Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: 5GEnJiDToVVhAMvYXUvVEV0J9SuLXixC1MkHb52lfHE=
Subject key identifier: EF:F8:43:14:BB:13:5C:A1:D6:6E:25:FE:6E:E1:A4:23:44:C9:3D:90
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 019D382DCD521E7D92EE9C9DCF346E4F2B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 06:00:18 +0000
Manifest this update: Sun 29 Mar 2026 06:00:18 +0000
Manifest next update: Mon 30 Mar 2026 06:00:18 +0000
Files and hashes: 1: lrT-dpG3LRk20hmeOuSNfVtTTUU.roa (hash: JUdomAkf1Kcn8Ijb1exHH29GRd544m6/vPrvf50qtAQ=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: wMBrwdI8R9yo+6n1hjN6YEi1uL+PLo2SZNShWb1tLWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:cd:52:1e:7d:92:ee:9c:9d:cf:34:6e:4f:2b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Mar 29 06:00:18 2026 GMT
Not After : Mar 30 06:00:18 2026 GMT
Subject: CN=eff84314bb135ca1d66e25fe6ee1a42344c93d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:09:2e:eb:ed:87:02:2a:84:43:e3:ca:9e:1a:
c8:9f:99:99:82:82:b0:11:44:d8:2a:3e:28:ee:d7:
db:0f:ca:1b:ec:ce:62:3e:29:29:d1:28:5e:a5:72:
31:b1:cd:be:f6:62:44:28:e0:49:20:60:6d:b5:7a:
d1:2a:b9:45:d7:cd:35:fd:bc:b7:94:a6:ea:31:7b:
79:fc:a7:fd:27:35:c1:71:c5:2b:0a:19:f4:87:51:
82:16:22:c7:d3:4f:a8:9a:2e:59:58:ea:9f:20:22:
0d:3c:db:3b:c5:6b:85:05:14:ab:83:86:91:c1:8a:
67:44:bb:ba:22:b4:64:15:45:46:35:fc:06:83:65:
b5:07:7d:e7:73:9a:0c:fd:34:32:02:c8:a9:be:0b:
19:9f:e1:c7:56:13:bf:d5:a2:98:5c:1c:8d:12:f8:
70:fb:2b:8c:39:2b:d6:c5:4d:e7:39:e4:19:73:83:
e3:0f:b2:c2:89:d0:4f:53:c1:0f:bb:90:76:50:e5:
fe:29:66:07:ff:65:16:dd:c5:d5:83:42:a5:23:7b:
0c:ff:03:88:62:e6:3f:54:a6:a9:40:21:cd:46:5b:
08:bc:7b:3b:a1:c0:a7:58:f4:14:cf:f7:00:17:f3:
98:fb:82:61:79:30:74:b4:b3:56:44:66:f1:7b:94:
71:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F8:43:14:BB:13:5C:A1:D6:6E:25:FE:6E:E1:A4:23:44:C9:3D:90
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:a1:8b:46:60:80:88:3d:c1:11:e5:c6:d4:92:1b:6e:74:58:
7d:c1:49:2e:52:88:bc:83:8c:25:65:0e:73:4e:32:1d:27:c7:
54:76:23:ae:b5:8c:a9:52:7f:3d:a0:26:1d:69:34:21:0e:fa:
aa:98:74:f0:14:04:86:10:d4:6f:94:47:f3:b2:2b:64:8b:cb:
51:00:ca:89:52:1d:c5:bb:1e:94:60:71:74:b3:f4:35:a5:4d:
e5:91:dd:79:42:90:ce:72:80:dd:77:0b:44:a5:c7:a0:60:67:
64:68:5f:86:3e:6f:f3:e3:19:0c:7b:34:a6:50:4b:47:30:b0:
9d:6d:d4:8b:76:14:b4:4b:f4:91:de:ea:37:a6:d0:7a:e9:dc:
f2:13:9e:cc:51:af:97:c1:23:58:a1:90:01:93:a7:59:0b:f3:
8b:41:fe:59:bc:db:1d:b0:f6:44:3c:ba:04:ad:f9:8e:c5:63:
a3:3c:eb:20:08:43:5e:08:94:e3:f4:d1:fa:e0:e8:05:75:bd:
3b:73:97:fa:74:8f:b8:6a:6e:6b:02:26:65:4d:af:99:f5:28:
d1:9f:02:ff:cf:a1:9e:81:90:62:e4:b3:60:46:30:8b:c7:06:
30:21:06:f7:32:34:99:c0:f1:23:48:38:f0:68:1b:8d:17:10:
30:f6:89:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:11:36 2026 by rpki-client