Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json)
Hash identifier: s1Q1k1C9SUmtghmtHrd3vD4T8U8jrsxNP0o6idyIQi0=
Subject key identifier: E2:80:47:CE:A1:E5:F7:5B:12:36:C7:C7:40:0D:35:E4:6A:9A:78:A2
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 019F18D6E92509E737256C049181DD7FEF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
Manifest number: 1757
Signing time: Tue 30 Jun 2026 14:02:45 +0000
Manifest this update: Tue 30 Jun 2026 14:02:45 +0000
Manifest next update: Wed 01 Jul 2026 14:02:45 +0000
Files and hashes: 1: 4bDkgENx5bPVfPJbt1ijigXmgrk.roa (hash: SO0YUT683qrSeySHKs6lQYWpsK+0MrLWBcrgELSwcJo=)
2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: g0P7jqv3c42ftShfpQrHiLiJmsFqLXsb3V1VTCFcZuA=)
3: rbleZbDw4gebdk07yrvF8SzeP6w.roa (hash: VrTcEnN0AeIhbsoOuLAPeO02+ay5MYr1fedY2RRIQx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:e9:25:09:e7:37:25:6c:04:91:81:dd:7f:ef:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Jun 30 14:02:45 2026 GMT
Not After : Jul 1 14:02:45 2026 GMT
Subject: CN=e28047cea1e5f75b1236c7c7400d35e46a9a78a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a6:a6:f6:dd:ff:a1:6a:37:a7:09:70:ea:8f:
96:3a:6b:8c:e3:c1:2c:4c:c7:fb:31:3e:fe:95:a0:
9a:45:85:cf:6c:01:b2:24:ca:8f:c3:6a:b0:4e:b7:
f7:6d:6e:30:0b:94:64:7a:04:c8:12:3f:9c:f7:41:
00:4e:6a:85:81:ee:e1:19:5c:a3:d2:89:31:d0:0b:
a0:18:cf:81:5c:6d:0a:64:ea:a8:e9:16:22:1f:3c:
5a:4f:a1:bb:b2:53:16:e7:42:4b:d1:29:6f:9a:f8:
be:64:a5:ae:91:60:b2:8b:b1:af:a3:0b:9c:a3:ef:
21:b5:16:43:10:36:0a:a2:89:19:aa:f2:eb:1e:78:
e4:7f:69:e7:79:9c:16:d1:68:f5:ab:04:fd:11:f8:
e5:91:9c:31:c5:ce:03:7e:1b:a0:a4:cf:f8:14:66:
8e:b9:85:28:09:42:5d:53:cb:37:1c:f4:90:dd:d4:
eb:e5:48:6a:ab:80:a4:e1:2b:c1:8f:70:63:2e:1e:
ea:ca:14:79:3d:aa:58:f9:62:26:d6:99:81:a1:92:
36:1e:35:87:48:0d:c4:da:86:75:e2:6d:3c:22:bb:
e4:19:84:54:29:df:7f:36:34:a0:85:0b:66:a2:95:
63:17:a8:c5:f6:53:a3:35:f5:4f:43:a2:c9:e2:c3:
11:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:80:47:CE:A1:E5:F7:5B:12:36:C7:C7:40:0D:35:E4:6A:9A:78:A2
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:6b:12:a0:cb:5c:92:c6:f3:d3:d2:81:6c:2f:b3:e4:1d:fa:
13:e0:66:c4:4a:66:25:d2:e0:6e:b5:be:bf:80:8f:c0:da:86:
c7:44:60:d6:69:4f:3d:c2:8a:58:34:d3:a5:ad:df:d0:c8:65:
54:0d:4e:d1:f3:7b:e9:c4:ca:78:c1:36:aa:29:b7:f9:41:82:
5e:52:7a:73:91:23:5e:c5:d0:6e:92:ba:81:cc:12:be:a7:53:
16:87:d7:a8:23:3a:7f:80:21:60:9a:99:5d:9a:cb:89:2b:86:
45:46:24:a1:f9:5b:ff:26:f0:5e:5f:f9:4d:ef:a3:f7:14:a9:
d5:67:3b:2c:80:ec:d8:67:8d:e3:dc:20:6e:77:62:9f:4d:19:
0b:41:6d:fe:26:e0:14:9b:e6:a3:46:ff:70:f2:73:d0:d7:b3:
ee:48:25:86:08:57:70:0c:7a:83:d1:30:22:eb:c4:21:ca:ec:
05:3a:98:0a:fb:b4:59:1b:28:40:08:67:f5:d2:d5:3e:9a:63:
d8:c1:8f:e7:32:b3:e0:38:01:4b:4d:cf:e1:eb:29:16:31:8a:
c9:75:2c:bf:d0:33:fe:33:ba:3f:80:18:c5:3d:b2:21:0f:39:
5c:78:8d:c8:30:85:e7:a2:7a:60:90:5a:b6:5e:14:f6:23:05:
bf:b1:4c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:16:50 2026 by rpki-client