Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: ZNunKJc28viQDNAdgiGoOwhT0j7H0T9NdspqItsM7cA=
Subject key identifier: 74:1D:3C:BF:51:F6:43:A0:25:7A:4A:C6:FE:20:27:B4:45:02:A0:08
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019D9CD17A22A324360BA474CA1123D2B99D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0C60
Signing time: Fri 17 Apr 2026 19:01:07 +0000
Manifest this update: Fri 17 Apr 2026 19:01:07 +0000
Manifest next update: Sat 18 Apr 2026 19:01:07 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: y4LczlqrF7pGEqhRVxREzk5zK7CdrrKZVe5B+0Tmy/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:7a:22:a3:24:36:0b:a4:74:ca:11:23:d2:b9:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Apr 17 19:01:07 2026 GMT
Not After : Apr 18 19:01:07 2026 GMT
Subject: CN=741d3cbf51f643a0257a4ac6fe2027b44502a008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:30:a1:11:21:f2:10:3b:0d:e8:31:38:81:f8:
88:bc:26:ef:d7:16:76:7e:05:c7:21:d9:c5:9a:32:
fd:9d:f0:22:36:4e:9f:ff:3e:3b:45:39:26:67:0f:
8b:fc:58:79:75:39:93:44:36:23:93:48:24:b1:cf:
e5:53:e3:3f:57:41:a9:1a:27:0f:02:52:40:d4:0b:
99:de:d6:0d:15:fd:11:13:77:25:e9:8f:5e:02:c7:
25:de:3c:ec:ac:5f:19:78:b5:75:66:49:67:22:83:
62:fe:ba:76:45:73:78:8c:33:cc:2e:85:a7:2a:7d:
28:05:81:05:d3:b8:86:1b:f7:50:b6:86:32:61:15:
bb:68:e2:7f:e9:45:c9:c2:4f:e1:be:ff:ae:fb:b8:
a2:40:41:a0:de:36:33:7f:a7:40:c4:c9:1d:03:26:
9e:ff:8f:10:5c:7d:1e:73:f4:2c:81:dc:f6:4e:99:
20:e6:f7:80:fb:3e:69:8b:ab:06:83:4c:ef:67:58:
ca:a9:66:0c:2f:47:18:dc:2f:17:f0:13:91:e0:09:
b3:35:9d:34:ef:5a:91:59:7f:1c:35:81:7f:e5:47:
1b:0a:3d:f5:a6:15:fd:c9:8b:a7:99:1b:fd:7c:9a:
10:80:64:d6:fd:7d:39:e3:3c:b6:28:63:53:d0:66:
48:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1D:3C:BF:51:F6:43:A0:25:7A:4A:C6:FE:20:27:B4:45:02:A0:08
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:1a:b7:78:5f:c3:2e:16:5a:f3:4e:d9:80:84:35:e3:39:f9:
74:32:14:03:03:ee:bc:39:07:26:4d:60:26:5f:17:47:0e:72:
d7:dd:d3:82:72:16:83:fb:c1:c6:31:f6:b1:ea:0b:7c:91:81:
b9:fa:6b:80:60:df:a8:fe:c1:95:85:f4:c2:20:e7:9d:03:5e:
a5:d0:dd:61:fa:c6:3a:7a:99:80:01:00:d4:8d:ee:b5:28:af:
2b:65:3b:db:10:b4:65:37:55:6c:a9:94:94:22:e7:93:c4:2d:
bd:77:09:11:8b:81:08:1e:9d:7d:35:a9:c3:17:e7:8e:be:72:
a8:e0:e8:d7:de:fe:28:aa:60:f5:f6:6d:4d:d5:08:49:56:29:
69:12:f5:22:50:8a:e2:69:f1:5c:93:ac:2b:eb:23:f1:af:4d:
3d:fd:ef:87:ae:80:f1:05:e9:87:9e:ef:fe:62:a8:84:bf:86:
87:9e:b6:8b:e4:c3:5c:9a:73:24:7f:c8:46:94:a3:d8:39:7e:
6c:8f:7f:a2:b7:34:89:f1:36:47:ea:fa:11:2d:fa:95:a0:12:
1b:f7:51:93:06:6a:a4:d4:7b:12:07:1e:54:f0:c6:64:1d:47:
c7:fb:6c:45:13:86:03:be:1c:91:90:50:24:91:82:fa:2e:62:
38:ca:8a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:45:06 2026 by rpki-client