Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
File: pnac0wPoTc03o3XW52tgKfzDZ7Q.mft (raw, json)
Hash identifier: o2KVAsw38GRxXj+J/6mYHuIY3kWh+G+YNP+Aljy7fmM=
Subject key identifier: 0F:25:F5:17:E1:03:72:7B:EF:F1:2B:46:96:8C:30:0B:98:A2:17:7F
Authority key identifier: A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
Certificate issuer: /CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Certificate serial: 019DA3790D70B45F50E61E62C247DFE7F79F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
Manifest number: 0252
Signing time: Sun 19 Apr 2026 02:01:52 +0000
Manifest this update: Sun 19 Apr 2026 02:01:52 +0000
Manifest next update: Mon 20 Apr 2026 02:01:52 +0000
Files and hashes: 1: ODmnFvkoRJ8KBXIwmG3VyMbhpMg.roa (hash: UzQ9zfqJ6GmOojpgnIMRQs0ikmH8yfkpdXYgZqB0SfM=)
2: pnac0wPoTc03o3XW52tgKfzDZ7Q.crl (hash: L31Mn25eAeFtyqIV4CbHdNguKURG/xyIMhqBVo3WeHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:79:0d:70:b4:5f:50:e6:1e:62:c2:47:df:e7:f7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Validity
Not Before: Apr 19 02:01:52 2026 GMT
Not After : Apr 20 02:01:52 2026 GMT
Subject: CN=0f25f517e103727beff12b46968c300b98a2177f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bf:46:b1:8e:3e:44:0a:df:51:8d:8a:8d:17:
84:cf:bb:d2:60:a8:5b:e5:95:ad:17:87:82:b1:c7:
90:0f:af:a0:bd:f1:2c:88:ef:c5:b6:45:de:78:9b:
c2:ed:9a:77:e8:a0:56:48:d5:4b:93:94:21:5c:8f:
ee:31:84:6d:e1:9b:8d:de:9c:b5:f4:91:23:35:2a:
88:bf:63:46:66:38:40:a1:9e:25:d0:2c:8e:b8:70:
3f:10:19:88:4f:ea:73:b9:53:b2:77:6e:e8:da:71:
63:e2:e0:a0:b6:d6:f5:fa:f9:f7:cf:c9:5e:17:88:
00:da:c2:b4:0d:f1:f0:b7:16:d7:dd:99:dd:9d:90:
b7:65:85:2f:4f:e9:04:d7:4f:60:e9:0c:77:ff:f2:
ab:7d:7f:3a:04:10:82:10:ed:6f:48:c5:ba:97:d0:
f6:ba:da:8f:da:34:d5:74:06:35:f5:f8:7b:55:a7:
4b:7b:d6:9d:77:47:64:e4:e6:1e:13:7a:15:ff:08:
e3:36:1d:49:56:bd:dc:1e:9a:62:cc:c7:4a:48:f5:
e3:fa:e4:76:6b:54:d0:50:c4:92:6e:70:a2:10:f4:
d6:e2:79:35:27:e1:26:17:ec:75:69:00:06:f1:a1:
ba:43:4d:6c:70:24:f4:b6:3a:14:ae:1d:23:85:40:
8b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:25:F5:17:E1:03:72:7B:EF:F1:2B:46:96:8C:30:0B:98:A2:17:7F
X509v3 Authority Key Identifier:
keyid:A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:77:7a:ff:dd:ec:b6:6f:7b:ad:e5:98:de:e7:1e:36:40:cf:
08:60:04:ed:7a:3d:7f:89:95:a0:eb:9f:b7:d4:a8:9e:55:c3:
6c:f9:04:76:7f:cf:18:13:ae:cf:ec:63:f6:b8:49:02:08:a1:
e9:09:19:27:51:ca:9d:9f:04:f8:04:e0:41:ea:57:df:2a:9c:
e2:87:11:4a:db:36:04:8c:29:6e:b9:76:18:1e:3b:31:b4:c9:
a0:f7:0a:fc:b9:1a:7a:cc:6d:ef:13:d9:9c:e7:17:16:41:96:
f9:1f:8a:00:57:c2:85:a5:0e:3b:e2:d1:d5:13:13:12:b8:1f:
14:78:fd:da:a3:d8:79:fc:64:03:03:03:d6:ae:26:4a:6a:3c:
82:af:16:85:65:8a:60:5a:8d:78:c4:58:ea:f3:fe:37:aa:32:
25:2d:23:b7:42:92:3c:bc:d1:37:74:8c:b9:f2:25:19:50:87:
f3:61:5c:03:23:cf:0c:e3:21:51:79:ad:c1:3e:aa:40:de:8a:
77:ab:18:5d:8f:d8:6f:14:fd:2a:2e:8d:3a:a2:15:16:39:81:
08:bb:45:e0:80:e2:ea:f5:f7:de:5c:a7:cb:4d:5d:da:79:a7:
fd:48:9a:8b:5c:5e:d0:70:a7:0a:23:db:b2:45:e8:69:ec:62:
93:c5:6c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:22:21 2026 by rpki-client