Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: gtcLix7zfxoLfgEm1xnqWWWyw32t8aoPJGFykCthydY=
Subject key identifier: 7B:B4:38:76:59:4A:1E:33:C3:CB:51:2F:DA:39:D1:85:9B:6E:BD:DC
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019EBF5AFAB1FCDF2EF32300876E6DB9BD18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 18EB
Signing time: Sat 13 Jun 2026 05:01:11 +0000
Manifest this update: Sat 13 Jun 2026 05:01:11 +0000
Manifest next update: Sun 14 Jun 2026 05:01:11 +0000
Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: xML53CXIXjQKMeCuT1UZvnl626IQ7dpQm4TFer2O5gk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:fa:b1:fc:df:2e:f3:23:00:87:6e:6d:b9:bd:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Jun 13 05:01:11 2026 GMT
Not After : Jun 14 05:01:11 2026 GMT
Subject: CN=7bb43876594a1e33c3cb512fda39d1859b6ebddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1e:23:76:d2:f9:3c:0e:8c:a1:1b:37:ea:53:
56:07:22:0a:b4:14:d4:80:da:c8:54:eb:7f:7d:d0:
98:d9:69:8d:43:a9:c5:17:d9:59:71:a1:a0:1c:0a:
be:e0:9c:1b:83:fd:71:48:b6:83:a7:44:86:ee:38:
7f:1d:78:0c:1d:1b:5d:e3:2f:ba:ce:ab:47:20:18:
b3:56:1e:2b:f0:31:27:f3:3f:49:38:4a:f9:10:da:
a7:e9:00:47:f3:f2:05:3d:b1:c6:6b:ea:e8:c7:4d:
0a:70:e3:1b:af:df:8e:74:52:f4:19:c5:9f:b4:13:
de:cc:68:ed:88:49:d2:bd:7f:ac:a2:b0:4a:5c:55:
a3:89:d0:0b:a0:53:a7:dd:56:ad:15:47:ae:d9:cc:
8d:97:2a:dd:ef:9e:3d:6b:3d:8c:6c:c9:49:4c:b3:
40:1b:46:1d:f9:62:d2:be:28:36:08:51:8e:a6:22:
93:fb:a9:3f:f9:ed:da:ec:f6:f8:09:62:8c:e9:f7:
3e:2f:0c:62:2b:a7:95:02:31:05:6a:4c:58:22:7e:
15:ab:90:60:b9:6b:bc:4d:de:e8:55:3b:19:16:74:
91:1b:6f:41:87:36:4f:4d:73:92:b2:6f:e2:91:2a:
3f:a2:46:a1:43:9a:22:ce:9b:88:57:a5:55:ff:f8:
9e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B4:38:76:59:4A:1E:33:C3:CB:51:2F:DA:39:D1:85:9B:6E:BD:DC
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f9:6f:d1:61:60:53:9a:3f:96:80:6d:8e:5e:68:bb:fd:15:
28:6e:88:5b:8b:4e:c3:b0:c1:8f:ef:70:c8:93:ff:f2:66:e9:
fb:4d:33:a8:a9:16:4e:39:6d:e0:54:1e:33:e8:ba:6b:f5:8f:
7a:15:1c:b7:1a:96:b0:02:9e:82:a7:67:5d:19:3a:6e:54:35:
d7:55:b7:e0:f1:99:1d:d2:af:b6:b9:9f:5d:a3:aa:00:82:df:
bb:dc:24:6c:00:53:ba:2d:67:55:0f:05:9f:bc:a3:b1:da:bb:
14:0c:86:e7:8d:06:44:8e:61:1a:72:00:49:1a:c2:bc:e8:82:
d1:76:2a:b1:8c:a5:a1:6b:f7:3d:cf:c8:e8:b5:11:f8:42:e7:
df:e9:0a:86:c4:9a:4a:0e:49:d4:f8:aa:99:78:a3:4e:cb:ce:
89:91:83:64:51:2c:aa:4e:63:3b:b4:ea:c2:d5:52:31:01:df:
43:38:51:fd:6a:5b:ad:67:de:6d:48:5c:da:ea:f4:c8:00:62:
a5:41:76:5e:ff:9e:d1:72:fc:1a:87:d1:9d:d5:b5:5b:ee:f1:
71:46:35:b3:15:b3:96:ff:d2:32:c9:a9:af:4f:4e:b4:ca:b3:
03:19:f7:a4:4e:56:2f:3b:1e:b1:a6:64:d3:1f:ff:03:75:63:
25:e5:6f:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/Wvqx/N8u8yMAh25tub0YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmMTcyNDM5NTk5ZDdkYTUyNTc5Nzg5OWJmMjEzYjhlNjM1
NTQ5MTQwHhcNMjYwNjEzMDUwMTExWhcNMjYwNjE0MDUwMTExWjAzMTEwLwYDVQQD
Eyg3YmI0Mzg3NjU5NGExZTMzYzNjYjUxMmZkYTM5ZDE4NTliNmViZGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnh4jdtL5PA6MoRs36lNWByIKtBTU
gNrIVOt/fdCY2WmNQ6nFF9lZcaGgHAq+4Jwbg/1xSLaDp0SG7jh/HXgMHRtd4y+6
zqtHIBizVh4r8DEn8z9JOEr5ENqn6QBH8/IFPbHGa+rox00KcOMbr9+OdFL0GcWf
tBPezGjtiEnSvX+sorBKXFWjidALoFOn3VatFUeu2cyNlyrd7549az2MbMlJTLNA
G0Yd+WLSvig2CFGOpiKT+6k/+e3a7Pb4CWKM6fc+LwxiK6eVAjEFakxYIn4Vq5Bg
uWu8Td7oVTsZFnSRG29BhzZPTXOSsm/ikSo/okahQ5oizpuIV6VV//ieywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHu0OHZZSh4zw8tRL9o50YWbbr3cMB8GA1UdIwQY
MBaAFD8XJDlZnX2lJXl4mb8hO45jVUkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEt
ODg3MzMxZWZiNzE1LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEtODg3MzMxZWZiNzE1
LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvlv0WFg
U5o/loBtjl5ou/0VKG6IW4tOw7DBj+9wyJP/8mbp+00zqKkWTjlt4FQeM+i6a/WP
ehUctxqWsAKegqdnXRk6blQ111W34PGZHdKvtrmfXaOqAILfu9wkbABTui1nVQ8F
n7yjsdq7FAyG540GRI5hGnIASRrCvOiC0XYqsYyloWv3Pc/I6LUR+ELn3+kKhsSa
Sg5J1PiqmXijTsvOiZGDZFEsqk5jO7TqwtVSMQHfQzhR/WpbrWfebUhc2ur0yABi
pUF2Xv+e0XL8GofRndW1W+7xcUY1sxWzlv/SMsmpr09OtMqzAxn3pE5WLzsesaZk
0x//A3VjJeVv1w==
-----END CERTIFICATE-----
Generated at Sat Jun 13 15:08:30 2026 by rpki-client