Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
File: pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft (raw, json)
Hash identifier: 5UBgcEd+tWWE1XG4KjpVqg8eZDtN4ZH/sfavWrIMIbM=
Subject key identifier: 75:0C:04:D4:77:DA:AE:F3:C4:34:34:22:C5:10:49:03:B6:FB:DF:56
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 019D39411FE3F94CB50243EFB6F81D6D6A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
Manifest number: 189F
Signing time: Sun 29 Mar 2026 11:01:02 +0000
Manifest this update: Sun 29 Mar 2026 11:01:02 +0000
Manifest next update: Mon 30 Mar 2026 11:01:02 +0000
Files and hashes: 1: TL500Z-6T-7L1kCKyJkxIIwcmCk.roa (hash: fv4oTQeIG0/EExduN0eNUVDTgf8VT1d+3jIw3CZjXgs=)
2: pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl (hash: WhA06fxYe2+Xsk9ka/xG/fhz0Y+WqwYA1tRnqdormWI=)
3: rH2xQm1yZYhZ2-CQbPVxR42hkEY.roa (hash: tRmw4GuuOtR3fTCdBAPG+ooWgyE/tLfoP6z+CynsJ88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:1f:e3:f9:4c:b5:02:43:ef:b6:f8:1d:6d:6a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Mar 29 11:01:02 2026 GMT
Not After : Mar 30 11:01:02 2026 GMT
Subject: CN=750c04d477daaef3c4343422c5104903b6fbdf56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:d4:ae:b9:f6:bb:05:73:37:af:0c:3c:c6:
a1:2d:84:61:f0:46:8e:38:70:9c:78:e2:47:35:96:
96:5c:38:00:d5:6a:63:81:19:86:88:2c:b3:96:1c:
8c:fe:a2:a8:ea:c5:0b:48:9a:fd:c8:41:75:98:98:
d8:8d:cf:d5:58:91:51:cf:e4:eb:6a:d1:fd:8e:3d:
a4:c1:18:bf:13:e1:f9:ca:f8:b1:6e:41:7c:f9:86:
63:1b:35:4e:8a:af:2b:40:bc:fe:29:db:c3:d2:3e:
59:5b:9f:f5:8f:09:93:34:fb:75:ab:27:ed:05:69:
43:8c:86:3f:f3:58:28:98:14:c9:62:37:87:92:9b:
59:00:e1:62:18:9f:ea:72:9d:8a:42:7d:96:e0:a7:
d1:ba:96:d9:76:50:2e:bb:83:ec:6c:7f:13:45:7d:
cf:c3:c4:4b:af:1e:a8:b6:44:da:30:98:74:f4:ed:
12:77:bb:05:84:f8:b2:ce:fe:ea:d0:22:af:b9:b2:
28:a0:65:82:14:d0:db:d5:32:29:ff:47:8a:77:db:
d3:b3:fa:57:9d:42:12:a8:19:c6:ec:8b:ed:14:a4:
0d:69:50:ba:4c:21:35:2a:9c:07:52:65:fe:10:2a:
4a:e3:fb:a7:dc:2a:2b:49:16:df:84:41:a2:94:be:
4b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0C:04:D4:77:DA:AE:F3:C4:34:34:22:C5:10:49:03:B6:FB:DF:56
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:08:59:e4:54:01:d4:69:37:8c:61:5e:4c:3c:7a:d4:d8:b8:
b8:a9:6b:6c:f9:ab:8d:c2:50:3d:30:eb:a3:dd:e4:0f:36:f0:
d8:47:ad:92:f0:89:79:99:40:b2:03:41:c0:2d:eb:f2:5c:eb:
c0:80:69:b9:dc:95:08:29:ec:a8:00:f9:48:d2:18:a8:8c:a4:
07:85:0e:7d:b0:ec:74:50:2d:98:be:8c:0d:aa:41:a5:e9:29:
6e:0a:c7:fd:9d:46:b6:31:52:b2:eb:dc:49:66:be:38:96:e9:
2e:88:81:a1:56:b7:5c:dc:df:5a:b1:d3:63:63:58:e1:63:76:
3f:fe:0a:c1:67:dc:67:39:99:4a:55:37:66:db:ff:15:89:d1:
6b:9a:e7:97:74:e5:c9:f8:c4:b1:73:8e:c6:54:c0:77:99:c0:
8a:0d:58:73:87:aa:53:2e:3f:5c:c3:76:1a:d6:5f:63:93:21:
9e:30:ec:b7:1f:2d:b8:1d:57:96:85:a6:7f:73:3b:02:ee:92:
82:0c:f5:31:3a:ac:c3:72:29:9b:21:3c:0f:dc:3f:eb:ab:f8:
37:55:06:20:7c:2b:84:8e:38:bf:42:a4:f8:0a:3a:17:9a:f0:
01:55:8a:a0:1d:ac:a6:c7:d4:a3:2f:9c:28:f1:4f:53:e1:fc:
22:02:48:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:23 2026 by rpki-client