Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: RFipxkTKOJ/nuKATmt0UVti09aXnO8xv2LC5l91fAVs=
Subject key identifier: C2:E2:28:D7:3A:EB:43:5E:C6:CD:39:E3:E9:34:AA:BC:6E:72:35:9B
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019D9B19C3D8772C55CAFD06593A2E6CA113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 0B9E
Signing time: Fri 17 Apr 2026 11:00:50 +0000
Manifest this update: Fri 17 Apr 2026 11:00:50 +0000
Manifest next update: Sat 18 Apr 2026 11:00:50 +0000
Files and hashes: 1: 5-fSRldHA_TyCo0Af_n4H7VHHoo.roa (hash: n/VVjN3d2+A+fBj8+Kv149bG42PjdEV7GiSsjv6L+Uw=)
2: JjXi4XbAnV9bj8nE6_XGuu1V074.asa (hash: O90Cg0AUX3YziSsowsx54UsgUbqTnyh9MTtkhA73QD8=)
3: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: 7ryJR7Zo1/WVXeq0zzLQe7xD/vl9mvc1RchlLTUqbto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:c3:d8:77:2c:55:ca:fd:06:59:3a:2e:6c:a1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Apr 17 11:00:50 2026 GMT
Not After : Apr 18 11:00:50 2026 GMT
Subject: CN=c2e228d73aeb435ec6cd39e3e934aabc6e72359b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:ef:8c:1a:89:34:c8:8c:9e:b6:d7:41:d0:
02:94:6b:ce:74:64:8b:46:ee:25:78:a5:67:ed:6b:
8c:1c:d5:f0:38:2e:71:d4:f8:92:2b:14:f3:40:a7:
17:f3:1d:69:5b:81:d8:5e:b1:0e:93:7d:c7:8a:0a:
dc:83:15:05:a1:60:55:3e:39:ca:3d:d3:82:fc:8c:
ae:67:61:73:ab:bf:80:56:6f:1f:ef:90:55:8b:fa:
f9:99:5b:53:bf:1f:15:13:2e:50:cf:e3:f5:d6:49:
99:e0:b5:32:89:f6:74:f2:38:bf:48:7a:b2:e2:6f:
e4:89:7d:04:7f:a2:73:a8:f3:0e:d7:95:13:83:c2:
6f:ab:c9:03:f9:51:fd:87:2a:6d:7c:8e:11:15:c8:
f6:7a:c6:04:1f:6d:be:83:ab:0a:e6:b4:75:cc:94:
77:c8:ab:2f:f0:04:d9:cb:fc:4a:64:78:5d:36:34:
e8:80:a7:d5:bb:ee:52:24:6c:14:6e:a6:2d:70:7c:
0b:08:24:38:d1:df:6b:9b:e7:bc:db:94:d5:1c:d2:
ba:40:b9:da:62:c9:13:dd:fa:63:e0:e8:4b:f7:26:
f5:40:9d:98:90:dc:d9:67:45:f4:7a:12:06:20:ee:
fd:f6:b3:da:f4:54:e1:22:ac:dc:9f:2d:6b:de:b9:
42:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E2:28:D7:3A:EB:43:5E:C6:CD:39:E3:E9:34:AA:BC:6E:72:35:9B
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:4a:ae:20:ce:08:60:e7:15:cf:c4:80:7a:cf:6e:48:f0:f4:
d5:e1:22:b5:8a:a5:62:b6:e6:89:88:76:b4:53:68:2a:10:20:
97:ad:08:d0:38:86:e0:01:49:b1:4f:3d:d2:bd:38:8b:5b:10:
49:3f:ad:16:e7:0b:d6:ad:03:77:8e:cc:29:1a:8f:dc:5f:3b:
ac:1f:cb:37:69:f9:67:d9:1a:f3:17:63:22:38:62:73:c5:71:
b2:00:ac:42:3a:6e:cb:09:ef:d8:ef:34:ba:f8:95:49:ff:6b:
b6:de:08:2a:c2:a7:23:76:51:e1:fe:cf:da:db:53:9a:f8:69:
9d:03:c2:5b:72:b1:df:b3:27:ff:5a:21:9c:ad:7b:93:78:40:
e5:7e:05:1d:00:f3:f3:3c:b1:54:8e:c4:27:15:62:20:af:8b:
b9:df:f6:12:6d:b6:04:00:1e:17:66:1d:98:42:0f:e9:2a:fc:
00:44:c9:18:8b:d4:1f:46:ac:9e:ba:4c:b5:64:59:fe:11:b4:
4c:16:3a:71:33:f7:f4:1b:8b:5a:ef:cb:fc:b1:e4:46:1e:1b:
bb:7e:50:55:e5:d1:50:a4:2e:f1:b9:4e:27:9e:71:dd:a0:b9:
5d:31:25:20:73:b0:13:6f:8a:47:ee:a4:25:fe:fa:90:eb:28:
d4:b2:51:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:29:42 2026 by rpki-client