Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json)
Hash identifier: E0NEz9XB+bcCNJ2Llxu85Ml77czXJZDY0JscuvO5viw=
Subject key identifier: 8B:59:E1:E9:38:57:F5:93:84:BF:04:AE:6E:23:1E:65:FC:3D:6B:BA
Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb
Certificate serial: 019ED42BC249D616D2B081E2B60273507631
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
Manifest number: 1965
Signing time: Wed 17 Jun 2026 06:01:37 +0000
Manifest this update: Wed 17 Jun 2026 06:01:37 +0000
Manifest next update: Thu 18 Jun 2026 06:01:37 +0000
Files and hashes: 1: 6v2it1qTQM_G9sWb1tDinWYpODY.roa (hash: kiBDfwv0URUTmxQqj/IJZu5OTfVLSt/qbBsgaeH3VdA=)
2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: i2/i4L1u75JS+l+iLfhPEigj5z6IZqP3Io9ceuYo01A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 06:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:2b:c2:49:d6:16:d2:b0:81:e2:b6:02:73:50:76:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb
Validity
Not Before: Jun 17 06:01:37 2026 GMT
Not After : Jun 18 06:01:37 2026 GMT
Subject: CN=8b59e1e93857f59384bf04ae6e231e65fc3d6bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:78:42:15:c7:7c:40:15:2c:21:3d:dc:c9:
3a:8e:fc:d8:73:50:40:58:cc:de:9a:40:df:fe:93:
24:f1:4b:39:ee:fa:20:68:b6:c8:29:72:f2:bb:6f:
97:aa:47:dc:fa:d6:3a:a3:0c:54:9f:f6:33:63:61:
a2:de:09:57:b1:59:fe:ca:0d:d1:78:7b:be:eb:a6:
e9:e2:19:cf:8b:2c:fe:4e:c2:1a:fb:ae:64:05:11:
f0:16:ca:b8:c1:f0:f1:97:ca:04:0d:7d:2a:dd:12:
5f:7f:36:30:ea:23:a2:6e:04:7f:d4:a2:d1:54:0b:
df:66:ec:70:8a:87:2c:ba:d3:d7:14:c6:85:1d:3b:
00:e6:05:63:2d:66:c2:f2:10:f3:86:d0:e4:25:b6:
1e:77:13:e8:69:74:23:8d:e9:3b:73:20:d2:3e:2e:
dc:31:81:f9:60:96:7a:1e:f5:cc:45:50:28:37:62:
92:30:45:b2:63:3f:42:6b:c1:fb:59:aa:78:b7:8c:
dc:86:99:70:e1:07:2d:c7:37:a9:53:c5:0d:65:c7:
cb:f9:5d:49:e5:2a:d9:3b:aa:96:76:79:63:b2:01:
a9:ee:29:6d:57:66:64:15:c8:21:77:b9:b6:94:9f:
65:7d:90:d1:46:fe:ec:d5:58:01:47:24:cd:a7:73:
9d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:59:E1:E9:38:57:F5:93:84:BF:04:AE:6E:23:1E:65:FC:3D:6B:BA
X509v3 Authority Key Identifier:
keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:93:74:a8:43:fb:73:10:b0:59:14:6b:37:b4:a1:90:64:01:
b5:30:c1:8b:e9:7b:6a:d5:d7:1d:c0:98:a4:a2:36:8c:c2:7a:
d5:99:fa:af:93:fa:f2:80:3e:55:8d:aa:10:94:c1:4b:0a:b7:
ea:b2:b1:dd:51:52:9b:4a:73:f9:b7:f0:bb:fc:75:b9:84:b7:
4f:62:df:07:0c:79:9e:24:a6:86:c1:fb:58:a2:02:ac:ef:ec:
0d:30:74:f8:3b:34:1d:26:8f:16:0e:f5:ea:20:81:d4:98:0f:
17:bd:14:5f:ff:ab:ac:db:37:a2:37:6e:66:76:82:fb:b6:51:
f2:bb:c6:35:7b:57:a2:a3:a3:eb:38:d2:26:b7:37:45:36:b4:
0e:d2:ca:f8:4f:88:ec:34:67:06:53:e4:54:fe:c7:da:69:2d:
eb:fb:8a:08:b1:4c:5a:c1:d4:8f:62:f4:a5:36:69:1f:02:66:
55:48:58:1e:62:01:02:5e:c6:fd:d5:bf:0b:5c:dd:29:41:ca:
dc:24:e5:c1:b4:1e:2d:1f:bb:21:9d:5b:ae:88:32:e9:21:59:
f6:c8:62:8d:55:f6:01:0d:8b:fa:34:0e:cb:42:1f:a0:ac:dd:
4d:d2:ab:61:1b:4e:92:e7:b8:11:9f:23:f8:0a:a9:83:08:e0:
51:a0:d7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 12:59:39 2026 by rpki-client