Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: eBj1RiqkMGWwMxNHSezjjTKBSe897QXPd4/ICA1TUrA=
Subject key identifier: CC:28:87:D8:63:EF:7C:74:82:BC:ED:59:75:EF:12:25:D0:9A:A1:C9
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 019CAFB56FACB0314987460FBD8AEB754C57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 035C
Signing time: Mon 02 Mar 2026 18:00:29 +0000
Manifest this update: Mon 02 Mar 2026 18:00:29 +0000
Manifest next update: Tue 03 Mar 2026 18:00:29 +0000
Files and hashes: 1: CB5dZw_OUbWQmf6rrxVZ4SzmOPA.roa (hash: 7zRrcVpQEfWDa1cgriGdXYM3UTbJ90zYlGXeGAuJSjI=)
2: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: YpBpFHGDwduloEvbburoQGLjUH1abZgLyieNxIQyKHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:6f:ac:b0:31:49:87:46:0f:bd:8a:eb:75:4c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Mar 2 18:00:29 2026 GMT
Not After : Mar 3 18:00:29 2026 GMT
Subject: CN=cc2887d863ef7c7482bced5975ef1225d09aa1c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:39:d6:03:7d:c6:4a:1c:70:d0:3d:42:13:cf:
01:32:c0:49:01:be:d1:37:b4:72:8f:92:e9:a1:d8:
27:58:60:74:33:00:38:d2:ed:bc:b5:9c:1c:07:be:
58:c2:e3:dd:42:89:09:ea:44:aa:29:29:25:60:a1:
be:2c:7d:38:46:05:3d:d5:ec:47:39:cd:2b:53:0e:
72:bf:40:bc:6e:c2:54:dd:a8:78:81:48:71:1e:2e:
69:38:59:cc:39:d9:f3:d8:b0:20:e6:a0:96:1c:17:
39:47:21:86:7a:f3:5e:30:c3:60:27:8d:8d:af:5f:
18:83:9a:5a:37:21:29:5b:51:ab:e1:d7:53:3d:88:
55:f2:81:6e:e9:19:21:ad:7b:2a:fa:d6:33:26:bd:
8d:71:52:18:36:7a:0d:64:79:c5:88:29:1c:fe:ca:
62:fc:c1:ef:52:a8:05:8b:88:64:24:9b:35:44:98:
8c:b1:fb:c2:69:fb:35:15:5d:44:ae:8e:0c:6c:e4:
04:97:5c:01:c3:1b:04:04:33:36:f8:5a:43:02:3f:
92:2a:49:b3:98:8a:4b:2d:b1:2e:57:72:c2:81:55:
d1:c1:06:10:ea:de:89:6e:d3:88:60:88:33:09:1c:
24:ef:c6:91:39:cc:20:c7:0b:99:cb:a0:98:ed:8e:
c3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:28:87:D8:63:EF:7C:74:82:BC:ED:59:75:EF:12:25:D0:9A:A1:C9
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:66:b9:9a:22:4b:48:c8:1a:d2:38:f1:94:d3:2a:14:6e:c6:
9f:fa:76:cb:2a:2a:62:04:20:19:aa:1a:70:87:78:33:0d:fb:
d2:3b:4e:f1:be:6f:52:09:b2:40:2b:3b:c9:89:d1:75:c1:df:
f6:36:e2:6d:d0:ea:67:42:46:13:ab:60:8e:79:e6:cb:3d:f3:
9e:e0:da:33:7c:06:c0:2f:6e:3d:8a:64:63:46:e4:fc:da:af:
30:fc:94:69:56:67:9d:27:f2:ca:89:71:58:14:8f:b4:5c:41:
a0:3f:4f:81:f6:53:6f:87:c1:9a:3c:e7:68:08:f2:35:71:d6:
64:d7:6c:a2:45:59:05:19:4d:a1:87:08:dd:f6:60:6c:f3:1f:
1c:4c:44:a5:ad:f7:43:d6:32:ff:70:b5:2f:fa:d2:51:e9:1a:
2b:b3:30:29:f8:73:ae:44:47:9c:21:be:e0:3f:a1:d2:30:cf:
23:ec:3d:ff:42:9d:28:bc:b4:9c:4b:a8:f1:67:66:2c:52:31:
a6:2c:2d:03:2c:05:19:72:44:d5:0b:8d:b0:a9:24:c7:d1:ee:
09:cb:b9:66:68:b7:c7:39:f6:9b:95:08:eb:2e:f3:d1:1d:fc:
bf:c1:0a:42:a2:c9:e3:e0:6c:01:35:e3:bf:fa:7b:62:39:75:
7c:37:bf:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 02:43:26 2026 by rpki-client