Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
File: pnac0wPoTc03o3XW52tgKfzDZ7Q.mft (raw, json)
Hash identifier: MAT/K5JLqQF5avP22EfNJVvDJf6n24sH3o+WEnbZPf0=
Subject key identifier: E7:3C:CC:8A:C8:D0:69:1C:2E:44:38:89:05:A1:EF:56:52:9B:D8:64
Authority key identifier: A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
Certificate issuer: /CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Certificate serial: 019CAC4684E41BB6D080504033B8FDC0B6C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
Manifest number: 01D2
Signing time: Mon 02 Mar 2026 02:00:28 +0000
Manifest this update: Mon 02 Mar 2026 02:00:28 +0000
Manifest next update: Tue 03 Mar 2026 02:00:28 +0000
Files and hashes: 1: ODmnFvkoRJ8KBXIwmG3VyMbhpMg.roa (hash: UzQ9zfqJ6GmOojpgnIMRQs0ikmH8yfkpdXYgZqB0SfM=)
2: pnac0wPoTc03o3XW52tgKfzDZ7Q.crl (hash: VoIyPGydmxO+3v2goldB0/0tXUh58YRONsbOdMg1lbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:84:e4:1b:b6:d0:80:50:40:33:b8:fd:c0:b6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Validity
Not Before: Mar 2 02:00:28 2026 GMT
Not After : Mar 3 02:00:28 2026 GMT
Subject: CN=e73ccc8ac8d0691c2e44388905a1ef56529bd864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c6:a0:1c:7a:be:c8:f9:19:d2:0a:6c:ba:5e:
91:05:56:a8:0d:1e:95:41:72:07:a8:be:ac:9f:bc:
b4:84:f6:3a:81:44:0c:99:8f:50:b3:98:9f:a3:a5:
88:7a:ad:0f:af:2d:8b:76:f7:3f:0f:a2:40:25:a5:
a9:ba:88:0c:f5:a2:7a:e1:a8:49:eb:c4:4f:22:49:
dd:2c:ba:d5:82:16:ca:d9:aa:5f:2f:83:e1:f1:9f:
1a:64:c7:84:a3:76:23:13:d9:fa:10:5d:71:da:ff:
0f:e3:bc:88:a3:10:2d:13:18:fb:d8:f3:8c:33:48:
d0:81:57:87:51:c7:b7:8c:68:d6:7a:e3:b0:bb:8a:
17:ce:17:b3:16:35:fb:19:99:60:89:36:75:6c:91:
a5:70:54:ae:f8:ce:8c:1e:16:3e:aa:dd:40:89:1e:
96:b6:ad:90:a2:ae:ab:48:11:68:ea:06:49:17:5c:
9c:42:3c:4d:bb:14:f1:1d:2a:0c:58:2c:f6:6c:56:
52:3d:b0:40:17:29:d5:80:77:3e:13:3e:bb:d3:50:
7d:ba:43:96:55:2f:f2:61:38:45:88:a9:1f:08:64:
e3:ae:94:57:25:6a:9b:e0:66:38:ce:62:8c:d9:79:
c0:66:3f:04:b6:63:72:ec:a3:cd:86:90:18:23:45:
93:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:CC:8A:C8:D0:69:1C:2E:44:38:89:05:A1:EF:56:52:9B:D8:64
X509v3 Authority Key Identifier:
keyid:A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:0b:64:7b:73:c5:ee:2e:d8:c7:15:7b:8d:b0:d3:25:bb:64:
1d:68:6e:57:9a:92:91:8d:a8:18:fd:8c:16:24:f3:a8:f3:81:
76:43:d6:21:bc:1e:1b:d6:63:ef:bd:03:ee:8e:63:73:c6:ff:
bd:de:18:d6:42:74:dc:0c:c2:c7:5f:f3:f0:58:21:39:2a:95:
b4:8b:d0:cd:ab:d7:77:e5:5d:a7:88:d7:4d:fa:ae:81:25:53:
fe:91:8b:40:3f:51:be:b9:0f:e6:cd:77:64:92:a0:70:41:65:
8e:18:02:78:94:ed:d9:7d:11:5f:b9:c8:0c:6f:f3:14:67:bc:
03:33:28:d5:13:4d:f9:47:3c:1e:31:e3:b3:3a:6b:cc:50:ee:
63:08:39:36:16:d6:6d:e5:d0:b3:a2:40:0f:b3:67:7d:91:be:
67:34:cd:e5:48:c4:43:1c:ab:9e:82:4e:c4:89:d2:9a:67:17:
44:cc:e4:17:36:59:4c:ea:e3:9e:a3:cd:07:6c:e0:de:7a:14:
3d:02:ca:5e:99:5e:be:0c:c1:cd:9f:19:2b:44:6c:da:e1:a8:
ae:8f:19:0a:32:79:f9:14:88:ce:e5:dd:8a:5e:11:20:de:9d:
d1:da:7b:78:61:c2:02:03:2e:72:89:5a:71:b9:ba:54:e7:cd:
ee:84:ff:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:53:07 2026 by rpki-client