7e:f7:ce:4f:80:c6:d0:b7:
9f:da:c9:8a:48:7c:94:b8:bd:ea:66:5c:cd:7d:88:
bd:d3:d2:4e:c4:13:db:8a:d4:e4:9f:df:b8:77:b3:
5b:54:87:4a:e9:fe:b6:38:3a:72:7d:37:02:21:ef:
5c:f9:80:bc:b3:d4:57:c0:f6:48:95:06:2e:f8:71:
a0:54:d5:23:d4:a9:1a:77:b7:e2:f8:f6:f0:ae:16:
f0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A8:BE:B1:CE:C2:37:A1:2B:F9:C7:A7:A7:EB:B0:5F:5C:36:D6:96
X509v3 Authority Key Identifier:
keyid:3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:06:e9:8a:f9:72:76:62:ff:07:49:16:1b:a1:d6:69:12:6a:
59:38:23:48:62:d2:27:6d:8e:d2:72:1e:38:b0:01:aa:48:69:
c5:e9:ae:79:25:59:e8:e4:6d:44:6c:d9:9a:76:44:28:60:77:
23:8a:97:dc:0a:10:c5:d2:e4:82:0a:ef:ff:e1:11:99:cb:a9:
25:0d:0c:07:19:43:e5:ac:60:65:ec:c6:a1:cf:a7:6e:e5:3c:
bf:21:cd:4f:cf:eb:74:97:c4:74:5e:ba:ce:d2:97:fc:e9:25:
de:bc:1c:25:12:9b:7b:7e:6d:5d:8e:72:8e:92:51:10:46:5c:
7b:6c:c0:86:e0:e7:c7:2e:f5:46:c9:a2:36:77:85:b9:48:c1:
83:4d:8a:e2:8d:90:b4:61:b9:0d:a4:e4:57:64:4c:1c:2c:5c:
3d:b8:92:18:22:03:3e:06:12:4c:44:22:9e:52:4a:b5:fa:47:
b0:08:a5:97:63:78:5a:60:d0:2d:c8:b0:09:26:d7:6d:8c:88:
26:dc:dc:8d:50:ec:85:bf:a0:a9:a0:87:d8:b6:b6:98:3b:b4:
be:88:ea:5c:fe:86:50:f0:8d:44:13:f8:09:fa:e3:b2:61:f2:
87:e9:72:4e:1a:5e:d5:bd:43:33:12:0c:24:37:73:99:b7:27:
53:05:2d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 07:01:30 2026 by rpki-client