Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
File: mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft (raw, json)
Hash identifier: rH1jsvmx34nDIv+OTLFcQ2W4UNgXnne/EBU1zaBCB7w=
Subject key identifier: 46:FE:65:52:EE:B0:97:F4:65:70:36:74:8A:E0:DF:55:34:CD:E5:B6
Authority key identifier: 98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
Certificate issuer: /CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Certificate serial: 019D37C09019C5CC98751DE2EFC6A1E18769
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
Manifest number: 1423
Signing time: Sun 29 Mar 2026 04:00:59 +0000
Manifest this update: Sun 29 Mar 2026 04:00:59 +0000
Manifest next update: Mon 30 Mar 2026 04:00:59 +0000
Files and hashes: 1: mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl (hash: mRlNiB6pyOz+ZsD2DJNLkkiZoX7plJA1F50v8EOKSi4=)
2: ru9Lv6OqB7V-7WaM7CY9CuYMU9U.roa (hash: pn31EwFoa+kLu5aisTeRHil2IKacpnZCCu4FI8vc0Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:90:19:c5:cc:98:75:1d:e2:ef:c6:a1:e1:87:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Validity
Not Before: Mar 29 04:00:59 2026 GMT
Not After : Mar 30 04:00:59 2026 GMT
Subject: CN=46fe6552eeb097f4657036748ae0df5534cde5b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:26:f5:56:84:9c:f4:16:1f:cd:90:2f:d1:
cf:1a:6e:35:75:fd:9c:76:4a:d5:ca:f8:3d:ed:4b:
64:22:9c:1f:44:86:ca:c5:6d:0e:a8:b2:42:26:21:
cd:f9:c0:89:c2:9a:2c:79:10:60:c2:79:65:59:62:
93:ac:50:ae:f5:3e:88:c9:1a:39:f1:57:1f:65:4e:
2d:f4:05:20:10:8d:29:de:81:16:2e:ee:9b:9c:12:
09:9c:73:1f:32:3d:b1:e7:15:46:af:8b:47:56:db:
1d:bd:c6:cc:5f:4b:67:9c:17:13:40:67:c7:be:b9:
02:37:b6:96:13:30:d6:04:63:3d:c4:d6:b3:4f:6b:
cb:0d:4c:6b:24:ed:c2:21:b6:ae:73:26:68:ec:f2:
7c:61:39:c3:52:69:0c:3c:a6:a2:4d:23:68:0b:85:
39:2f:0e:c5:e8:b4:e2:ca:13:0d:9a:af:75:cd:55:
55:f7:de:b4:bc:31:11:b0:25:8b:ba:32:5f:b7:9f:
f4:b9:49:84:69:89:e4:2d:27:bc:9b:42:26:5f:e1:
fb:d9:a4:b1:3c:c3:94:ea:bc:6e:b5:8b:4a:b4:20:
1e:4d:52:70:50:2e:9d:b7:d9:8a:79:77:3c:0b:15:
f4:24:f8:cd:fe:14:67:ce:0e:8c:ca:bc:db:80:37:
4e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FE:65:52:EE:B0:97:F4:65:70:36:74:8A:E0:DF:55:34:CD:E5:B6
X509v3 Authority Key Identifier:
keyid:98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:48:80:fe:3e:0b:c1:15:2d:cc:f3:dd:fa:da:5b:84:d9:05:
a9:2d:3d:53:1d:9f:a2:f5:10:58:bd:6d:e4:aa:46:c6:10:88:
1f:b6:75:e6:58:5e:4b:12:3f:63:bf:8d:40:37:8b:ce:40:61:
09:2b:95:16:64:70:52:d7:b8:e4:20:ce:db:3b:b2:85:3f:3c:
1b:6c:44:ef:c9:4d:3d:86:30:50:90:6c:f8:b5:10:7f:11:bb:
7e:3f:36:8d:c3:a3:bb:9b:92:5e:01:fb:6b:fc:72:d3:f1:62:
16:4a:0b:80:8a:22:24:2f:86:b4:e3:9b:81:80:8d:75:a9:d5:
a7:81:e0:b7:c1:15:b9:ea:20:93:33:1a:dc:a8:f0:5c:6b:0b:
58:aa:57:43:86:c7:8f:12:18:70:c8:b1:43:ee:96:31:71:b5:
8b:16:6a:d1:44:95:b8:d7:93:47:1f:88:2b:23:3f:4c:68:60:
f4:65:a9:42:ca:e3:85:10:db:e6:09:9c:6b:c4:a4:77:be:d1:
a2:51:f0:89:27:64:4c:47:7f:22:5d:8f:e0:e7:48:42:5c:78:
b4:dd:2a:fa:65:31:c8:ee:af:3f:da:fe:7a:16:d5:62:dd:77:
e9:b3:73:e3:5c:cc:e0:52:ce:a9:cf:07:2d:c2:ae:ff:d3:15:
67:15:a5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:10 2026 by rpki-client