Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json)
Hash identifier: 6DcIsmEJSt/q/BoDcpQ5OL8R9l3zun7vM78i66EFmU8=
Subject key identifier: 66:E8:A1:64:28:B9:7C:AC:03:7C:73:C5:37:59:55:A0:E0:BC:40:07
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 019F189E0543896F852B899103F0EE535FC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
Manifest number: 18F6
Signing time: Tue 30 Jun 2026 13:00:36 +0000
Manifest this update: Tue 30 Jun 2026 13:00:36 +0000
Manifest next update: Wed 01 Jul 2026 13:00:36 +0000
Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: usTPY03mLF63exziHUZJejkTWJYevBFncK0wuQ8H5Hc=)
2: uJd7RZN3ZAsoJQnJhc2M-mLjChI.roa (hash: /6Alyhe3uGVuPv9iCIcAX55KfuQ8Pqr9aqLM0Vwt394=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:05:43:89:6f:85:2b:89:91:03:f0:ee:53:5f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: Jun 30 13:00:36 2026 GMT
Not After : Jul 1 13:00:36 2026 GMT
Subject: CN=66e8a16428b97cac037c73c5375955a0e0bc4007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:a3:38:d1:62:c9:c6:99:d0:f3:47:f5:b3:f3:
d6:8f:01:85:70:9f:f6:18:c7:32:db:78:39:03:24:
cf:44:17:8d:90:0a:c3:cf:b1:53:47:23:e6:4d:65:
a3:c5:df:cd:52:b5:a8:77:c3:be:ed:2e:e7:10:33:
fe:55:30:5b:41:f1:15:68:51:07:61:93:24:cd:87:
c8:68:09:4c:55:21:0c:76:86:a7:8c:0e:24:27:fa:
c7:9e:57:df:6d:99:79:78:72:69:40:b6:80:4c:82:
f6:9e:43:ec:2d:4f:2d:8c:ff:5b:19:6d:75:66:e6:
69:fa:c0:0e:3d:f7:ed:da:2d:2d:c6:e2:c1:40:cf:
f0:ea:39:13:cb:23:af:ad:b8:0e:ef:71:7b:e4:9b:
30:04:12:2d:17:fc:ed:e8:c8:09:81:e4:84:6b:38:
c9:8b:0e:01:04:90:5f:b5:29:7e:0f:b8:7f:53:23:
78:e2:4d:c5:82:87:c2:c6:f3:09:dd:98:3b:51:b2:
4a:90:20:5d:7f:8e:a6:26:db:50:45:4a:d4:ad:30:
4a:7e:1a:70:41:9a:9b:b7:43:be:fe:b8:c4:4b:e6:
d5:f1:de:ac:c8:3f:b8:9f:ec:67:33:64:ec:02:20:
f9:a6:59:42:10:44:ab:de:85:bf:18:15:3b:32:fc:
04:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E8:A1:64:28:B9:7C:AC:03:7C:73:C5:37:59:55:A0:E0:BC:40:07
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:7c:a3:be:da:0c:b7:0c:7e:34:cc:8a:b1:b4:0e:b7:e4:af:
5c:72:bf:64:88:53:21:43:b5:45:bd:80:80:28:db:14:64:e9:
6b:ca:6a:e3:d5:e8:c0:ee:23:b5:4d:2a:77:95:ff:0b:03:95:
16:e7:5f:cd:91:74:7c:26:e5:cb:bf:62:a1:5b:fb:20:24:9e:
e3:0d:dc:45:32:d4:f5:53:1f:11:dd:39:04:9e:79:6f:fc:f6:
1a:53:2c:0f:3e:f9:8d:bd:8a:f2:1d:d4:d5:65:28:54:f7:e5:
11:9f:06:48:b5:64:ab:71:05:12:e8:35:15:dd:21:2f:b3:23:
4b:ae:2f:db:70:76:f1:38:76:3d:74:54:dc:ef:11:82:d6:80:
55:32:15:3d:d5:b4:7b:7e:8d:91:97:19:9c:96:74:10:ac:ac:
50:c4:ee:a8:7c:2d:f9:56:d4:5a:fc:f0:b6:66:42:45:3d:42:
b3:54:f9:eb:eb:1e:73:4b:8d:b6:3e:cc:fd:6d:c2:97:c4:7b:
a7:ab:59:a8:b4:09:5a:0c:7e:b7:34:7d:21:49:dd:29:ac:a5:
4b:18:69:62:86:fd:a1:35:5b:11:12:bd:6e:9f:54:78:f5:0f:
c5:e3:80:25:1d:2c:a7:a0:87:95:df:21:84:87:6a:e4:a8:f3:
bb:c9:6e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:35:17 2026 by rpki-client