Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json)
Hash identifier: aJPt7BySPcQC40zf3fQUgOzgnOVLj6APcVrZfq+/g1c=
Subject key identifier: F2:06:52:E0:A6:69:88:6E:78:B0:4B:AC:5F:7F:0E:F2:4F:51:03:A7
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 019D37F7A6BAC4567EF77392681B99922304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
Manifest number: 165E
Signing time: Sun 29 Mar 2026 05:01:09 +0000
Manifest this update: Sun 29 Mar 2026 05:01:09 +0000
Manifest next update: Mon 30 Mar 2026 05:01:09 +0000
Files and hashes: 1: 4bDkgENx5bPVfPJbt1ijigXmgrk.roa (hash: SO0YUT683qrSeySHKs6lQYWpsK+0MrLWBcrgELSwcJo=)
2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: xFegTGuYMN61LSfLF+XRHPKcaBTNQmI2MCD8J0A/oA0=)
3: rbleZbDw4gebdk07yrvF8SzeP6w.roa (hash: VrTcEnN0AeIhbsoOuLAPeO02+ay5MYr1fedY2RRIQx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:a6:ba:c4:56:7e:f7:73:92:68:1b:99:92:23:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Mar 29 05:01:09 2026 GMT
Not After : Mar 30 05:01:09 2026 GMT
Subject: CN=f20652e0a669886e78b04bac5f7f0ef24f5103a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:27:f6:1f:0e:d1:3f:b2:44:40:fe:31:6f:f1:
23:ad:4c:90:9b:ad:a0:f1:e0:b3:6f:60:27:9c:f9:
d7:01:2a:b5:82:62:54:7b:01:91:45:62:f2:94:e6:
e9:e1:5d:8f:ef:f8:a9:4f:af:b2:ac:8a:ea:3d:72:
cc:0c:1e:47:a8:b9:69:2e:08:8f:4a:40:5e:c1:93:
4e:72:34:49:06:a4:9e:ec:f4:15:e3:b8:20:c9:bf:
23:fe:e8:62:56:78:9a:9c:54:78:56:5a:f9:c7:a8:
0c:c4:2e:c8:86:8c:e7:53:14:4f:af:a8:83:fb:a9:
84:e6:2e:97:56:17:2e:1e:5e:32:50:67:6b:a8:9d:
58:1f:45:80:6e:31:8b:7e:ba:63:78:d1:cb:69:39:
9a:cf:43:66:0c:f9:62:ae:63:f7:61:dc:f7:61:86:
bf:c3:cc:d5:24:b1:21:58:3d:5f:51:6c:8a:4a:a9:
27:7e:b8:66:f6:2c:e5:97:9d:23:d8:7d:14:54:6c:
7d:05:25:7b:17:aa:80:23:15:05:81:29:0c:06:a4:
ad:ca:f2:7a:2a:f0:4a:a6:9b:4c:77:c2:4f:bc:4e:
a1:c9:c8:81:0b:ac:07:b7:88:a4:60:7a:49:a4:05:
ea:7a:89:cd:ec:a1:51:5b:e8:03:0d:9f:df:9b:19:
5b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:06:52:E0:A6:69:88:6E:78:B0:4B:AC:5F:7F:0E:F2:4F:51:03:A7
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:90:c7:9a:9f:c5:16:03:83:fa:fe:4e:ef:2c:e4:1b:be:40:
b0:15:59:78:e7:a6:eb:07:08:d1:78:ee:e0:bc:7d:6c:b8:1a:
f5:4d:3f:bc:ce:c9:86:71:9f:33:95:6a:04:1d:df:8a:4f:82:
6e:98:20:81:4c:95:74:fd:01:4f:bd:83:d1:2c:d0:a7:e7:3d:
65:8a:87:42:cc:4f:d7:82:90:78:d9:88:ed:6e:9c:a1:de:a5:
56:31:6c:06:3e:42:6a:91:bd:f4:07:20:83:69:0d:e3:77:6e:
3d:1e:c8:c1:56:ae:75:7f:92:a2:33:b6:45:c2:7d:9e:19:b0:
09:38:7e:c0:55:be:50:c6:1c:4a:d8:8c:1c:8d:e5:b2:57:d1:
79:17:63:d4:3d:ca:69:4a:fd:82:80:2e:c1:99:96:8e:10:cc:
d9:c4:60:f3:3c:dc:0b:a7:51:dc:b7:71:31:01:a6:52:e7:e2:
6c:3d:28:35:5d:bc:ab:ca:d6:91:2b:4c:dc:02:85:d8:09:eb:
98:1f:fa:0e:85:1d:42:15:b9:1f:1a:48:ca:ec:3f:dc:95:35:
d2:b7:04:87:3a:ba:5e:ce:ed:8f:b8:bc:cb:0b:a2:ae:d1:70:
48:0c:64:b1:8d:4a:fa:67:ab:c1:1a:48:3d:3a:4e:90:00:6b:
35:d9:46:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:36 2026 by rpki-client