Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: 8omlp7KxVjf7WEmNJXRpFWEM+4hJn0vKvOoqGd+RZSM=
Subject key identifier: 06:33:0A:07:C4:C1:C4:63:08:BF:60:AE:48:AA:A1:08:60:C7:88:31
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019D386612E670B46E10ADC7B38F3F27909C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0C2C
Signing time: Sun 29 Mar 2026 07:01:46 +0000
Manifest this update: Sun 29 Mar 2026 07:01:46 +0000
Manifest next update: Mon 30 Mar 2026 07:01:46 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: 4OSG3tHf+hlwkZU178DHz3s9JECThWrTyTbt94ty3VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:12:e6:70:b4:6e:10:ad:c7:b3:8f:3f:27:90:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Mar 29 07:01:46 2026 GMT
Not After : Mar 30 07:01:46 2026 GMT
Subject: CN=06330a07c4c1c46308bf60ae48aaa10860c78831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ef:85:e2:aa:5d:9f:db:70:94:2d:fb:7e:07:
21:12:e6:45:9f:7e:d5:cd:e1:14:76:38:ce:45:99:
00:f3:a1:ab:e7:77:4d:2d:85:fe:db:9f:05:59:45:
51:13:a2:c3:48:98:be:16:d2:11:79:31:ec:b3:59:
b5:c4:ea:f2:09:64:dd:5c:28:22:4f:b4:d7:4b:2b:
dd:46:2e:80:a2:f9:59:03:8d:46:67:75:5c:67:2a:
ae:db:5a:e7:38:2a:e9:fd:a4:0a:fc:0c:e9:67:8d:
34:dd:1d:3e:c8:65:31:22:4c:f4:a6:db:63:43:d7:
4e:90:a9:e7:16:5d:da:41:8d:2c:9e:6c:76:4a:34:
1a:08:ff:06:af:da:56:8b:8d:7e:8f:98:28:71:bc:
0c:43:7f:6a:2d:f2:f1:d7:9e:f6:67:2a:76:a3:b8:
58:27:07:3c:1a:b9:83:0f:de:ea:9f:85:e7:2e:98:
6c:82:92:ca:96:d7:b3:18:c0:93:9c:28:6c:c3:c9:
63:f7:87:25:db:e7:02:6d:bf:a5:2d:5f:ad:85:a4:
75:93:1e:f4:9d:28:f0:07:1e:47:6e:65:c5:27:5f:
f5:0e:b8:fb:2a:0c:b9:85:56:ca:6d:5e:63:6f:ef:
20:c5:08:6b:42:ca:00:b3:cb:9e:c3:a8:16:b2:ba:
99:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:33:0A:07:C4:C1:C4:63:08:BF:60:AE:48:AA:A1:08:60:C7:88:31
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:11:63:92:00:83:dc:e9:22:71:f1:bd:be:d2:f3:68:8c:fd:
a1:5e:0f:2b:09:57:2e:6d:1b:47:7b:5c:04:bc:a3:54:7f:32:
ab:df:32:1e:65:55:77:7e:56:83:d8:db:ef:7d:26:2b:5e:e6:
ac:ac:3f:fe:26:ad:cd:17:43:3f:ca:c2:14:f9:f4:c5:5d:1c:
b6:b9:52:fc:21:ef:51:d4:13:2b:1f:02:e9:55:b4:97:c2:5a:
dc:14:d7:7b:e0:af:b8:ad:6a:bd:cf:84:76:3c:68:f7:f9:f9:
02:a6:9e:15:e4:55:bb:1e:48:3d:82:c9:80:7c:39:df:58:da:
f6:aa:93:f2:87:a5:6a:a6:4a:15:e2:1f:08:54:67:b7:62:e3:
1f:69:10:d2:f0:15:9a:0b:eb:5d:e6:af:70:e1:8d:b4:10:8f:
12:da:61:35:88:ac:de:d7:8b:52:c8:9d:9c:73:c2:b4:02:77:
c1:2b:ae:ac:1d:5a:e8:8c:8c:11:28:d0:ed:0e:aa:32:1a:39:
31:f8:7c:12:2d:42:5e:0d:21:76:d6:3a:5a:a7:8a:4e:0a:cb:
1a:20:e4:ae:90:91:a3:25:d3:03:dc:78:2d:2c:6c:f9:8d:f4:
0c:41:d5:c2:cd:8c:cf:5d:43:73:94:ec:ec:51:fb:1c:97:8a:
9f:97:ef:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:07 2026 by rpki-client