Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
File: pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft (raw, json)
Hash identifier: fBLyn2uToruCZ5E9iQE2js8ivkgkMLK36SCERqLZP9Y=
Subject key identifier: 78:DB:A2:A5:83:BD:BF:76:99:DC:DF:CC:DA:C2:B4:63:AD:F5:6B:B9
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 019E2AA7173516ACE597EAA672C1C78F0FDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
Manifest number: 191C
Signing time: Fri 15 May 2026 08:00:53 +0000
Manifest this update: Fri 15 May 2026 08:00:53 +0000
Manifest next update: Sat 16 May 2026 08:00:53 +0000
Files and hashes: 1: TL500Z-6T-7L1kCKyJkxIIwcmCk.roa (hash: fv4oTQeIG0/EExduN0eNUVDTgf8VT1d+3jIw3CZjXgs=)
2: pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl (hash: d/rlUUbj2s/AfJGXHbQHxddynILWU7aEQYQwho0u9H0=)
3: rH2xQm1yZYhZ2-CQbPVxR42hkEY.roa (hash: tRmw4GuuOtR3fTCdBAPG+ooWgyE/tLfoP6z+CynsJ88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:a7:17:35:16:ac:e5:97:ea:a6:72:c1:c7:8f:0f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: May 15 08:00:53 2026 GMT
Not After : May 16 08:00:53 2026 GMT
Subject: CN=78dba2a583bdbf7699dcdfccdac2b463adf56bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:37:29:50:f5:db:f1:79:ef:fd:23:65:25:f5:
37:dd:00:90:74:02:e1:f7:41:61:f3:22:ef:30:49:
14:aa:e4:62:9f:d3:ff:48:ac:36:c9:4a:13:79:00:
af:4d:6a:3e:28:a7:67:ae:43:53:f7:a8:88:a1:50:
74:b9:ee:63:d0:ae:e4:ab:1b:51:56:1c:93:35:cf:
39:7e:3e:9e:6a:11:ec:11:1e:76:05:19:cd:a4:e0:
c1:2c:2d:7f:f2:84:14:8c:af:34:1e:2d:22:0d:2a:
40:51:31:ff:b4:f4:bb:df:8a:b3:f9:ec:d1:9f:2a:
46:ab:c1:15:5d:17:52:eb:b0:1d:f7:5d:01:de:01:
18:dc:c5:08:28:5e:4d:2b:e1:9b:1a:73:17:99:f5:
27:b0:4d:04:23:b2:f7:8f:91:e1:68:b1:8e:c2:0a:
0c:3d:d6:bb:a0:34:0c:bb:cb:c9:27:d0:19:9d:85:
8b:97:42:a2:f7:c5:f7:59:9a:a0:f6:df:ea:63:de:
2e:cb:2e:6e:51:99:cf:ff:50:d3:3d:13:65:84:be:
c3:61:24:ed:c1:63:1e:63:9e:d3:d3:d4:3d:b5:da:
80:6e:50:64:e6:39:1e:02:da:df:d9:e6:42:eb:c3:
1f:bb:58:bd:73:0c:0e:54:55:df:14:69:55:e3:89:
26:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DB:A2:A5:83:BD:BF:76:99:DC:DF:CC:DA:C2:B4:63:AD:F5:6B:B9
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:8b:0f:37:d2:f5:5f:69:70:84:cf:54:5b:94:27:44:4b:a6:
49:b1:45:31:2d:23:11:b1:88:2e:ad:46:52:71:e9:72:2c:42:
55:79:4c:08:0e:f2:56:82:94:60:df:93:d6:d3:e0:8a:c9:ef:
bc:1b:4b:60:a1:76:00:3f:65:bc:57:6c:46:e0:6c:18:f2:f9:
69:55:e1:d9:90:a8:4b:64:59:22:52:13:89:fd:6d:f4:f8:1c:
90:57:3f:d6:d2:60:8b:58:75:b7:47:cb:d6:c7:87:de:70:6a:
98:e3:18:fe:d3:88:1d:9c:c2:c0:12:29:46:e3:43:ba:51:2a:
2b:cd:d9:2a:1f:91:ad:95:a2:52:7e:29:78:5a:fa:3b:78:43:
5a:1f:33:46:7b:b9:c9:58:bb:ae:6e:99:83:57:e7:f4:98:5c:
54:9d:a8:24:1f:a1:2c:1e:f3:37:a6:51:bc:c3:7e:e2:d5:92:
bb:f4:0c:86:9f:43:f2:99:1f:f0:a7:af:1c:a8:ac:e7:dc:4a:
5c:a8:a9:2b:e3:1b:61:b5:4b:73:24:f9:c3:0d:0f:15:71:f3:
6e:ab:49:88:f8:6a:b9:af:37:3c:e5:28:1a:d3:38:35:88:7f:
ea:b2:e8:dd:3b:43:94:31:b3:bf:06:24:57:7b:63:fc:19:f7:
70:95:1e:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 10:35:03 2026 by rpki-client