Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json)
Hash identifier: a3773DzER/c7X1R67Nqrxg08u3OldUO7XIDYCX44c4o=
Subject key identifier: FA:28:0D:FE:14:AF:8B:A6:09:3E:9F:12:94:7E:64:D4:5B:60:89:1E
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 019E30DFF333D02D4CA404D57DFF7D1CCB95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
Manifest number: 187E
Signing time: Sat 16 May 2026 13:00:43 +0000
Manifest this update: Sat 16 May 2026 13:00:43 +0000
Manifest next update: Sun 17 May 2026 13:00:43 +0000
Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: A/6aZws5u1qFgmtDvkMpwMKJpxJ9VlIC5i7W1HharUo=)
2: uJd7RZN3ZAsoJQnJhc2M-mLjChI.roa (hash: /6Alyhe3uGVuPv9iCIcAX55KfuQ8Pqr9aqLM0Vwt394=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:df:f3:33:d0:2d:4c:a4:04:d5:7d:ff:7d:1c:cb:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: May 16 13:00:43 2026 GMT
Not After : May 17 13:00:43 2026 GMT
Subject: CN=fa280dfe14af8ba6093e9f12947e64d45b60891e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ff:3b:92:0f:65:bf:8b:8e:ee:87:fe:5e:b5:
05:e3:59:fa:61:37:ac:c6:1c:a4:4c:17:6d:6e:f8:
c4:59:a5:a8:c8:0f:6d:89:a6:c2:73:6c:12:67:d9:
42:05:3e:71:73:01:cb:e0:cb:f5:15:c8:a8:0e:c9:
a2:58:72:78:ab:32:5d:25:4e:5b:f1:f6:86:3c:1f:
e0:59:1a:cf:99:2f:7a:5d:c0:2a:7d:ca:7e:81:98:
ad:a9:fc:ba:1a:ca:0a:5a:d8:38:96:3f:c3:d3:d3:
f6:3a:ba:dc:3a:1b:d5:bc:3a:a6:4d:d1:8e:2f:a4:
86:28:48:12:0e:0d:91:cf:5f:d4:2a:9e:3f:66:4e:
ed:ef:d2:f5:e6:c6:c5:27:75:79:93:90:b0:ef:24:
73:76:46:8a:ee:ba:65:73:09:12:da:d2:55:13:78:
a3:cc:e4:53:a4:4c:1d:86:3a:59:e8:98:0d:13:f8:
45:77:88:12:d6:dd:16:5d:ae:54:a0:7a:96:fc:18:
e1:67:01:bb:49:44:4e:20:1a:e6:36:67:43:a8:fa:
cd:70:26:9a:04:dd:33:b2:c3:44:3d:31:bc:d4:52:
8a:2c:d7:cd:90:45:00:bd:7b:13:43:1d:d8:98:63:
69:0e:a8:99:f2:73:e9:68:09:b2:57:3a:3f:9e:d2:
06:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:28:0D:FE:14:AF:8B:A6:09:3E:9F:12:94:7E:64:D4:5B:60:89:1E
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:34:69:96:ff:61:51:6d:bf:12:21:7a:5c:18:91:42:46:c1:
98:4c:ec:10:e8:01:b6:b4:2a:11:b3:ae:6c:cf:ee:a1:f2:51:
6b:15:6a:69:69:7d:7c:5b:ae:10:7c:6e:29:77:c7:8f:2a:c3:
6a:ff:5c:36:9d:eb:2e:89:7a:67:be:f8:d6:d8:47:28:52:64:
ab:7b:ff:94:4e:f6:e9:47:4c:9e:3f:4e:54:24:7f:93:dc:c8:
a5:94:0d:06:b3:1b:00:74:b3:67:6d:12:b5:e5:e1:ec:0b:aa:
16:92:a6:f5:dd:32:83:73:f0:00:24:2f:77:c7:8d:86:89:9e:
c3:08:2c:ec:8a:76:4b:e7:85:67:0b:9b:91:af:63:1a:2e:7b:
b1:c7:d9:d4:8f:1e:f4:24:20:d8:b7:2b:ef:64:fd:a5:6d:16:
df:9e:ba:88:68:f1:34:fc:04:ac:84:eb:63:0a:ad:46:42:cd:
a7:d8:44:f7:70:9a:11:3c:a9:c9:74:3a:83:b3:2b:47:3d:48:
f1:6c:05:a3:54:76:de:ef:37:fd:07:2e:18:fd:6b:92:46:c9:
46:38:12:56:2e:10:2d:44:4c:21:16:8f:a5:6c:31:aa:2b:f8:
cb:17:85:3f:dc:a6:a1:50:0e:6f:58:02:d1:f2:0a:e8:c0:69:
d2:44:94:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:01:28 2026 by rpki-client