Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: 3q+LTPDxMIpH8laVy4Nx3Xb/d85tdvTiyDHvOWokfHM=
Subject key identifier: A2:05:08:CD:9C:48:15:C4:7E:2E:FF:AE:16:B1:19:11:91:3E:09:34
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 019D9B195B1EB1B3581A07322F7484B13771
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 11:00:23 +0000
Manifest this update: Fri 17 Apr 2026 11:00:23 +0000
Manifest next update: Sat 18 Apr 2026 11:00:23 +0000
Files and hashes: 1: Cj8ujoa5KmTTSWCTdwnTGnYwzAk.roa (hash: M+8fZqB3T6uLKV8atcb+P0CXiywaKxIVWcjCJ6STrHE=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: aTTZ9yrJu9J/aWjij6Ya2F6XLAgqnwguhVGNxiryFtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:5b:1e:b1:b3:58:1a:07:32:2f:74:84:b1:37:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Apr 17 11:00:23 2026 GMT
Not After : Apr 18 11:00:23 2026 GMT
Subject: CN=a20508cd9c4815c47e2effae16b11911913e0934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5b:77:8a:ef:ea:3c:d4:74:6f:d0:ad:f0:19:
89:77:e5:78:45:b8:c7:c9:ff:ec:8f:42:c5:ac:59:
b7:dc:18:6a:f2:38:23:ee:e5:34:96:cf:b6:58:2c:
73:13:6b:38:ae:94:b6:33:ae:65:12:18:e8:b3:6c:
03:dc:15:55:89:68:33:c2:fa:e6:f9:a4:f6:62:d8:
7d:76:9e:b9:dc:ef:12:40:55:11:90:9e:2e:58:17:
4d:2f:15:89:ed:36:0c:43:8c:6f:de:c5:a2:c4:b3:
0b:59:63:f8:d3:b9:c9:4c:bd:64:0b:3c:46:87:14:
a5:56:11:91:90:37:6c:68:3f:fc:c7:1f:c1:d4:cc:
4a:07:7f:e1:da:26:5b:4c:54:59:bd:c3:4f:7f:56:
b8:a6:30:28:f8:38:82:3a:66:91:de:27:b9:1d:80:
80:3c:f7:54:1d:7d:c8:35:f6:05:41:d6:fe:e0:be:
53:54:f6:7c:02:36:bc:2c:c8:5d:fe:77:c9:c5:f8:
c8:8e:74:36:57:74:69:4c:b2:9e:d4:ea:35:a8:4f:
8e:16:88:ee:f4:96:c5:fa:a8:17:20:df:d6:47:a7:
f4:97:2d:04:d4:3f:67:45:22:ac:65:54:43:83:cd:
57:69:d4:8c:97:e7:48:ad:59:fa:31:32:13:15:a8:
47:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:08:CD:9C:48:15:C4:7E:2E:FF:AE:16:B1:19:11:91:3E:09:34
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:fe:af:fd:53:08:e6:c4:01:be:86:39:ed:e0:ad:a7:15:f3:
95:89:22:9b:70:a6:9d:41:bb:89:0b:76:36:e6:13:e8:2c:a7:
5c:5a:45:d1:a0:1f:0a:86:e1:d4:64:56:29:9f:0a:61:48:a5:
4a:95:55:72:ed:a4:cd:a6:0d:25:b4:0b:6e:f8:61:41:44:6f:
6c:9e:fe:82:29:b7:78:d4:dc:6e:c8:42:2e:dd:af:38:63:ed:
83:4d:19:10:2d:6e:6f:e0:e9:2f:44:17:81:90:28:39:7a:53:
9b:84:8d:33:41:2a:35:de:bb:90:b5:bd:04:bd:01:0b:9d:9a:
cd:d8:5f:52:dc:8c:e0:ed:16:12:9b:fb:d0:bc:cd:8a:94:ef:
82:4c:de:79:1d:43:99:2d:3a:0e:64:e2:db:f4:ed:49:fe:70:
f0:0e:ea:9e:ac:7e:8f:ab:29:7b:ed:74:4b:20:34:36:38:47:
2b:cc:ae:39:6f:76:3a:37:f4:d9:aa:21:c2:c6:be:28:41:ec:
8a:7b:40:d9:6a:03:89:e4:79:31:46:7f:95:e2:53:c5:34:db:
6f:ea:e3:fa:9c:9c:49:a5:59:01:28:38:16:80:ef:5f:40:1a:
a4:27:12:f3:97:d4:2b:e4:43:45:09:5d:cc:db:71:eb:a7:f9:
91:58:1b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:10:13 2026 by rpki-client