Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: 3ltVCMTvOBSRp+ScvGv/hAOZMy9x6tuu+exPoMyYz3U=
Subject key identifier: 8A:2A:33:2B:8B:3E:21:88:BC:5F:2B:D4:BD:8F:7D:5D:03:DC:F5:90
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019CAC46AFA936894596D5DEEE0D855181D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 17D8
Signing time: Mon 02 Mar 2026 02:00:39 +0000
Manifest this update: Mon 02 Mar 2026 02:00:39 +0000
Manifest next update: Tue 03 Mar 2026 02:00:39 +0000
Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: CaAWVR/aH3IPLHhLJ9udbtlF261DatFCkAeJNn411us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:af:a9:36:89:45:96:d5:de:ee:0d:85:51:81:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Mar 2 02:00:39 2026 GMT
Not After : Mar 3 02:00:39 2026 GMT
Subject: CN=8a2a332b8b3e2188bc5f2bd4bd8f7d5d03dcf590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f2:c9:76:89:46:08:32:6d:57:f9:fd:06:62:
e1:60:b4:09:f7:8b:60:7b:5f:02:18:1c:e7:23:5c:
f4:90:e3:bd:00:75:ae:f5:e0:61:dc:ed:9a:9c:ad:
c8:3f:08:c5:42:e3:d0:31:44:d7:32:2a:75:a7:85:
87:cd:25:8a:cf:41:a5:4d:80:65:11:91:29:0f:f5:
ea:f4:85:ec:29:05:77:dc:b4:d2:b7:ba:9a:6a:ed:
10:cd:04:70:74:d3:74:e7:fc:66:99:81:cb:b3:ee:
bd:07:6f:72:ef:88:44:37:07:25:7a:e9:30:13:49:
46:71:8b:64:45:0e:ed:91:bc:71:6f:92:5f:0b:2f:
52:a8:29:f6:56:c5:4a:fc:04:28:90:12:53:c8:38:
3e:96:3f:b8:83:bc:ba:7c:22:d7:c4:70:49:8c:74:
f4:5b:ea:bf:9c:2f:7e:f8:15:1c:1f:38:28:7e:30:
a9:6e:c1:9e:22:8b:60:d4:df:1b:fa:27:11:23:10:
5d:5c:e1:bc:c8:16:7f:e7:91:07:0e:f7:2e:9b:75:
0b:c9:7b:b4:a6:c3:98:bf:2e:c9:1c:3e:e5:67:1f:
74:f3:39:25:77:3c:fc:41:1e:d5:e8:85:19:2e:93:
2b:c1:b0:16:a8:5e:92:6c:ed:09:f9:9e:2d:33:80:
cf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:2A:33:2B:8B:3E:21:88:BC:5F:2B:D4:BD:8F:7D:5D:03:DC:F5:90
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:63:69:60:2f:5d:d4:31:96:06:9e:23:cc:fa:ce:3e:47:20:
8d:de:2a:e1:ba:63:87:c5:de:51:8b:c3:00:cc:9b:17:73:a4:
e3:38:3a:5b:5b:63:ee:10:5b:cf:ea:71:ef:fa:d4:06:50:81:
83:ea:14:4c:95:75:35:91:af:ce:43:08:fd:50:2a:3e:fe:73:
e1:93:d6:c8:89:e3:48:63:12:a8:5f:67:8f:ee:eb:be:91:4e:
3b:bb:0b:8b:a9:e0:43:7e:e2:fd:a0:9f:a6:ad:de:5b:67:b9:
27:c6:15:30:16:3c:36:dc:99:5e:88:4f:91:ab:ec:fd:23:f3:
c5:92:47:c1:3b:59:b0:57:7e:13:84:94:ae:43:81:f6:2b:17:
83:95:4c:6a:75:91:35:db:ce:e9:3e:10:ed:65:67:28:5c:d8:
1c:f4:2c:af:c1:92:72:c0:e9:c3:2f:58:09:0b:16:98:2d:19:
3f:74:83:c0:53:68:61:86:e7:b4:3e:0b:8f:b7:30:c9:bb:99:
ab:4f:92:1b:3c:9d:41:e8:ca:d5:60:78:9b:18:8d:aa:f6:26:
b2:ef:fe:58:50:23:73:1c:1f:16:7a:f5:12:c9:75:14:05:6e:
11:52:ed:a3:f9:38:20:e7:6e:17:7f:41:80:67:c3:3b:c0:54:
1b:79:6a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:55:21 2026 by rpki-client