Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
File: PNKqcak6qcEye3NTigR45PeC9vc.mft (raw, json)
Hash identifier: b/mnFkSPZESJRRqKilnyWEaBPbOgJcjI33lYX1BYqQo=
Subject key identifier: 8D:41:FA:49:FB:09:93:F2:7D:5C:D6:1B:D2:4B:73:B5:63:F9:87:73
Authority key identifier: 3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
Certificate issuer: /CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Certificate serial: 019E1FEC6C53EAA3EDB67D1D7AAA47DFE679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
Manifest number: 1081
Signing time: Wed 13 May 2026 06:00:48 +0000
Manifest this update: Wed 13 May 2026 06:00:48 +0000
Manifest next update: Thu 14 May 2026 06:00:48 +0000
Files and hashes: 1: PNKqcak6qcEye3NTigR45PeC9vc.crl (hash: OEL/nYbbiI68Ez7QqukZdnDHQFNrctw9+XBVGnKN5Cw=)
2: uW_Gdpnt7OwD3cAseMegdu6xN8M.roa (hash: 3VkXuruUsY9wPEkXG/tiCZgs9rIhDAAbcoWQ4X0SwBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:6c:53:ea:a3:ed:b6:7d:1d:7a:aa:47:df:e6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Validity
Not Before: May 13 06:00:48 2026 GMT
Not After : May 14 06:00:48 2026 GMT
Subject: CN=8d41fa49fb0993f27d5cd61bd24b73b563f98773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7a:41:fa:62:a5:ec:9d:7d:d5:21:17:9b:8c:
33:27:10:dc:05:96:23:80:cd:29:db:eb:12:7d:ff:
e7:ef:24:22:57:97:ef:e4:57:c0:8f:b3:38:97:2d:
f4:97:53:76:58:44:8b:c6:8b:2f:48:6e:f1:17:6c:
70:61:63:41:e7:4b:64:0a:55:e3:51:25:be:c9:3a:
8e:4e:ac:df:e3:da:72:91:95:d0:73:09:50:db:71:
0f:f5:a1:75:40:de:d9:7e:9e:d3:de:92:e1:48:66:
53:c6:08:52:cd:72:c1:aa:9c:16:77:7c:1d:13:29:
c8:f8:7a:8e:46:b6:da:20:ab:3c:d1:e6:1c:da:9f:
74:d4:0e:98:07:38:30:f9:d0:5b:d1:7e:57:d9:05:
f5:59:90:ad:ba:36:77:ad:a7:c1:3e:f1:87:e0:0c:
7d:1d:fb:55:a1:41:2a:ee:bd:08:f6:0a:35:4d:d4:
22:f1:c5:a2:39:de:07:f5:fe:d0:90:d1:19:44:f0:
81:de:ee:8d:23:a6:c6:ab:1f:3a:12:9f:0e:dd:af:
ad:b2:32:bf:8e:53:6a:6d:f5:99:2c:2e:3a:2d:41:
ee:7e:2a:63:a8:4e:9f:48:b9:e8:61:d6:f5:f4:4d:
e0:f8:26:8d:08:b0:f2:d7:62:46:ae:07:b9:d5:3d:
7a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:41:FA:49:FB:09:93:F2:7D:5C:D6:1B:D2:4B:73:B5:63:F9:87:73
X509v3 Authority Key Identifier:
keyid:3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:31:a4:4d:6d:53:00:c1:d3:30:d5:7b:4d:34:f2:0d:aa:f8:
11:4b:de:c6:1b:aa:46:42:bf:44:b3:a1:e0:69:3a:2d:f3:e6:
d3:e4:a2:20:a9:3b:8d:bd:b7:ee:8a:e1:0d:eb:08:18:69:76:
f9:54:06:fd:19:b9:ab:0b:cb:6c:87:bb:80:20:44:ec:f1:40:
10:07:01:74:4d:6b:63:95:e0:51:f4:b1:a1:28:4f:d7:dd:9d:
1c:80:44:c7:27:71:5d:ca:75:aa:2b:f3:a0:dd:b1:2a:04:cc:
7f:c4:5d:61:46:da:cc:a5:b1:36:91:49:a1:75:c4:b8:32:34:
5a:ed:f7:72:6a:60:9f:b5:c2:26:18:60:82:bc:67:78:cb:00:
f1:3d:05:15:fd:41:1f:76:f0:02:5a:a5:48:00:fe:94:f9:99:
36:d1:5e:7a:27:ef:72:48:a3:7d:22:d5:e2:e5:e2:80:38:84:
12:fe:2a:8d:b1:a0:b4:3f:e8:30:81:a2:61:dd:0d:b1:92:ad:
76:5c:50:28:5b:3f:48:3f:93:9c:eb:7c:3f:f4:6c:ab:21:a0:
d6:63:fe:e4:31:18:2a:41:47:8d:f2:67:00:0e:bb:3d:15:70:
43:6a:dd:e0:6b:83:0e:14:3c:78:28:1a:5c:ef:14:90:c9:fe:
46:03:cb:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:50:58 2026 by rpki-client