Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: ua0qW1ujxcD9CfmaSMrgjuiWDl46w0nuaEVsoLyXmlE=
Subject key identifier: 98:ED:53:DE:85:AD:39:2C:FE:B4:4E:9F:45:01:89:22:AA:0F:5E:93
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019D2704302BF7B6383D27F0EBAE705822D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0C23
Signing time: Wed 25 Mar 2026 22:01:19 +0000
Manifest this update: Wed 25 Mar 2026 22:01:19 +0000
Manifest next update: Thu 26 Mar 2026 22:01:19 +0000
Files and hashes: 1: nJSmMLTuP11zOj-elOc_2mrwgF8.roa (hash: 10N2e/W3MOYvDPcGICyNpYfCx8NxZM9dOTlLGlZzpE4=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: il+6gToPwaw8QC+tCWE6YxWYJAtvwCTyok4BkZqFtp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:30:2b:f7:b6:38:3d:27:f0:eb:ae:70:58:22:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Mar 25 22:01:19 2026 GMT
Not After : Mar 26 22:01:19 2026 GMT
Subject: CN=98ed53de85ad392cfeb44e9f45018922aa0f5e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:62:99:41:ef:5f:7c:0e:61:dc:e7:2d:d5:20:
99:2f:cb:84:55:6d:7c:97:30:e1:fd:fb:03:ce:5d:
11:60:73:22:de:c5:e6:11:af:74:9e:74:33:20:8c:
c9:78:f8:e0:5e:74:b9:0a:d8:20:7d:e6:73:21:fb:
a3:0e:1f:6c:0f:a5:86:0f:d9:5a:19:62:c3:65:cf:
51:6f:b3:46:c0:e0:21:76:9b:1d:5b:22:52:6c:f6:
90:30:77:93:f3:a7:3e:2d:e3:63:4a:14:4b:f2:63:
27:55:cd:a8:36:4e:25:fb:5d:76:d1:19:f2:79:98:
1d:f6:b7:6c:0a:3b:c4:96:82:c2:7c:23:cc:11:0b:
0c:8d:73:a3:83:ed:9f:4c:7b:df:87:fc:45:f9:f7:
f6:d6:96:90:6a:bd:04:8b:1c:3a:ab:02:d1:65:37:
35:72:07:12:97:b6:57:f6:7d:c1:f4:17:c2:05:7c:
f3:63:a6:a2:b8:27:ee:25:8f:98:88:7e:91:88:d1:
27:21:4c:d4:53:e0:89:73:40:b6:8d:cb:f8:0f:2e:
95:a3:aa:b9:36:a3:92:7f:00:8b:11:96:a4:08:a6:
c2:b3:4c:1f:7c:c6:76:b2:fe:46:1e:c6:16:48:41:
5e:26:16:0a:be:38:a1:9a:e2:bb:3e:3b:ca:3d:00:
80:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:ED:53:DE:85:AD:39:2C:FE:B4:4E:9F:45:01:89:22:AA:0F:5E:93
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:60:e3:49:80:c0:85:bd:ef:a4:27:9b:f1:50:55:52:05:60:
36:4e:af:cb:cf:1a:c7:68:44:3a:f1:b4:d6:4e:94:40:db:bf:
07:7f:11:4a:a6:5c:f4:65:3c:93:0b:96:96:fe:e9:90:79:32:
7c:0a:c7:a6:48:c8:7b:90:b9:d1:23:b8:28:9f:d0:86:99:28:
19:55:08:b2:d6:ed:48:71:b7:ba:da:82:4b:cc:59:c8:8b:32:
9c:06:c8:ad:fd:ba:e6:7a:7e:f8:5d:99:ea:63:19:bf:45:c7:
0f:f3:ca:ff:b4:17:db:b7:d9:a7:cb:30:ac:3b:73:4e:ea:9d:
46:f1:b9:8f:f6:63:72:16:3c:d0:46:82:d6:af:e3:8c:04:44:
40:40:2a:c9:fa:f3:51:b7:25:b0:e6:4b:27:d0:d2:a7:10:26:
d9:be:b3:5e:69:cf:a7:1c:e6:a2:2d:11:84:d3:22:d6:63:7f:
18:56:c5:cb:91:3c:bf:f0:f0:5c:e7:9d:a6:71:4e:93:cb:f8:
4c:89:d1:a0:5b:ed:d2:58:d3:8b:a4:1e:4c:66:e2:84:d2:a8:
91:26:ff:15:de:9e:d2:af:45:32:c8:83:d5:bb:a3:e4:d4:a5:
c2:53:8d:24:e0:99:54:58:a0:98:11:10:a7:fb:af:33:07:c5:
5b:20:33:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:46 2026 by rpki-client