Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: tea1xeq3kwWq/zOnyYM+kkkzSoIRq3Gp2cxlsYtqwMc=
Subject key identifier: C8:46:A1:73:B6:E5:5D:FF:69:46:86:26:3D:34:35:09:03:EF:DC:35
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 019F19B1771E3D1EE371795CE8A67055882B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 049C
Signing time: Tue 30 Jun 2026 18:01:28 +0000
Manifest this update: Tue 30 Jun 2026 18:01:28 +0000
Manifest next update: Wed 01 Jul 2026 18:01:28 +0000
Files and hashes: 1: CB5dZw_OUbWQmf6rrxVZ4SzmOPA.roa (hash: 7zRrcVpQEfWDa1cgriGdXYM3UTbJ90zYlGXeGAuJSjI=)
2: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: hpYRg+2dXBMG3Tv54HEYgjukF23KyDMSW2KTiTMsDE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:77:1e:3d:1e:e3:71:79:5c:e8:a6:70:55:88:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Jun 30 18:01:28 2026 GMT
Not After : Jul 1 18:01:28 2026 GMT
Subject: CN=c846a173b6e55dff694686263d34350903efdc35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:69:80:b7:58:f7:27:2f:68:20:12:5a:d2:ed:
33:69:ad:99:6e:49:63:66:71:7e:e7:60:9b:df:a5:
5c:4a:07:99:e2:94:ee:de:fe:70:2b:d4:9d:a4:23:
d8:dd:5a:4d:a2:60:33:60:62:cf:85:60:79:c8:3e:
06:84:09:b8:b6:d5:7e:58:47:23:8a:9e:67:08:49:
d6:2c:0b:c7:47:90:ab:06:0a:25:6c:cc:d9:da:62:
41:59:ec:67:1f:ff:48:10:d0:f8:f2:3c:f0:0a:1c:
d2:cc:88:f5:43:b8:06:e6:8e:25:e6:b5:d8:89:86:
74:e1:51:52:2e:e6:46:26:16:7f:88:16:af:71:57:
6a:ef:92:9d:c3:2a:09:d4:27:0a:b2:67:f3:b7:2e:
1f:bd:ea:38:2f:1f:e8:97:ea:63:87:db:2d:41:37:
00:b8:be:f6:cc:ec:37:87:25:cf:93:e8:2c:f5:01:
bc:92:57:01:c8:e5:b2:4c:e8:89:2a:64:fc:33:fb:
94:d5:87:b6:94:b6:8d:dd:99:37:ba:05:29:f1:c6:
45:0d:89:65:42:49:b2:94:b4:c8:9c:e1:1b:a0:d3:
10:bd:70:a2:ff:6f:fc:cc:4d:bd:4f:93:39:fb:4f:
64:5e:ca:4e:c9:d3:42:9e:62:cf:70:9a:96:b1:48:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:46:A1:73:B6:E5:5D:FF:69:46:86:26:3D:34:35:09:03:EF:DC:35
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:1f:8c:fe:c1:e7:0c:da:77:3f:90:cb:ce:99:ef:24:c0:fc:
de:24:1a:70:ae:56:a2:24:13:3a:11:21:a1:14:4e:eb:7c:fc:
c9:cc:eb:fe:bd:ac:e1:08:40:9d:92:41:f3:36:5d:cf:f6:0d:
33:27:22:e9:20:ca:8b:6b:95:9c:e8:b2:40:af:4a:f7:5d:4f:
8b:7f:b8:00:90:1b:2f:81:6f:33:e4:b9:76:22:c0:8e:b9:62:
c5:d3:d8:f4:6a:0f:e7:f5:6f:aa:af:01:9a:49:cd:1a:d0:b9:
f3:60:3c:9c:55:b8:b0:2c:8c:37:0f:ac:1c:3f:80:8f:6b:38:
33:70:78:a1:d4:e9:ff:e7:b0:36:be:16:b9:e1:d3:2a:8e:47:
cc:e3:6f:26:49:94:38:b8:32:b2:a4:8d:2b:49:1a:5f:00:e5:
6d:9c:4d:d7:00:b4:15:d4:d8:81:f8:1f:a9:c5:74:33:08:48:
a3:fb:25:45:01:49:e1:ae:be:38:f9:6a:45:2e:09:ba:53:14:
4f:40:90:7e:bf:46:7f:e7:82:71:73:1e:95:28:d6:29:8f:89:
f6:4e:ff:64:9c:ba:b4:65:e8:fd:b4:ef:19:29:4d:06:fc:ff:
dc:fd:34:67:69:77:4c:9b:ef:bb:83:0b:8b:5b:f3:18:a7:23:
f0:81:c1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:44:19 2026 by rpki-client