Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: pwXjsuvRsVtjHN0kIykEDpqMaVFztGERhjwuoTJz51U=
Subject key identifier: 60:F5:88:DD:03:31:3A:07:56:6D:EE:41:FD:D3:15:31:70:43:33:5A
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019D99D04EAB3078CF7CC121EF77BDC667D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 1853
Signing time: Fri 17 Apr 2026 05:00:58 +0000
Manifest this update: Fri 17 Apr 2026 05:00:58 +0000
Manifest next update: Sat 18 Apr 2026 05:00:58 +0000
Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: Vvr5dHD4rqVYTWOjlARBP542jpMqK6XZI3K1mnrTG/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:4e:ab:30:78:cf:7c:c1:21:ef:77:bd:c6:67:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Apr 17 05:00:58 2026 GMT
Not After : Apr 18 05:00:58 2026 GMT
Subject: CN=60f588dd03313a07566dee41fdd315317043335a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:09:42:cb:bc:bf:cc:86:ea:41:53:a8:61:9c:
ee:b2:b7:22:b5:38:bc:2c:19:72:0c:83:89:f6:f2:
c1:76:f5:37:a4:e8:d0:8e:66:7d:e3:d1:af:49:81:
16:d1:3b:76:b2:2d:08:63:fc:a3:5f:ab:84:67:0f:
78:30:f2:c9:17:6a:f3:cf:f3:7c:a1:43:d0:37:74:
f8:4c:85:86:5a:24:83:5d:9a:14:77:3b:af:9b:fd:
0f:46:34:c6:69:23:26:b0:87:e1:08:0e:9b:92:71:
64:e4:e1:e8:96:e1:0c:25:2c:cc:27:2c:2b:35:0f:
36:a3:13:ec:14:60:0a:3e:cb:38:90:2f:2f:6d:ff:
69:71:fc:94:a0:a0:ae:33:dd:12:1c:91:3d:7d:ad:
15:91:fc:be:3c:9d:97:84:3e:09:85:fc:73:83:07:
19:e0:2b:35:bf:98:85:77:84:51:8d:57:cb:1b:ae:
df:82:c3:00:4d:e3:8a:a2:aa:c3:15:ee:b8:88:29:
fe:41:ad:c7:ff:cc:46:66:8a:d8:2e:2b:76:8a:ca:
b3:a4:2f:a7:c1:4b:db:61:a9:8f:25:eb:3c:b7:d7:
d1:04:6b:10:5c:34:58:c0:af:14:14:a5:2b:94:82:
a4:cf:b6:21:5c:05:63:06:03:ce:32:64:42:66:d9:
1b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F5:88:DD:03:31:3A:07:56:6D:EE:41:FD:D3:15:31:70:43:33:5A
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:98:c9:88:45:89:74:74:5c:4f:fd:da:53:05:0a:b9:ee:c4:
f2:6e:11:22:d0:00:27:c9:43:be:04:6f:b6:e3:50:d3:62:cc:
59:42:05:99:29:e3:a7:51:05:8b:f2:c4:a8:91:a5:83:b9:77:
11:6c:5f:20:34:5f:14:b8:c0:98:14:d8:11:73:b3:56:ae:40:
67:85:04:0d:8e:9e:7c:41:ac:4f:ea:f4:87:a4:b8:55:9a:de:
fe:22:87:14:5e:ef:5b:1a:fd:43:df:ec:30:85:74:79:8a:4d:
53:0e:4a:1e:80:fe:69:f5:91:77:45:24:c0:54:a8:c4:2a:9b:
6b:4f:89:36:fb:7b:59:c8:b0:4d:11:4a:d8:f7:05:1c:7d:c2:
66:2f:91:15:68:68:75:89:2c:7c:b2:5d:1a:d2:a6:23:48:e5:
3c:04:9a:93:53:31:42:2d:8e:dc:a6:da:b6:9b:3f:42:6b:5d:
fa:b5:4e:06:46:10:fd:01:74:7c:c1:d7:92:fc:8d:6c:8b:b0:
7a:c7:57:bf:65:b0:f5:8a:68:00:d0:0b:87:61:51:9a:98:77:
79:c3:f9:77:d7:53:2e:3a:7c:05:f6:bf:08:4a:cd:71:c0:98:
89:f7:05:02:7d:4b:dd:44:70:e7:24:06:d3:65:aa:e2:06:55:
c1:8a:2e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:30:26 2026 by rpki-client