Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: SRnHVM25PtsuhcYxLj4z/UKbDuKU4IGQIxsnkoMsMEA=
Subject key identifier: C7:79:98:5E:B1:27:56:1D:5F:14:F6:C0:A2:E2:68:46:24:E0:F4:D1
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019CAB6B75C6D6C8EEE1160CA25EFEBF03D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0BE3
Signing time: Sun 01 Mar 2026 22:01:12 +0000
Manifest this update: Sun 01 Mar 2026 22:01:12 +0000
Manifest next update: Mon 02 Mar 2026 22:01:12 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: J9Soy1XPtknuul7u02h+nOLhEzbYhL1g2Obu6lX9xrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:75:c6:d6:c8:ee:e1:16:0c:a2:5e:fe:bf:03:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Mar 1 22:01:12 2026 GMT
Not After : Mar 2 22:01:12 2026 GMT
Subject: CN=c779985eb127561d5f14f6c0a2e2684624e0f4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5c:57:a6:64:16:35:c8:70:df:b8:c4:86:82:
11:b2:36:61:9a:46:95:a1:8c:3f:5f:25:65:d1:25:
37:22:08:cf:86:3c:1d:1a:90:cf:95:8b:c3:85:28:
58:fa:d9:0e:51:b5:d9:2c:ea:7a:80:2e:6b:45:6d:
22:fc:19:a6:30:99:40:d8:a6:a3:e6:87:04:32:b7:
58:52:e4:ea:71:ad:b3:96:57:a6:ea:4f:4b:4f:9c:
d1:64:eb:52:1a:4c:3e:ed:07:fe:84:dd:8e:10:5f:
aa:86:68:c1:d1:42:c8:53:d4:97:5f:48:fc:85:33:
35:14:bd:0f:81:4d:9d:a2:bc:a0:30:e3:9d:b4:c4:
7c:7b:0e:33:01:eb:e7:64:7f:4d:28:26:25:ec:5e:
3f:4d:a1:6a:99:4d:c0:08:df:87:8e:dd:ed:2c:89:
56:88:9d:e4:ec:03:96:fc:fd:02:25:ab:4e:c9:81:
fb:17:3b:6b:57:6f:3a:c4:f8:e2:f4:62:0c:cd:57:
8a:27:ca:7e:58:f7:83:10:ba:49:7a:4b:00:de:21:
b5:8c:9c:6f:c0:67:4e:8a:b0:b5:9f:72:65:30:0b:
19:cc:69:3d:d7:10:e3:e2:98:72:f4:cc:98:82:c8:
32:23:37:3a:c5:17:07:5a:31:85:c8:fb:bc:58:98:
a2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:79:98:5E:B1:27:56:1D:5F:14:F6:C0:A2:E2:68:46:24:E0:F4:D1
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:4e:6b:be:26:8e:98:7b:fe:57:a9:89:a9:d1:18:4e:56:a7:
8d:79:04:f8:78:86:2d:f4:84:d8:8d:6b:80:40:59:d4:ee:34:
2a:75:d1:f3:84:33:80:d8:b3:64:9e:80:21:f5:42:24:f3:09:
86:2b:3a:5a:52:60:fd:af:cd:28:55:e9:2d:8e:39:18:e4:09:
d0:3d:65:3e:7f:70:f6:cb:41:02:e8:ed:83:4b:49:01:55:95:
7a:f1:27:25:07:47:27:91:dc:d7:2e:86:8a:0e:1f:79:f8:10:
46:0f:cd:c8:a1:89:02:e5:b0:a9:11:48:87:23:b4:89:5c:ed:
92:ab:5f:49:85:17:7b:9a:d6:78:89:97:87:22:b7:a4:bd:a4:
4c:cd:1b:2d:07:98:a5:b2:23:7c:8e:a8:a4:b3:b3:8a:de:12:
2a:3f:c6:26:0d:ec:1c:ed:5c:7e:e5:50:06:02:59:57:5a:d8:
a0:e9:50:08:ed:10:b5:2b:9d:85:14:3b:11:07:39:0f:90:38:
52:50:b3:1b:1f:c7:3e:76:07:88:f5:92:8f:d9:cd:fa:80:b8:
07:44:c4:84:b6:6e:3e:1a:f3:d8:11:1c:62:7e:c9:ed:df:0d:
b1:80:b9:66:30:ae:65:bf:9e:68:85:5b:e2:61:15:19:5c:c2:
39:f3:d3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:39:31 2026 by rpki-client