Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: OXBAQ8QWL6Q5N/iF6523mJ5HsmdZwenyo2ytnFHR6mA=
Subject key identifier: 2A:C2:92:99:F8:A6:7C:40:AB:27:64:3F:7E:17:4A:D7:E5:F0:8A:48
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 019D9B5176625137B2D474D3965C5620F6B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 03D6
Signing time: Fri 17 Apr 2026 12:01:40 +0000
Manifest this update: Fri 17 Apr 2026 12:01:40 +0000
Manifest next update: Sat 18 Apr 2026 12:01:40 +0000
Files and hashes: 1: CB5dZw_OUbWQmf6rrxVZ4SzmOPA.roa (hash: 7zRrcVpQEfWDa1cgriGdXYM3UTbJ90zYlGXeGAuJSjI=)
2: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: h7QgIZP5eZps9P38G4FA5/OcM7AgtzvItR1ica/jXlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:76:62:51:37:b2:d4:74:d3:96:5c:56:20:f6:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Apr 17 12:01:40 2026 GMT
Not After : Apr 18 12:01:40 2026 GMT
Subject: CN=2ac29299f8a67c40ab27643f7e174ad7e5f08a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:22:64:8f:39:e0:28:41:dd:79:7e:d1:72:
f2:1c:a5:5c:e2:67:9f:71:ed:97:b6:e0:5d:64:37:
44:a0:10:87:f3:34:16:ed:21:b7:38:a6:a6:12:4b:
03:64:bb:59:f1:db:cc:be:90:b3:ad:65:03:f3:4d:
ae:7c:87:f2:00:0f:fa:30:07:96:04:d8:c8:a9:a2:
d6:b0:e8:f2:ae:6c:dd:d8:72:ad:d3:a8:36:6d:93:
96:9b:19:f7:24:6a:e3:e3:93:0f:eb:c4:4a:c0:09:
06:71:f5:ea:9f:07:b8:9d:cb:bc:76:b9:7f:d2:a5:
c6:48:d3:b0:5c:41:ee:ef:b3:a7:9d:5c:f6:d2:2c:
85:1f:bd:06:80:9b:97:5e:a0:73:e6:ef:79:47:fd:
c0:78:71:d4:75:87:f1:00:0a:c2:c9:17:83:88:2b:
8c:ae:fb:22:8d:1d:80:1b:1e:84:95:85:83:96:a6:
f9:18:64:b5:5f:0d:e0:e7:19:09:10:cc:e3:b5:41:
55:14:18:47:27:b8:d0:4e:5e:24:4c:68:05:3f:d1:
fa:6f:ef:3a:f2:f1:76:d5:a1:a7:70:f0:bc:ba:0e:
f3:d6:1b:01:a5:2b:fe:11:34:25:7e:b3:9e:a7:14:
6a:31:2a:ee:17:c3:eb:a0:ef:0b:f3:0b:22:fc:dc:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C2:92:99:F8:A6:7C:40:AB:27:64:3F:7E:17:4A:D7:E5:F0:8A:48
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:f3:60:a8:97:65:37:41:7b:d0:6f:a3:e9:73:4a:7b:17:dd:
8c:f3:77:d2:77:3d:3e:83:d8:d3:29:91:70:b1:fe:36:13:c3:
61:19:06:4c:0c:34:c8:b3:a8:5d:26:91:b0:54:3c:e3:40:2c:
e0:0d:82:ae:d3:c1:b1:76:11:11:58:2d:5e:ad:f9:84:50:a4:
41:1c:08:11:7d:ff:d3:0f:20:b0:fa:62:05:f7:d6:03:37:87:
db:a9:17:b1:9f:63:13:bc:dc:91:a6:ce:cd:ef:2a:36:af:4c:
58:43:bd:49:a2:0d:62:4b:fd:3f:40:77:b0:a3:a1:44:72:2a:
17:c5:3d:92:a2:c3:ff:d5:9e:fe:c9:c1:86:76:e7:c4:c2:b1:
42:7b:7b:71:f7:3e:a7:d5:86:4e:46:08:f6:ab:56:80:d2:e2:
01:c6:5b:19:a3:ab:f7:a7:12:94:5b:4e:20:c6:06:e1:8c:8b:
ae:f5:c2:ed:79:8d:8d:b0:2f:23:c1:dc:fd:b8:31:32:a7:f1:
e8:55:fd:22:81:e9:6c:5b:d3:f2:ff:04:1c:bc:28:37:42:a9:
57:47:ee:df:9d:09:0f:85:d8:b5:41:33:a2:de:c6:dd:22:54:
06:37:b8:ae:98:ed:25:c8:b8:6c:e0:3a:d0:61:f7:fb:95:ca:
5b:16:cf:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:28:15 2026 by rpki-client