Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: 8jAdIMkNtwdRcbFHG/AvC+Mp71aQWiCniI1H4pgwq54=
Subject key identifier: AF:50:CA:A6:40:56:7C:C0:F7:8E:0A:2D:BB:3E:0B:82:68:7D:C6:0A
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019E1D902ECB9C43021B76A4D49D1B3A81B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 19:00:48 +0000
Manifest this update: Tue 12 May 2026 19:00:48 +0000
Manifest next update: Wed 13 May 2026 19:00:48 +0000
Files and hashes: 1: dhA92pR8NVPLyW6mzK0XHy6ZgWk.roa (hash: AS2PEdg4UVrkHexwfvP85NaTExj06DZhVZRZTbTSV2U=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: nVwJeDCikeZtJafIOglh4VDWH4PEnmggNBMpxs2ysnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:2e:cb:9c:43:02:1b:76:a4:d4:9d:1b:3a:81:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: May 12 19:00:48 2026 GMT
Not After : May 13 19:00:48 2026 GMT
Subject: CN=af50caa640567cc0f78e0a2dbb3e0b82687dc60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0f:11:f5:ac:5f:4c:a3:2a:47:50:4f:3b:f7:
e8:30:2b:f0:ee:9f:93:7e:0a:b1:3b:08:84:09:52:
f6:82:46:fb:40:d9:e2:89:f2:6d:14:a9:49:89:6a:
9e:55:82:cf:ac:70:0e:a1:fc:bc:ac:fe:d1:bc:0d:
c0:3d:30:a8:ec:17:78:22:e9:e1:6d:4d:55:fd:d3:
4a:9a:94:7d:f0:63:98:0a:ca:e6:db:83:e4:c5:2f:
a4:9f:62:67:61:f2:25:f3:fd:69:ad:1c:4e:84:f2:
28:ce:ac:42:a4:3c:f4:97:1d:b8:74:6e:f7:7a:37:
5f:d5:c4:eb:5f:b4:53:ff:5e:66:56:af:ad:49:0a:
ac:57:60:0e:69:53:11:ce:93:c6:4d:34:86:f5:83:
e8:17:1d:40:33:39:d3:9c:28:19:85:bd:fd:c6:de:
c8:26:3e:7b:06:02:d5:e9:e7:19:6e:81:6f:1f:2a:
f0:c8:79:22:71:58:6a:16:ff:d2:72:f7:28:cb:fa:
19:03:ca:ca:d2:5b:06:19:2d:f4:fd:8c:43:f4:be:
45:98:98:2f:79:1a:53:78:68:39:50:3d:85:35:a5:
77:20:ce:a5:e5:b7:94:da:06:ec:72:3c:5e:1c:fd:
5a:05:89:9b:49:4e:23:05:2a:86:3a:0e:42:5c:78:
c8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:50:CA:A6:40:56:7C:C0:F7:8E:0A:2D:BB:3E:0B:82:68:7D:C6:0A
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:6a:f5:26:6f:cf:0a:e5:db:22:ff:64:43:a6:a2:bb:0f:34:
04:b2:21:0f:3d:d0:44:c2:ca:d9:f2:81:47:19:2e:03:98:85:
d6:b6:ba:5e:0b:ff:66:b6:ec:6e:5c:7e:5f:38:1a:38:69:c3:
94:8a:4b:f4:31:28:c1:d0:26:a8:ce:8a:eb:2a:31:9c:40:c4:
f2:4d:2b:80:4e:53:6f:d1:f9:fc:0f:5d:57:04:8c:ec:7b:9e:
73:52:e6:99:1e:3c:2d:92:93:41:b7:dc:b8:0b:26:86:51:0c:
84:29:22:b6:9b:28:19:32:60:f9:3c:bf:44:e5:a6:8e:61:87:
70:67:e4:98:4b:ea:c2:bd:b0:68:02:d0:e8:de:a3:78:5f:0a:
dd:75:3a:af:85:72:90:74:17:54:98:41:62:5a:d7:e8:63:89:
4b:0d:b8:2e:ae:79:67:14:49:a6:e4:6f:33:81:4b:db:c3:53:
98:2c:84:82:0a:81:6c:8a:6f:8d:6c:32:69:5e:d6:fa:cd:56:
f4:53:ec:78:61:e2:d7:d2:ab:0e:49:12:f7:2d:3f:f5:93:3b:
9b:62:99:54:98:f3:09:23:53:1e:c3:1d:b2:7b:89:a7:58:f7:
f2:aa:47:fd:94:96:db:43:c0:ec:ef:fc:ad:29:18:2b:05:46:
e8:41:63:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:29:40 2026 by rpki-client