Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: zHV9mKme3wSDUtgBkJkQmgglHVNRhJnW541rgW+FyyQ=
Subject key identifier: 7A:35:B3:B9:CD:86:1C:5B:3F:14:5D:07:EE:74:52:7E:07:D3:AD:61
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019DA07752F98421C7BDB2B1ADC16B935980
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0CCD
Signing time: Sat 18 Apr 2026 12:01:07 +0000
Manifest this update: Sat 18 Apr 2026 12:01:07 +0000
Manifest next update: Sun 19 Apr 2026 12:01:07 +0000
Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: Hxv5lINefvjD7MylQQ4AeLKk4QOARdtmLj2FfQgfTRc=)
4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a0:77:52:f9:84:21:c7:bd:b2:b1:ad:c1:6b:93:59:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Apr 18 12:01:07 2026 GMT
Not After : Apr 19 12:01:07 2026 GMT
Subject: CN=7a35b3b9cd861c5b3f145d07ee74527e07d3ad61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:38:04:a5:fe:3c:2d:f7:94:90:96:56:3c:72:
2d:a8:82:5f:68:3f:69:3b:a7:5a:c8:47:09:08:64:
47:34:91:e4:5e:98:15:5b:c3:2a:cb:3e:53:50:5b:
18:15:f2:8c:a8:fe:6b:7d:e0:e2:89:00:c0:66:a0:
80:55:e7:70:3c:f0:93:b1:0d:b4:72:9e:dd:63:7c:
b6:0a:3b:f0:fc:13:25:64:e2:3a:cb:2e:be:9c:31:
c0:82:ce:4a:49:1a:5c:53:e2:c8:a8:7c:15:3c:15:
6c:cc:cb:a1:61:6c:be:e8:29:b2:d3:b5:92:56:86:
6e:36:e8:42:fc:a5:1c:29:f8:26:64:37:5d:7d:ad:
2b:b7:65:83:12:c7:83:c0:58:39:24:c7:25:51:00:
f2:21:97:c6:c5:a5:28:69:09:a6:0d:d5:30:f1:6d:
8d:e2:e2:68:77:69:37:7b:da:98:ad:ae:8a:59:a3:
f9:69:97:fb:a4:f6:8d:d9:fd:58:a4:1b:a6:0f:56:
1d:a3:b1:8c:c8:80:eb:3b:3a:14:ef:05:56:ed:f2:
b0:0a:96:f9:6b:16:e3:87:b7:0b:ef:95:dd:3e:90:
a3:8c:e6:e5:b0:d5:d1:48:33:15:95:08:61:6c:0d:
f9:4e:06:88:35:17:2a:c8:eb:c5:05:01:18:06:40:
73:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:35:B3:B9:CD:86:1C:5B:3F:14:5D:07:EE:74:52:7E:07:D3:AD:61
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c3:a5:2d:05:20:33:01:d7:72:21:aa:00:e9:f2:ca:cf:29:
68:bc:23:c0:c1:2b:d3:97:37:fa:10:06:3e:ee:c6:66:92:fd:
0b:09:1e:19:c0:40:f2:1e:26:cf:4a:b8:f4:78:77:de:45:1f:
bc:a9:c3:40:54:d6:fe:1d:70:a2:8a:4c:7f:d5:97:56:38:55:
e1:b5:b8:bb:ee:52:3b:14:b8:c0:52:76:b9:fc:42:f6:d0:b6:
91:c0:d1:da:8e:86:d0:5c:1e:e1:7a:0a:e6:d3:7c:c9:d8:ee:
0d:36:e0:d0:cc:9b:ff:df:7e:c4:34:97:bb:c1:34:c4:6d:ec:
4b:a9:00:c9:a9:4a:83:ba:c9:57:d4:7e:26:d2:40:72:0e:8a:
b2:13:30:40:fc:a6:6b:e5:e8:fe:2f:03:e5:45:2e:b6:f7:31:
19:71:9e:77:89:b6:15:33:48:0e:d8:14:f1:f9:9b:3d:85:54:
54:dd:71:2e:47:b1:f1:f9:a7:85:a4:11:d1:9c:9d:11:44:24:
47:ca:8b:d3:20:6d:05:5d:5b:b6:f1:4c:e7:7b:4b:69:da:87:
d2:c9:63:06:b6:72:ee:cc:6a:d8:c7:e1:76:cb:da:2a:41:52:
f0:05:a2:52:b5:bb:cd:0d:ba:cc:36:6d:d1:87:1b:df:9d:71:
47:98:78:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 19:56:50 2026 by rpki-client