Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
File: pnac0wPoTc03o3XW52tgKfzDZ7Q.mft (raw, json)
Hash identifier: 0GujdaugYXOUqmcO2BBqe2vk7Ep1yMRTMejkx2YlZ1Q=
Subject key identifier: 24:DB:E7:DF:84:20:9C:BB:01:8F:52:B6:5E:9D:00:1E:60:33:DD:34
Authority key identifier: A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
Certificate issuer: /CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Certificate serial: 019DA566B1D0E8F9D1979CDCB97F443A7632
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
Manifest number: 0253
Signing time: Sun 19 Apr 2026 11:01:03 +0000
Manifest this update: Sun 19 Apr 2026 11:01:03 +0000
Manifest next update: Mon 20 Apr 2026 11:01:03 +0000
Files and hashes: 1: ODmnFvkoRJ8KBXIwmG3VyMbhpMg.roa (hash: UzQ9zfqJ6GmOojpgnIMRQs0ikmH8yfkpdXYgZqB0SfM=)
2: pnac0wPoTc03o3XW52tgKfzDZ7Q.crl (hash: vY74H02OAyHEdTVW9a3X0xHMziZ878gE+3+17rg8CQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:66:b1:d0:e8:f9:d1:97:9c:dc:b9:7f:44:3a:76:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Validity
Not Before: Apr 19 11:01:03 2026 GMT
Not After : Apr 20 11:01:03 2026 GMT
Subject: CN=24dbe7df84209cbb018f52b65e9d001e6033dd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:06:9d:d6:f3:62:97:42:8e:20:62:e4:87:
2f:17:34:7c:14:30:09:ca:c2:7f:18:7a:fe:e9:8d:
cc:8c:10:48:a2:bb:1c:96:92:a3:d0:9a:31:cb:04:
77:16:7d:77:a5:86:28:82:ce:e3:7f:17:5b:21:9e:
f7:18:fc:d6:dd:19:f5:3c:d7:5e:8c:fc:3a:58:01:
94:be:cc:a2:f6:86:e1:a1:a9:f8:1b:65:d2:24:d2:
49:90:99:59:da:69:19:b2:97:90:4b:49:b7:7b:bd:
61:22:9e:d2:fc:4a:d7:2b:5b:eb:16:ca:a3:ff:8d:
87:34:5d:59:eb:8e:7f:26:bf:f2:39:3d:3d:16:ff:
50:6e:a0:ea:12:36:d2:61:d2:e4:5e:42:a9:4c:36:
44:26:1a:a1:93:87:08:7f:1b:aa:ed:12:80:30:9e:
05:a9:03:61:94:83:5b:93:77:5a:0b:e3:f2:c0:f7:
4e:4d:30:1b:db:c8:71:49:f6:ae:a3:bf:d5:1b:ef:
d3:80:12:e5:1d:bc:4b:b8:dc:c4:d5:73:12:57:23:
f9:d0:09:73:7f:ff:eb:fe:f3:8f:e5:8c:5f:4e:a8:
51:5d:20:ae:55:0d:8f:60:bc:3e:23:10:f6:a0:50:
a7:5d:55:17:53:1f:95:15:35:f7:89:17:4b:16:d7:
02:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DB:E7:DF:84:20:9C:BB:01:8F:52:B6:5E:9D:00:1E:60:33:DD:34
X509v3 Authority Key Identifier:
keyid:A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f0:f9:c1:76:5e:94:c9:2e:3c:c9:4e:e9:fa:6f:fd:62:d7:
04:49:ca:49:3e:1b:ea:e6:36:d0:1d:c4:3f:cb:8e:c7:ff:ab:
6e:b7:b3:44:bf:a6:bd:41:f7:33:07:ff:41:b3:a7:99:7d:be:
0d:b3:e5:17:37:5b:ef:a2:9e:7e:f7:ac:56:08:c2:f3:42:6a:
e3:bf:cf:6b:0d:90:69:e6:fa:d3:dc:4d:47:f8:9b:78:ad:1c:
12:68:a0:ee:b4:0f:09:c8:04:69:08:f0:52:39:83:43:b6:89:
6c:4a:cf:00:bb:7f:ba:58:27:93:6f:d6:1d:51:08:d5:08:dd:
db:70:d4:c1:23:2c:f1:a0:40:1d:c0:96:f8:a7:0d:83:42:e4:
f9:ae:83:b1:43:11:86:1d:9f:0e:cb:60:a5:df:33:14:e1:bf:
7e:34:c7:a1:c5:ca:55:78:91:04:b7:fe:55:72:0d:86:a7:b4:
a5:a4:77:04:e4:d7:8a:4f:cd:a4:ff:2e:0e:85:3a:32:9f:ce:
2f:af:18:2e:1f:cb:e6:a7:df:74:62:5b:b4:cf:b2:42:37:a1:
7f:1f:bd:27:f1:a2:59:32:e1:64:04:f9:06:a7:2c:62:0d:e0:
31:4d:22:ae:86:08:60:2d:df:66:39:2f:d2:52:fc:02:b5:54:
d5:46:a3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:46:14 2026 by rpki-client