Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: Gr3EMjYTiOY0I4ln4UV+D6Ceub0LkKL9tF8i4hmwad0=
Subject key identifier: 41:C1:21:90:94:A4:AC:71:FF:A0:AF:8B:3C:AF:65:B3:C3:1F:BB:FD
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019E883502F6FD17934ABED34784A5A617DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0D45
Signing time: Tue 02 Jun 2026 12:00:35 +0000
Manifest this update: Tue 02 Jun 2026 12:00:35 +0000
Manifest next update: Wed 03 Jun 2026 12:00:35 +0000
Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: GXMED87D/JtkODqWiJ9uyC07HTtKsZJ8A3D0NZLUuhI=)
4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 12:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:88:35:02:f6:fd:17:93:4a:be:d3:47:84:a5:a6:17:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Jun 2 12:00:35 2026 GMT
Not After : Jun 3 12:00:35 2026 GMT
Subject: CN=41c1219094a4ac71ffa0af8b3caf65b3c31fbbfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ba:fd:e0:7b:b2:e0:8e:d2:0f:7f:80:dd:65:
98:4e:42:72:48:3b:0a:a4:c2:04:fb:68:a2:65:85:
e8:df:69:88:94:70:f8:6c:67:4a:e0:70:70:35:f7:
8b:33:33:11:83:cf:8c:6c:6d:dd:b1:cc:03:45:3b:
49:b0:75:87:09:c2:66:aa:5f:1c:30:6e:01:04:0d:
72:cb:7e:d3:98:7a:9d:ab:f1:39:57:e9:b4:10:6f:
c9:8a:02:3e:87:3f:05:93:08:8b:2c:14:df:74:a3:
6e:fb:e3:3e:f3:17:48:cd:9d:a4:a8:3c:89:13:ef:
17:c6:0c:f1:9d:de:20:1b:5b:70:1c:97:14:63:de:
a9:ba:26:07:80:04:69:89:64:c4:30:a3:ad:05:b0:
5f:8a:b2:ed:d2:98:da:b6:b2:f0:c3:f8:76:75:30:
77:6d:d2:b6:a8:57:76:c4:26:d1:3c:92:c7:87:e7:
e0:7f:e3:62:67:a6:6b:9c:4a:b8:f7:07:b6:6f:de:
ed:69:77:b2:54:35:b7:69:0d:34:f3:24:70:18:fa:
3d:e2:83:89:fd:ca:42:c6:d0:fc:47:09:41:f1:4c:
50:d7:08:72:34:e3:e5:9b:b5:05:69:21:79:84:e6:
67:58:0d:34:3e:49:c4:7d:63:6f:74:0e:ef:da:ba:
d7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C1:21:90:94:A4:AC:71:FF:A0:AF:8B:3C:AF:65:B3:C3:1F:BB:FD
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:7c:16:ef:1c:83:66:47:81:2b:1f:5c:34:fa:db:75:2d:49:
50:f4:34:a9:60:38:b0:0b:9f:90:65:db:41:68:c6:91:90:49:
b4:f2:e1:58:bc:32:7f:43:2d:fb:64:b9:06:56:e6:64:33:1d:
87:f4:87:b2:9e:f5:f0:ce:1d:cd:cc:57:42:a4:f2:eb:53:d4:
36:b1:bd:5a:87:ca:5d:a8:19:e8:92:ad:39:af:e1:6b:d0:50:
59:7c:5e:5b:8e:72:34:45:e0:d3:7b:b5:74:21:24:1f:9e:44:
34:92:ff:eb:25:4c:f2:83:0e:99:22:76:94:b8:90:73:f7:b4:
4b:98:3f:ec:44:4f:1a:4b:87:f7:3a:27:9d:a8:a4:dc:02:21:
c7:02:49:5a:e3:e2:11:1a:11:43:02:59:1f:ac:d2:7b:8f:d1:
ac:31:5d:1f:d6:0f:70:e0:43:9d:6e:21:e7:d6:28:96:fe:5d:
f4:0b:c3:f8:55:11:c2:a6:5d:52:c1:22:76:10:2b:9c:98:bb:
cc:f7:90:3e:fe:6a:f0:75:2c:85:40:e2:39:f0:9b:74:64:78:
33:fc:d1:88:f0:56:b6:94:43:09:eb:74:d7:54:29:df:f2:4c:
99:ea:69:5f:d8:6a:ca:37:c5:9a:d5:dd:bd:29:24:aa:c1:71:
60:4f:82:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 22:01:39 2026 by rpki-client