Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: 5BG2wMc3ocWk9HFUY75F3e5u6UCjBwNbpLuxzTVlTGU=
Subject key identifier: C7:C4:E4:40:5A:5C:90:06:E6:B5:DD:A1:35:65:D9:D2:E3:28:25:F7
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019EC06DEB1AD898B87822F663E6E88A0050
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 10:01:29 +0000
Manifest this update: Sat 13 Jun 2026 10:01:29 +0000
Manifest next update: Sun 14 Jun 2026 10:01:29 +0000
Files and hashes: 1: 0cXxJ5BrjDm6rReB_iGqGCIVB64.roa (hash: 3z1rKVdZaeGfXgSTMjxBzti3FlrMlqldx9sJbZNGjcw=)
2: dhA92pR8NVPLyW6mzK0XHy6ZgWk.roa (hash: AS2PEdg4UVrkHexwfvP85NaTExj06DZhVZRZTbTSV2U=)
3: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: D+vNRtxvXRC6TEUotjAL13yvSQwOhq1UfZEa08M/LIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:eb:1a:d8:98:b8:78:22:f6:63:e6:e8:8a:00:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Jun 13 10:01:29 2026 GMT
Not After : Jun 14 10:01:29 2026 GMT
Subject: CN=c7c4e4405a5c9006e6b5dda13565d9d2e32825f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:6e:e3:74:48:80:1f:cf:78:2d:f0:c0:f0:
88:cf:8c:cf:02:12:dc:85:08:37:5a:40:b5:0f:ff:
e1:46:f9:01:96:30:07:8b:eb:b0:20:1e:db:53:95:
35:fe:77:c8:22:50:61:ea:1e:66:d3:f6:95:5e:9c:
4a:2b:af:3c:a3:5f:c3:56:23:c5:7e:da:13:76:ab:
c2:e5:d0:a7:99:30:42:87:f8:16:88:87:ae:74:e6:
a5:63:32:df:12:8e:dd:c9:d4:8b:25:7d:f5:13:65:
68:82:2b:f0:9d:0f:d5:69:5e:04:9a:66:6d:24:35:
3b:08:97:ff:14:f7:c5:1a:47:d6:16:de:53:5e:51:
1e:9d:69:0f:b0:22:e8:7d:50:19:3e:06:1d:15:0a:
fd:3b:69:3b:be:c7:15:9c:d3:bc:ab:49:35:94:22:
fc:39:6d:58:34:f1:4f:bd:53:fe:4b:71:0c:62:05:
f1:55:03:73:3f:5f:d0:3f:05:27:b2:68:df:96:b9:
a6:85:cd:bf:0b:02:9c:fe:24:a3:db:e8:ad:63:5f:
e5:79:c4:b5:ca:c8:94:65:06:ff:39:72:d2:31:bf:
67:54:26:1d:6d:37:d3:79:ee:8d:0a:1e:ec:f0:44:
fa:ac:e3:f4:c0:2d:38:02:7c:e6:96:8c:d5:0c:da:
e1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C4:E4:40:5A:5C:90:06:E6:B5:DD:A1:35:65:D9:D2:E3:28:25:F7
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ee:c6:6a:92:9c:d3:37:b1:ad:49:4b:b4:e2:11:25:92:59:
43:c7:09:5d:e4:85:0b:95:af:cf:c0:3e:fa:5a:3b:65:e2:73:
bd:79:62:33:65:13:df:85:bd:d2:17:6e:2e:4f:b8:4b:45:dd:
c3:10:33:2a:cf:02:69:13:e7:eb:5c:86:36:fa:cb:b1:74:8f:
e6:4e:6f:15:96:00:0e:da:3e:eb:a1:37:f9:a0:bd:68:d4:c4:
e0:c0:af:cb:db:ee:43:c0:f2:0d:65:34:3f:6f:c7:80:3a:1d:
e5:2e:72:e4:90:76:68:74:58:55:3d:28:4d:75:e8:4f:9f:aa:
b0:e9:8a:09:df:6f:f1:8c:12:77:be:9f:43:29:c4:22:da:37:
38:c8:76:d0:f6:4d:ec:ad:15:22:0b:f3:b3:05:5e:cd:56:9f:
aa:80:6e:a5:d7:92:4d:72:08:f0:0f:04:c5:92:dd:1c:c3:08:
c8:9c:e3:61:b6:07:cc:d5:5b:9a:d8:c4:a3:72:06:81:02:ec:
55:a3:5a:de:3d:80:99:62:d5:5a:6d:b4:83:eb:8c:a6:d8:fd:
01:51:da:e1:be:41:27:c3:cd:0b:e7:5c:52:60:ce:b6:48:d0:
da:ad:7e:0a:3f:26:98:42:8c:c7:39:1f:2c:70:cc:86:dc:d4:
4d:8e:a1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:45:12 2026 by rpki-client