Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: WBHGWU0uIxXmTnMqULZ0rPCpxylQYIdMcZqcxkyTuJ0=
Subject key identifier: 1E:95:91:EA:BE:03:99:EE:2A:4C:50:B5:FB:0D:D4:9E:A9:63:36:13
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 019E31F2EB3766923DCD12C567E98139B671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 0424
Signing time: Sat 16 May 2026 18:01:03 +0000
Manifest this update: Sat 16 May 2026 18:01:03 +0000
Manifest next update: Sun 17 May 2026 18:01:03 +0000
Files and hashes: 1: CB5dZw_OUbWQmf6rrxVZ4SzmOPA.roa (hash: 7zRrcVpQEfWDa1cgriGdXYM3UTbJ90zYlGXeGAuJSjI=)
2: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: WFuth1tCo6LiiefMLqnsZT28FCqo94SpCcM448PD+mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:eb:37:66:92:3d:cd:12:c5:67:e9:81:39:b6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: May 16 18:01:03 2026 GMT
Not After : May 17 18:01:03 2026 GMT
Subject: CN=1e9591eabe0399ee2a4c50b5fb0dd49ea9633613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:59:f7:83:ef:a2:c1:48:5a:39:26:9f:8e:27:
78:18:cb:d8:fb:1c:4a:05:63:d6:09:82:2c:5c:fa:
64:32:90:cf:62:4d:2f:68:f4:2b:09:3d:3c:13:03:
45:3c:b2:fa:2a:e4:d6:19:6c:bc:25:00:ef:e4:b9:
12:a0:b1:36:d3:3f:e9:92:22:d6:bd:2f:76:de:97:
c4:be:43:49:f6:68:76:df:dc:67:4d:2d:15:cd:42:
97:1b:4d:c1:e0:f6:6d:d4:59:65:6e:6c:d2:54:b1:
c7:10:0c:85:c1:44:4e:6b:37:92:e3:e8:dc:5a:5b:
4d:44:89:0e:13:82:8a:fd:0a:d2:f7:19:fa:3d:fd:
2c:70:b6:03:f8:14:5f:da:08:d2:29:40:a2:90:85:
9c:b8:3e:73:7e:af:16:62:9c:dc:1c:60:9e:f7:69:
89:2f:b4:b9:05:ce:8e:9b:44:45:d7:27:c8:2e:24:
71:84:43:56:40:9d:ad:78:7e:a7:7f:d3:81:19:f3:
b5:11:17:74:3d:01:92:69:28:ae:6e:ce:00:65:1d:
7c:9c:4b:42:5e:71:14:74:be:05:2b:28:de:4b:4f:
d6:84:3d:2f:ae:f6:31:d7:a7:23:e0:60:bf:1a:05:
3b:10:cf:e8:9b:69:75:47:b1:a2:30:bb:4f:12:c2:
43:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:95:91:EA:BE:03:99:EE:2A:4C:50:B5:FB:0D:D4:9E:A9:63:36:13
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:e9:59:ea:2a:43:e4:6f:47:53:31:c6:f0:cf:12:0f:0c:b2:
ab:b6:46:63:9f:b5:ac:3b:ac:d0:f6:48:83:67:3d:27:ad:71:
ef:41:87:82:e2:2d:04:c0:24:20:f0:5b:e0:6b:e5:9b:be:67:
e4:27:82:35:c7:09:20:13:23:90:f8:d0:5e:e5:7f:32:6a:75:
f0:ed:e5:dd:ac:97:ca:2f:3a:0c:08:f3:f0:af:a9:d3:6d:2d:
fb:43:9b:0c:42:d6:b4:db:49:a7:8c:cf:67:33:37:de:f9:7c:
ab:8b:72:6a:c1:4e:23:ad:df:07:b1:30:f8:9b:d7:a5:2a:1e:
64:bf:36:01:e0:5f:a8:52:8b:c8:a3:a8:ea:ab:d4:74:ff:98:
96:12:ca:10:97:6d:6b:6d:94:79:1e:15:ca:4c:b2:4a:55:fb:
27:b1:26:b9:c9:77:99:a5:e9:c8:3f:d8:25:ce:e4:14:7f:65:
30:4b:f1:d4:6f:f4:b2:77:52:27:a2:ea:77:73:3c:07:4f:f8:
de:c1:ad:f6:bd:44:d9:91:1e:be:e0:67:7b:fd:a8:be:c5:12:
3f:29:62:41:38:2d:15:a9:26:c9:9c:af:bd:18:2c:1d:53:ab:
3d:c7:53:89:32:0c:62:eb:22:5d:a0:dd:f8:f9:bb:17:7e:1d:
13:49:79:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:21:16 2026 by rpki-client