Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: yDrZecc+J1gwcPJbqlcbE1E1r4LQF46YR/a8uWmHXts=
Subject key identifier: B7:31:C6:95:47:DF:A5:55:C3:C4:5A:D3:EF:02:2F:82:06:DA:1D:32
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019D28BBCEE8249BBAD90E46BFAD8F9D8989
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0C8F
Signing time: Thu 26 Mar 2026 06:01:29 +0000
Manifest this update: Thu 26 Mar 2026 06:01:29 +0000
Manifest next update: Fri 27 Mar 2026 06:01:29 +0000
Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=)
2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: AYlg94/Nmr+B0zH9oipvS7YoSLy9tMsHn8z/4YZKnkM=)
4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=)
5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:ce:e8:24:9b:ba:d9:0e:46:bf:ad:8f:9d:89:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Mar 26 06:01:29 2026 GMT
Not After : Mar 27 06:01:29 2026 GMT
Subject: CN=b731c69547dfa555c3c45ad3ef022f8206da1d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ab:d8:73:78:2d:8c:15:39:89:15:d4:9c:6d:
a0:da:83:2d:e7:1b:19:03:99:4b:f1:24:09:98:6d:
e1:11:5e:cc:c9:91:1e:1c:9d:97:09:47:c8:e2:57:
da:7c:d7:dc:e0:d3:9c:a4:8e:6b:f2:6e:64:12:31:
8b:7a:75:12:43:4a:3e:f4:de:ec:a6:9c:8c:a1:61:
d7:eb:9b:e4:9e:0c:b1:e1:ea:5a:b4:8d:1e:1a:fb:
48:9b:a4:59:5f:a4:ea:03:7e:f1:e4:dc:21:df:85:
26:82:e5:5b:ad:92:d0:cd:1a:1a:dd:e8:4a:b6:92:
b7:e2:07:b0:2c:c6:0c:d7:83:1a:57:89:08:72:95:
6a:f8:a7:1e:3c:7c:89:51:2e:4e:1b:7a:14:f8:23:
79:6a:ae:68:06:5d:50:f4:5a:5c:2c:97:48:f2:60:
66:4f:26:ee:0c:41:85:4b:8e:c1:38:2b:44:9e:f3:
ac:d3:73:2f:98:cb:48:20:33:a1:f7:98:7c:6d:87:
87:40:28:5a:5d:48:51:6f:d0:29:ff:fb:91:d3:a0:
01:26:6c:88:e8:53:6d:62:29:48:d3:1c:5e:6f:07:
60:1d:06:43:79:25:70:16:29:6c:6d:16:e0:cc:7c:
b2:3a:16:79:0e:98:34:fb:11:3e:9e:01:01:7b:45:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:31:C6:95:47:DF:A5:55:C3:C4:5A:D3:EF:02:2F:82:06:DA:1D:32
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:89:cd:fa:2f:49:2f:51:32:79:21:ac:20:d2:12:75:ed:22:
b0:07:d3:ba:81:2d:f8:ca:9a:a9:65:6f:3f:e1:05:6e:d4:f9:
08:47:69:74:5d:0f:85:83:a9:b2:90:db:97:ce:66:3a:fc:59:
5a:bb:a9:18:6f:26:6c:6b:69:13:8c:2c:89:22:c6:23:46:e1:
7e:d0:59:cb:a5:6b:cb:d5:9d:bc:b1:ec:13:10:bc:e4:20:ec:
b5:3a:6b:d1:44:27:5e:0c:e1:85:24:b4:9b:bd:80:a0:b8:20:
d9:5d:0d:61:01:bc:f5:cd:ba:42:85:fc:ac:af:ca:c3:00:a9:
68:76:b1:45:f6:9d:55:0d:9b:c6:0d:b6:7e:c8:44:37:c8:94:
b8:02:fd:ae:05:11:91:eb:36:98:fc:88:25:13:22:cd:d6:03:
fb:29:09:dd:00:d8:f5:23:2d:0b:c8:d0:8f:24:66:94:44:62:
ff:f4:2f:2e:c7:5e:73:a2:10:7c:64:f3:db:bf:9c:4b:ff:7e:
2c:94:4d:3e:77:66:dd:92:3c:33:cc:1b:6f:2d:60:40:ac:cf:
69:4f:a7:81:be:40:aa:b7:ab:cd:e5:3e:d3:85:49:71:b4:ad:
9e:49:6a:20:74:bc:e4:93:bf:a9:18:3d:17:4a:ae:ed:31:fd:
fe:84:e5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:16 2026 by rpki-client