Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
File: PnFWq-5roji5BzFd-cVShlrc2ug.mft (raw, json)
Hash identifier: OcqJlVwgL1g3nG5HnagkuT+ZPTknm0ipc5YX9oGl2dw=
Subject key identifier: 53:62:8D:10:69:E2:5B:E5:C5:59:65:D4:7B:12:69:5A:0E:DB:64:3E
Authority key identifier: 3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
Certificate issuer: /CN=3e7156abee6ba238b907315df9c552865adcdae8
Certificate serial: 019E205A7B6CED93CC49E01FA3F113D93009
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
Manifest number: 0B79
Signing time: Wed 13 May 2026 08:01:01 +0000
Manifest this update: Wed 13 May 2026 08:01:01 +0000
Manifest next update: Thu 14 May 2026 08:01:01 +0000
Files and hashes: 1: 1_igJmtMDXKz9bhBLaRP5dFDztQ.roa (hash: JOImpk+FDhBna11hSj1TGTrJNMUKv4JDlCeaLCzdNVU=)
2: PnFWq-5roji5BzFd-cVShlrc2ug.crl (hash: AviRWmvJIOERXBZpV1YgkZl4Q34z+iO50/Aow1j8jps=)
3: X4LcadFcj7rRiTLEgHHTLMKNzsU.roa (hash: Cf5UA76UUfIOCKC2kd8gwCuNI+KqNFW/rTGifC2FORk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 08:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:7b:6c:ed:93:cc:49:e0:1f:a3:f1:13:d9:30:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7156abee6ba238b907315df9c552865adcdae8
Validity
Not Before: May 13 08:01:01 2026 GMT
Not After : May 14 08:01:01 2026 GMT
Subject: CN=53628d1069e25be5c55965d47b12695a0edb643e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:03:a7:6f:e5:48:c0:82:da:35:56:44:3a:be:
e3:9c:1c:69:c7:7b:ae:6c:d5:85:ce:a3:70:46:95:
6a:cd:72:d0:8d:b5:81:bc:89:08:5f:11:32:c6:fe:
1d:10:8c:4f:32:2e:c7:51:04:4f:8f:8a:79:92:ac:
07:29:68:bd:b3:40:7c:e8:71:d2:34:81:d0:56:62:
19:84:c5:33:e9:74:d8:2f:de:09:01:f9:8b:c2:5b:
98:ed:c5:e5:d4:f0:d2:67:6d:bd:08:79:da:a3:a0:
5a:39:9b:04:ba:2b:e4:99:e6:26:98:c8:29:ec:ce:
55:bd:56:65:e1:99:6d:dc:8e:5c:45:de:69:f8:06:
c4:b0:0a:71:0d:3a:3e:e8:8c:80:2b:ee:20:59:8a:
10:74:af:07:69:52:81:d2:34:0a:fa:24:c7:e3:7a:
bc:2b:90:ad:a4:b3:21:d5:56:10:7a:f4:1c:de:4d:
06:c2:7c:7e:bd:36:6e:c3:0c:f1:3f:11:11:f1:a3:
ba:52:cf:4d:e5:ba:95:95:8a:b0:54:aa:32:b8:b7:
d0:3c:0d:ac:55:7a:32:07:8c:65:79:0e:6d:71:0e:
1e:b9:af:c8:25:b6:6f:ea:36:f7:cb:2e:b7:c0:82:
01:d3:e6:1c:50:50:ca:3b:15:2c:26:c7:9c:64:4d:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:62:8D:10:69:E2:5B:E5:C5:59:65:D4:7B:12:69:5A:0E:DB:64:3E
X509v3 Authority Key Identifier:
keyid:3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:54:d5:14:9d:ab:bf:ea:83:92:1b:85:45:59:26:d0:5a:f6:
f3:80:85:f7:74:48:c9:20:02:ca:31:29:22:0c:6f:aa:90:3a:
91:de:72:47:ff:9d:f6:13:91:eb:fc:4c:3e:ab:80:0f:ec:27:
95:17:8f:c1:31:1b:27:a6:9e:c4:67:82:8d:2c:68:01:82:0a:
ed:72:24:49:bf:97:07:a5:56:1b:35:3b:3c:f0:b9:db:ba:bb:
4d:21:1a:04:7e:32:5b:0a:1d:e8:eb:a5:24:3b:7b:5b:aa:06:
34:58:3f:5c:14:83:1d:14:b4:a8:ad:ce:13:6e:aa:7a:45:0c:
b8:81:44:b3:54:56:e5:a0:bb:50:64:35:0f:86:db:30:31:f2:
51:40:88:07:f6:e8:88:70:e2:11:4c:3c:51:a0:98:4a:be:b7:
98:d3:4a:1e:25:f0:94:ca:ef:1d:61:92:b6:55:aa:f4:c8:94:
c3:db:60:be:50:75:7c:f8:d3:df:4c:39:ff:03:0c:65:86:85:
a7:c1:fe:58:bb:b6:e7:04:87:cb:64:33:61:b6:da:12:75:57:
dc:27:98:38:7b:67:8e:0b:5a:86:d7:b3:e5:42:8d:03:8c:c4:
9f:a5:e1:78:95:70:70:d6:d3:75:05:65:97:74:d7:09:05:9c:
3f:8f:6a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:54:18 2026 by rpki-client