Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: q8ld+fxRklsSK/Wi42qPOH+KFga5fFvLwlOVTWubmg0=
Subject key identifier: 02:CE:C7:E1:72:3E:05:C4:BE:E2:15:11:86:75:B9:B7:12:50:F6:CD
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019D9AE3224A20104B6DDBFFF143625CF934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0C5F
Signing time: Fri 17 Apr 2026 10:01:09 +0000
Manifest this update: Fri 17 Apr 2026 10:01:09 +0000
Manifest next update: Sat 18 Apr 2026 10:01:09 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: IJ4GSVuVROYlTOkO4BrQ91RHZdsFHQx3LGYuHmkRdJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:22:4a:20:10:4b:6d:db:ff:f1:43:62:5c:f9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Apr 17 10:01:09 2026 GMT
Not After : Apr 18 10:01:09 2026 GMT
Subject: CN=02cec7e1723e05c4bee215118675b9b71250f6cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:67:b7:23:fc:93:01:c4:0f:11:82:ea:4d:
94:70:2b:57:2e:71:07:01:ac:8d:15:46:65:ee:94:
a4:9b:19:bf:ac:74:25:d3:79:08:9a:36:e1:62:21:
a8:2d:b7:48:ac:86:f1:3e:29:a8:85:a9:5f:1c:a8:
6f:1c:db:37:27:40:14:99:ff:00:26:de:93:c2:c2:
67:74:e3:2c:92:1e:1e:49:ac:2d:4a:0a:fc:4b:36:
a4:3b:23:a4:18:78:c0:7b:40:7e:cb:9b:09:f6:7f:
f1:7f:97:4f:14:5b:d8:27:38:79:e4:15:6e:37:2c:
eb:52:c0:4d:17:a9:45:1a:8d:d1:fd:72:76:d8:92:
12:04:f0:c5:ad:ab:31:6d:07:ad:f4:42:77:c2:b2:
63:ea:0b:11:44:98:ed:3d:07:0f:20:bb:64:2a:72:
d5:f0:76:6a:89:97:17:64:d7:34:5a:2a:f3:c5:88:
49:b1:5d:c7:eb:eb:45:1b:aa:f8:5f:ef:74:2f:8a:
46:1d:14:38:14:0c:3b:3d:b2:3f:4a:76:79:49:6f:
84:0e:e8:53:a9:dc:bf:f2:38:48:69:2d:06:23:f1:
d6:4d:54:1a:b7:ff:f4:b2:06:e3:23:69:bd:6a:c2:
4c:48:63:67:5b:b4:c8:ff:52:85:93:cf:ae:fc:1a:
9b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CE:C7:E1:72:3E:05:C4:BE:E2:15:11:86:75:B9:B7:12:50:F6:CD
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:d8:0b:fd:fc:fe:ba:bd:6b:29:33:86:39:45:de:0b:1a:dd:
04:b2:08:a5:96:81:95:f5:6a:8a:c1:dd:24:95:34:ee:90:fb:
e7:96:ee:87:23:0c:d6:d8:6a:4a:23:8c:23:49:09:6d:6a:f2:
74:87:e0:0a:3b:6b:8e:d3:8f:ed:64:32:25:e5:60:7a:c7:61:
19:63:bd:53:43:c6:63:db:c4:46:60:1c:f2:0f:26:d9:5f:bd:
e2:e6:82:0d:bc:9c:3b:23:2b:4d:77:18:1e:34:77:75:cc:56:
84:1a:d4:a7:54:a6:b8:3b:c8:ba:14:8c:a5:8b:53:cf:99:85:
ea:64:2c:53:b7:c4:cb:e4:95:b1:c6:9a:5e:f4:50:8a:76:60:
01:38:9c:33:81:8b:a4:f2:fe:08:20:ab:bd:b8:c2:7f:f8:e8:
c5:ba:9a:2d:1b:32:4c:0f:d6:3d:65:c2:ec:6f:b1:a4:da:3c:
01:1a:4d:0e:db:3d:b7:60:ec:23:3c:39:11:5c:5f:ff:ba:4c:
45:46:cb:48:99:99:19:0a:98:22:47:ed:6b:de:fe:0f:29:3e:
3a:bd:fd:65:d0:59:1f:91:42:67:f7:6a:bc:e8:7c:37:c3:b9:
9c:2a:82:80:70:70:0b:91:95:19:76:62:ae:60:c6:a0:b8:36:
12:91:6d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:43:41 2026 by rpki-client