Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: vfleBARbYuUKWMJf6TkCGYYmLlvdh0xWTskg52VzVlw=
Subject key identifier: FE:B0:81:B5:ED:1A:7F:B3:EB:D4:53:9E:58:41:D8:70:3E:4D:07:8D
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019EBEB64748BC28FA3067C9ABAA9EE08B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 0C35
Signing time: Sat 13 Jun 2026 02:01:17 +0000
Manifest this update: Sat 13 Jun 2026 02:01:17 +0000
Manifest next update: Sun 14 Jun 2026 02:01:17 +0000
Files and hashes: 1: 5-fSRldHA_TyCo0Af_n4H7VHHoo.roa (hash: n/VVjN3d2+A+fBj8+Kv149bG42PjdEV7GiSsjv6L+Uw=)
2: JjXi4XbAnV9bj8nE6_XGuu1V074.asa (hash: O90Cg0AUX3YziSsowsx54UsgUbqTnyh9MTtkhA73QD8=)
3: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: 99hAyGQnPRXu9xDtmaIG2iYCmVxYj+2spTNcz/2Si7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:47:48:bc:28:fa:30:67:c9:ab:aa:9e:e0:8b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Jun 13 02:01:17 2026 GMT
Not After : Jun 14 02:01:17 2026 GMT
Subject: CN=feb081b5ed1a7fb3ebd4539e5841d8703e4d078d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:93:80:43:be:1b:dc:aa:fe:89:3e:53:89:b3:
cf:d7:82:28:43:a9:1b:11:a3:bf:c6:09:50:a2:9a:
a4:f4:31:52:e5:bf:93:db:04:9a:53:fa:b3:da:e7:
7d:a9:6a:7e:f1:d8:f7:ba:f7:1e:e1:bd:ef:4e:79:
50:be:88:60:bc:2b:5b:34:7a:68:7d:e8:46:bd:d2:
63:55:26:8e:31:c7:9c:c7:87:b3:2f:7f:23:a3:d1:
2f:43:e7:33:1f:26:3f:7e:d8:d3:f6:37:58:ae:3e:
39:f5:e5:fb:dc:aa:a2:b1:e0:d7:c1:f9:15:69:fe:
2b:0f:3f:2d:c6:8c:d2:5b:80:5f:93:cc:97:62:8f:
e4:56:0a:87:ac:d5:bf:f2:fd:a8:71:4a:05:1d:3b:
95:c7:7a:65:12:db:6f:b1:05:21:94:bb:29:7b:86:
a5:88:11:11:e5:d3:63:50:7f:f0:9f:58:da:db:a6:
e3:3e:f0:66:4f:56:de:a7:18:9e:b5:86:f5:26:03:
6a:40:7e:b7:8c:11:c3:fa:b9:a7:68:1c:84:b8:34:
f2:a1:ef:d9:30:05:1e:eb:e2:d1:76:93:89:7b:aa:
59:94:2f:c3:bb:48:95:f5:10:8e:47:f5:b8:b5:75:
94:ec:ed:36:da:8e:61:ed:33:68:6c:2c:7a:27:01:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B0:81:B5:ED:1A:7F:B3:EB:D4:53:9E:58:41:D8:70:3E:4D:07:8D
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:04:34:30:3c:5c:e2:b9:60:d4:da:25:a1:ab:3c:d5:aa:51:
b1:ef:ca:46:31:fa:d9:8f:44:3c:c9:9c:9d:98:2e:0c:34:33:
3a:22:2e:20:54:5b:77:04:c7:05:0b:e3:f6:76:7e:b4:04:d8:
79:98:d6:79:0c:88:f1:03:94:ca:e0:48:1f:8b:58:60:a5:a9:
5c:bc:6c:4a:01:2e:54:79:a5:37:fd:e4:a3:eb:ed:18:29:b7:
d6:ef:9f:e1:02:5c:23:18:07:b9:c7:e1:7f:43:4a:c5:2d:aa:
57:90:0e:84:ba:f6:73:e6:ca:7b:45:d3:32:fc:9f:16:f5:f8:
8b:a3:59:50:07:bd:45:e7:51:aa:a0:95:cb:92:ae:cd:6c:db:
99:fd:37:00:c4:37:f5:22:54:99:6c:f0:5e:99:24:11:af:62:
89:75:28:ab:a3:d2:af:7b:e9:8c:31:e5:bd:54:8f:5c:13:38:
f4:cc:d6:df:8f:80:6b:80:a9:1f:e8:fd:bc:04:4f:cd:a6:16:
46:5a:ad:a6:1b:0a:36:c0:b4:15:7d:ef:ac:db:c7:33:d4:fe:
c2:bf:c2:31:aa:14:23:f8:2d:ed:7a:ad:37:97:55:82:d1:31:
15:77:6e:24:e1:e3:eb:a7:0c:73:fe:18:eb:2d:72:f1:c3:74:
7b:20:47:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:42:34 2026 by rpki-client