Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: uDTjUNCUsJo4/KxlGBlUVk7DpS7xg2D5Xa/kubTUnOo=
Subject key identifier: 2C:96:0B:4D:A7:21:D0:E8:49:26:66:B5:45:1B:CD:31:E3:54:BB:E3
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019DA3E5F0ADBB87609FFEFCE237DFD0BFE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 18C8
Signing time: Sun 19 Apr 2026 04:00:48 +0000
Manifest this update: Sun 19 Apr 2026 04:00:48 +0000
Manifest next update: Mon 20 Apr 2026 04:00:48 +0000
Files and hashes: 1: dhA92pR8NVPLyW6mzK0XHy6ZgWk.roa (hash: AS2PEdg4UVrkHexwfvP85NaTExj06DZhVZRZTbTSV2U=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: s+1kbz0J3mLo0B6FgXn/I7PqqxxnoqkH+aWZqk/y+YI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e5:f0:ad:bb:87:60:9f:fe:fc:e2:37:df:d0:bf:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Apr 19 04:00:48 2026 GMT
Not After : Apr 20 04:00:48 2026 GMT
Subject: CN=2c960b4da721d0e8492666b5451bcd31e354bbe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:df:e1:ec:ad:74:fc:c9:da:4e:f2:35:e6:80:
2f:37:39:74:d3:0b:6f:26:51:d7:a8:67:71:89:65:
bf:bc:6c:e9:c5:40:67:0c:dc:88:ae:91:50:e8:b8:
d7:d3:82:b5:27:ba:5b:7e:d8:78:fc:fc:a1:2b:10:
89:af:7e:00:c5:32:0b:f3:fb:a0:32:41:9a:81:f8:
ca:b9:2e:ae:59:d4:53:22:17:6f:03:0a:4c:f8:6e:
81:06:98:be:16:a5:7b:f7:54:69:a8:a7:ac:14:23:
1d:fe:83:1c:46:43:d8:e4:1b:9b:30:f3:5b:63:ce:
c5:21:91:09:02:1e:0c:14:a3:04:23:d9:84:0e:fd:
9c:af:ce:25:ad:3e:07:f6:db:09:fe:70:18:3f:c4:
5d:b7:ee:c4:8f:c4:bf:1c:6e:a0:d5:d8:99:30:08:
fc:4c:38:49:f1:95:ce:75:66:95:9d:06:8f:96:36:
db:03:be:db:85:47:b7:b0:bf:3a:4b:c1:39:39:12:
18:8e:ce:2a:eb:6f:e4:5b:4f:9e:16:87:f8:c6:2d:
be:d3:d4:d5:4f:26:09:9c:2e:75:c9:fd:ae:a3:91:
f0:be:d0:ce:48:df:68:ae:22:3e:cc:c7:66:63:2c:
44:2b:24:12:df:e6:ee:40:9f:e2:33:a9:51:a5:a4:
ac:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:96:0B:4D:A7:21:D0:E8:49:26:66:B5:45:1B:CD:31:E3:54:BB:E3
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:8a:d1:df:3f:5d:1b:0c:bf:bb:c3:8a:c9:cc:a4:0c:0e:81:
65:c6:fb:d3:b1:c5:f2:b5:ad:85:35:81:e8:b3:b2:4b:78:31:
27:ae:b2:01:a0:9f:d6:8c:da:93:70:5d:3c:50:b2:4b:45:87:
db:78:94:14:42:80:2a:5c:fa:83:be:70:f5:01:49:ed:68:46:
da:f9:55:2f:28:c5:0b:3f:f8:5f:06:c3:f8:da:92:13:e4:23:
49:0e:2e:7b:ae:22:8b:a9:ae:48:ba:1d:fc:67:2e:18:d0:61:
3a:34:03:d1:76:61:fd:03:ba:d1:ae:b4:c6:1b:9e:18:9a:dc:
58:fc:c3:12:a3:83:24:73:fb:21:c7:13:61:1b:da:4c:f3:3f:
7d:a2:75:d0:e6:b9:a2:47:92:e3:de:8e:60:7c:d7:9c:6d:cf:
7f:07:94:da:c1:4f:e9:53:14:69:e0:df:c2:a0:8e:c0:b7:9b:
71:ea:24:f8:8a:7f:13:5f:c5:24:48:7b:d6:42:58:60:bc:a1:
2d:7a:dd:4c:b0:f3:6e:46:58:f5:7a:a0:30:e3:3e:80:11:4e:
3e:7f:d7:6d:0b:1f:9f:d7:58:f3:4d:16:bd:f8:14:58:8a:af:
6b:ed:37:bf:ad:9e:e6:68:71:43:a8:fb:e4:67:17:d4:08:a7:
5e:4f:d2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:59:41 2026 by rpki-client