Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json)
Hash identifier: G+Lyd/2YdGbd4qXwNl4IUVcnpRh+pticrDJ5rBJnynQ=
Subject key identifier: 89:1C:31:8D:59:FA:52:32:79:28:CC:EA:8C:D3:E3:67:BE:34:54:2F
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 019E311771A58871A0848FFE5F0500E4C3E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
Manifest number: 16DF
Signing time: Sat 16 May 2026 14:01:20 +0000
Manifest this update: Sat 16 May 2026 14:01:20 +0000
Manifest next update: Sun 17 May 2026 14:01:20 +0000
Files and hashes: 1: 4bDkgENx5bPVfPJbt1ijigXmgrk.roa (hash: SO0YUT683qrSeySHKs6lQYWpsK+0MrLWBcrgELSwcJo=)
2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: YoKoVhtRb6JszsNpn/IMuBfytPUNodHHq7EwsQIXXAo=)
3: rbleZbDw4gebdk07yrvF8SzeP6w.roa (hash: VrTcEnN0AeIhbsoOuLAPeO02+ay5MYr1fedY2RRIQx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:71:a5:88:71:a0:84:8f:fe:5f:05:00:e4:c3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: May 16 14:01:20 2026 GMT
Not After : May 17 14:01:20 2026 GMT
Subject: CN=891c318d59fa52327928ccea8cd3e367be34542f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:93:b7:82:6b:6c:e7:df:79:18:16:f0:3a:
72:61:ee:dd:48:44:d9:d1:12:fd:35:ae:b3:e9:89:
a2:18:8b:2f:80:8e:a7:c1:f0:06:79:f0:00:00:af:
21:d5:8c:e6:f1:f1:69:c6:cd:a1:05:ee:dd:59:4a:
9c:9b:80:71:ac:da:7e:a3:35:17:72:73:e2:ae:76:
ee:53:34:39:de:05:28:a0:db:7a:e7:ca:0e:ae:46:
84:f7:a0:c3:84:e8:f2:c3:48:b8:64:ff:b0:7f:d3:
05:29:9b:21:62:5d:f4:d7:56:4d:ff:7a:0f:0e:76:
9c:01:b6:7f:e5:d3:9e:ec:3e:0c:ff:81:2e:da:d0:
65:c2:8b:8f:cc:e6:db:c9:d5:6e:fe:a6:91:f7:81:
56:5e:39:5d:7e:9d:07:f5:79:62:23:a2:51:c0:42:
4d:06:e3:ff:6e:56:73:60:78:a0:d3:d3:5e:b9:89:
d0:98:b9:5f:e1:84:a2:39:52:c5:19:a3:6f:fa:52:
e2:88:45:ad:e9:75:bf:67:19:31:24:ee:3c:1d:e2:
bb:03:d3:89:e0:b9:be:2f:6e:40:04:d1:91:0b:8c:
a3:06:59:ab:95:0b:3d:89:f1:bd:58:5b:7c:d0:1b:
a5:ed:3f:7d:da:b9:b6:3b:bd:80:4b:26:9a:00:ca:
76:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1C:31:8D:59:FA:52:32:79:28:CC:EA:8C:D3:E3:67:BE:34:54:2F
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f9:d7:b1:e2:ad:f6:c2:2e:dc:c4:e8:cb:89:a1:fa:d0:85:
ee:01:7c:c9:c1:a6:1d:79:85:a8:57:d8:c2:55:07:0b:78:5d:
31:f5:41:ec:03:53:83:77:a3:9c:38:0b:9e:4c:90:65:bb:87:
db:d5:10:74:5b:fb:6d:bf:24:7f:e9:ae:62:e0:32:2e:a5:1b:
8a:e2:f7:ee:f3:b3:bb:b0:8c:e4:85:03:d5:f5:46:fd:38:b2:
4c:14:e5:46:55:1f:76:dc:ed:83:47:24:2d:7c:10:f0:12:80:
cd:a3:ee:b5:88:f1:9f:c1:c3:8c:ff:29:65:4a:4c:e8:ef:85:
ef:64:56:67:f8:71:62:83:74:a3:23:b0:c1:57:a7:4f:9d:18:
ec:47:35:c2:70:41:f0:67:ec:e0:87:49:d6:51:77:33:2b:10:
95:7c:13:e6:f6:8a:af:23:a8:d5:10:09:a9:0e:50:2b:e0:14:
ec:c8:24:b7:83:53:a0:0a:ca:55:e1:66:4d:9a:ef:33:74:23:
3b:41:2e:ff:9d:9b:3b:db:1c:5f:db:22:ce:fb:bb:a0:c9:c8:
fa:73:eb:a9:fd:7d:0f:0b:b7:79:28:1e:7d:28:da:6b:94:58:
c4:4b:18:f3:6b:af:b1:1b:6d:c9:36:1e:26:0b:11:9c:39:e8:
e1:9d:f0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:12:53 2026 by rpki-client