Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
File: pxrCOk0-z8vKRROJaxeuToloKng.mft (raw, json)
Hash identifier: havb3twcTIjhvGYHCK50GHoQiYx69ksdaPYdG1wgemU=
Subject key identifier: E4:77:43:FC:24:ED:43:E9:2F:E0:1B:D2:DC:A9:DB:A6:3E:3F:F6:1F
Authority key identifier: A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
Certificate issuer: /CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Certificate serial: 019D2816D355DAE3DCB018B562B4FF9C721D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
Manifest number: 0258
Signing time: Thu 26 Mar 2026 03:01:17 +0000
Manifest this update: Thu 26 Mar 2026 03:01:17 +0000
Manifest next update: Fri 27 Mar 2026 03:01:17 +0000
Files and hashes: 1: lqZ_FZi5OZNxjRgi3lzjeMY1GAk.roa (hash: sEkCH/URmL0mijxwIa1jp+WkOSTIx15bnsPupZsfVfw=)
2: pxrCOk0-z8vKRROJaxeuToloKng.crl (hash: y/6bd6ZNuIhZkTB69/fleWkBJwI06lGEShF1pDwPBvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:d3:55:da:e3:dc:b0:18:b5:62:b4:ff:9c:72:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Validity
Not Before: Mar 26 03:01:17 2026 GMT
Not After : Mar 27 03:01:17 2026 GMT
Subject: CN=e47743fc24ed43e92fe01bd2dca9dba63e3ff61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:9f:30:22:d3:fa:b4:42:a6:63:5e:f8:6b:
88:b8:86:aa:ab:c2:de:bd:e3:a1:c2:ae:96:43:6f:
fa:4d:59:a3:15:10:2d:82:47:76:26:fc:1e:c3:55:
64:9e:e5:80:c5:12:d4:ce:ca:c6:05:87:a9:17:31:
e0:80:cd:cd:2c:61:83:89:95:87:69:2d:15:f5:de:
13:19:64:47:f9:3e:58:74:c6:1a:aa:91:58:92:78:
27:8d:35:e4:81:0c:7d:4f:99:9e:ae:d6:67:02:c3:
a9:57:d2:c9:a4:c3:16:6f:78:9f:1e:9d:aa:bb:da:
18:df:19:db:9d:78:e0:92:18:00:eb:ba:8d:56:6c:
02:7a:57:91:c1:59:67:dd:25:8a:0e:ea:ba:4c:64:
a9:12:2b:3a:72:db:7a:db:48:2d:d5:78:37:b6:be:
95:55:fa:40:dd:b8:6b:9d:b6:63:85:24:6a:ec:01:
64:8a:59:46:a7:5e:2e:e8:c5:07:ce:f7:e4:ec:2c:
7f:e1:06:95:aa:30:f5:3c:c0:13:bb:b2:0d:9f:ac:
c0:2f:77:4a:10:69:9d:45:5d:7f:22:fb:ba:d7:19:
95:52:7d:6b:a5:ea:57:7b:fe:b5:50:32:b5:68:23:
76:ef:99:69:21:6f:38:9e:96:f7:35:30:13:a2:8e:
fc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:77:43:FC:24:ED:43:E9:2F:E0:1B:D2:DC:A9:DB:A6:3E:3F:F6:1F
X509v3 Authority Key Identifier:
keyid:A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:cb:cb:9d:32:f3:5d:73:3d:d8:f3:8f:ad:b2:97:e0:45:10:
7a:02:62:cb:82:dd:ad:b9:84:0d:b1:81:45:a0:81:a6:59:5e:
c4:30:e5:84:41:c8:40:37:dd:da:12:ed:60:ec:ff:1d:9e:a7:
ab:2b:f1:58:5e:8d:c6:65:4b:79:37:c6:c8:89:3a:a8:77:35:
94:51:2c:ce:80:d4:83:45:3a:4d:25:be:bc:7b:b8:23:da:5c:
dd:7b:56:db:dd:3c:78:6e:3b:85:be:44:53:b5:09:c3:dd:60:
2d:16:a6:df:6f:11:0b:a5:f5:cf:64:ed:4b:ef:b8:fb:33:79:
89:35:70:af:02:31:c6:1c:f1:ca:6c:67:af:9d:60:b6:ce:f8:
85:5b:01:55:02:1d:5d:8e:21:40:5b:5b:79:22:d0:04:a7:77:
6e:5d:62:e8:c1:d0:1d:73:0f:f8:9e:9d:a6:8c:67:18:3a:41:
75:ad:fc:bb:98:15:60:1a:43:3e:25:67:03:0c:71:4d:87:53:
18:6c:a4:7e:e0:a7:d1:3e:a8:8f:a9:68:d0:7f:f2:6c:50:4c:
b3:d8:b0:67:78:85:56:08:66:31:fc:c8:75:07:25:0f:18:35:
ea:4c:85:b9:33:bf:aa:21:b5:32:09:25:8c:28:78:78:3f:7e:
53:73:02:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:39:04 2026 by rpki-client