Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: ZrTl5Hk9DUtCoIoEKX6eqjU9zAZRRQ0z3Pey+Wv2IA8=
Subject key identifier: D2:50:19:B3:26:DE:B2:77:57:B0:C1:28:95:AA:19:F9:3B:43:EB:55
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019D9AAC051EE02E7DB875A7B966AA8309D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0CCA
Signing time: Fri 17 Apr 2026 09:00:57 +0000
Manifest this update: Fri 17 Apr 2026 09:00:57 +0000
Manifest next update: Sat 18 Apr 2026 09:00:57 +0000
Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: xxtZLziwiEC8C0wCILEcfm24U9C8hYZpvY/8nVWRkLk=)
4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:05:1e:e0:2e:7d:b8:75:a7:b9:66:aa:83:09:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Apr 17 09:00:57 2026 GMT
Not After : Apr 18 09:00:57 2026 GMT
Subject: CN=d25019b326deb27757b0c12895aa19f93b43eb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:19:08:fb:40:80:af:79:1e:3f:26:bc:2f:
da:62:1a:ee:45:6f:80:ae:9d:2d:f2:45:75:d9:8a:
fc:02:67:44:01:73:6a:d8:92:96:f8:5c:5a:a3:d5:
ab:d1:30:69:82:7e:df:6a:46:5e:26:00:cf:be:b4:
6d:15:aa:c2:f1:69:36:9b:7b:22:94:96:cc:f5:0a:
24:b2:d4:0e:e6:13:a9:a5:c4:fe:1b:e8:4b:f4:70:
56:b0:57:c8:aa:c0:ce:45:35:11:d7:d2:bf:de:d9:
53:65:bf:68:5f:69:ba:ad:58:7d:97:9f:00:b1:d4:
a6:d8:1d:a7:4a:3c:2e:97:c0:e3:e0:16:8e:62:35:
0b:48:2d:a2:81:2c:b1:db:b3:64:2c:1f:4a:17:a1:
c4:77:50:0c:28:6e:45:e5:99:32:87:18:9c:3f:b8:
ae:2b:90:35:4e:7c:c5:10:06:fd:46:44:99:5e:69:
ab:2f:86:bc:47:00:f7:db:34:3f:2b:1a:54:9d:a3:
24:b7:9d:9d:ce:50:b6:0c:b2:8c:09:5d:38:f9:8a:
59:6f:d7:d4:d0:a5:24:20:24:39:e6:63:48:cb:d8:
65:f2:43:43:39:26:77:93:52:78:f4:09:6a:c7:60:
ec:68:d1:b7:ea:70:d7:26:7e:4a:e8:fb:1a:9a:95:
ed:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:50:19:B3:26:DE:B2:77:57:B0:C1:28:95:AA:19:F9:3B:43:EB:55
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3c:be:07:44:6b:e2:e9:39:ac:97:d2:71:2c:c8:e4:63:de:
54:3b:67:49:61:41:76:82:31:e5:da:18:ee:72:40:b5:a7:04:
d9:2d:4f:92:53:d8:c9:23:a1:f8:bd:32:69:c7:66:45:c1:93:
27:f7:36:0a:20:cc:8f:57:8c:f2:05:93:98:ab:60:c8:f0:5d:
8a:99:a0:13:6c:d3:af:9b:e1:cb:e8:e2:0c:40:d9:a5:5c:4e:
37:c8:7d:57:1e:84:58:1d:40:55:f2:e1:28:46:dd:bf:40:90:
b8:38:4d:65:0a:77:7b:25:19:ca:36:57:58:7e:6c:15:83:16:
bc:c8:5a:6b:d5:e3:43:e8:59:95:76:04:ab:d5:01:bf:2d:7a:
39:05:db:00:4c:9f:b3:18:02:d0:45:a8:a6:c5:3f:ce:d0:67:
22:fd:44:3d:f5:25:48:e4:17:07:56:e1:aa:ce:d9:72:d3:33:
4a:61:88:84:58:ee:da:0f:68:14:4c:16:4f:76:bb:a8:9d:9a:
7d:63:4b:84:c3:6e:44:8e:cf:10:a2:f2:74:d6:de:b0:7b:9d:
f1:69:42:dd:6e:f9:c3:89:9a:a4:08:10:4c:c9:a7:04:72:f0:
f8:da:a8:4d:78:37:ff:6b:16:43:ce:b4:7d:ab:c4:3c:2a:94:
a8:86:14:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:47:13 2026 by rpki-client