Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: noE1qUH17FJ140piFNESJmPg8pv7jK82609401WGdGU=
Subject key identifier: B2:EE:C7:62:74:CB:CC:62:EE:4D:B0:1C:62:7E:49:4D:D0:C8:D5:94
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019EC06D2232239808F46120B8D4A2E8615A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0CF7
Signing time: Sat 13 Jun 2026 10:00:38 +0000
Manifest this update: Sat 13 Jun 2026 10:00:38 +0000
Manifest next update: Sun 14 Jun 2026 10:00:38 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: rpMFjZlqdJqrDtL2n3dFOmm0Tn0JUvGzvZ+rJ2/0qCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:22:32:23:98:08:f4:61:20:b8:d4:a2:e8:61:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Jun 13 10:00:38 2026 GMT
Not After : Jun 14 10:00:38 2026 GMT
Subject: CN=b2eec76274cbcc62ee4db01c627e494dd0c8d594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:70:91:b9:b1:2b:3e:a6:a9:37:d2:e8:02:69:
b0:df:37:ab:2e:85:43:93:52:91:86:9e:26:55:5b:
d7:fd:1c:dc:5e:80:f8:a9:c1:a2:8b:c3:05:c2:a5:
94:89:ab:63:e9:9a:42:81:74:ae:a7:36:8b:95:7c:
08:ea:ae:2f:75:1c:b0:77:de:af:b3:db:8a:6b:5d:
4d:5e:50:a3:49:17:f0:ec:cd:37:2d:6b:14:c7:d9:
2f:0d:b8:c3:c1:ea:53:fa:b6:8d:ba:a1:3b:ce:e4:
c8:5e:5b:6c:21:c1:e8:a8:71:14:ab:c9:3f:a5:08:
76:96:c9:0e:de:28:d8:63:bb:b7:37:f3:08:c3:98:
35:c1:47:48:5b:77:e0:76:d2:a4:ce:fc:b4:1b:3b:
0e:2a:81:60:26:a4:1b:05:d6:f0:8d:10:58:21:c8:
5c:ac:d4:3b:08:e6:aa:98:32:38:75:07:82:7e:c8:
d9:88:d4:0b:14:67:e2:5a:8a:58:97:1d:50:5a:30:
6f:8b:82:d1:e9:c3:78:3b:65:c0:74:49:89:ae:44:
aa:7b:6e:95:d3:b3:a8:60:48:12:dc:08:eb:cb:79:
5d:6a:18:53:78:ea:b0:f7:cf:ff:11:83:bd:ef:ce:
e6:c8:b1:cf:3a:de:ec:9d:dc:e7:df:73:10:c1:cd:
ed:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EE:C7:62:74:CB:CC:62:EE:4D:B0:1C:62:7E:49:4D:D0:C8:D5:94
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:fc:53:40:a8:a1:6a:c9:c8:d9:10:1b:70:29:d0:22:b2:7a:
36:0c:72:9c:9f:76:a6:11:d1:15:2a:88:21:fa:71:92:0f:c2:
f6:6c:bf:d0:72:0d:7a:b9:e3:fc:ef:6c:e1:88:d8:e8:93:41:
14:5c:24:dd:66:b5:9c:6c:f0:3a:f8:1c:c0:ce:da:3a:92:d8:
6c:d0:6d:dd:45:22:de:62:aa:89:05:31:89:c3:6a:f1:7c:8b:
43:54:0f:76:9c:42:42:73:17:ac:b9:a6:2e:5d:78:fa:93:ab:
10:7b:0d:5b:39:8f:14:44:fc:48:e2:26:6e:6b:d4:d4:b0:71:
8d:e0:7d:6b:6e:66:6e:f6:d0:bd:d9:e1:ed:cc:2f:9d:fb:1c:
18:73:24:7a:2d:85:d8:79:0c:4d:24:42:46:cc:8a:aa:d6:fd:
fe:32:11:82:b9:68:dd:f2:f8:95:d8:62:44:11:21:2f:7e:05:
6a:b5:99:05:c7:05:6b:7e:46:c6:f4:3e:72:8d:55:fe:52:85:
08:b2:81:8d:7b:d2:64:ff:1e:53:d1:e1:dd:d3:4c:9c:44:2b:
21:75:3a:69:ad:bd:68:aa:40:26:0c:1a:62:e1:e2:83:62:62:
64:d6:84:24:9e:3f:22:86:90:ed:05:e0:80:ef:ad:cc:82:a0:
73:0b:86:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:52:40 2026 by rpki-client