Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
File: rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json)
Hash identifier: 143vhszOJUXzwTHded7RDw5O0LPtTjpNIKtUhEX2Jtw=
Subject key identifier: 2D:1A:E0:37:81:0C:A1:08:CB:BC:75:04:A1:23:CE:1E:59:48:D3:03
Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
Certificate issuer: /CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Certificate serial: 019D390A348B5EB88FEE9F1C2847193D5D11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 10:01:03 +0000
Manifest this update: Sun 29 Mar 2026 10:01:03 +0000
Manifest next update: Mon 30 Mar 2026 10:01:03 +0000
Files and hashes: 1: r9eaNKOzK8PPUei6RdKb9LkqhTI.roa (hash: +R7LC8z04wYSjkyWe1Pk5HhKfodwp2zyyiW39xvrzog=)
2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: TYjYbUzCNPMzCf2r8KcNT9/DiWWrgjOx4sIhLBfY/wY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:34:8b:5e:b8:8f:ee:9f:1c:28:47:19:3d:5d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Validity
Not Before: Mar 29 10:01:03 2026 GMT
Not After : Mar 30 10:01:03 2026 GMT
Subject: CN=2d1ae037810ca108cbbc7504a123ce1e5948d303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b4:1a:8f:be:7e:49:e4:ba:bd:69:a4:3f:e8:
be:0e:5c:c4:ed:79:5b:5c:56:54:57:1e:14:dd:52:
c6:82:d6:b8:13:f5:2e:f0:3e:27:70:0d:21:1a:af:
84:f6:fb:c7:59:07:da:b3:fd:84:59:9c:b8:07:21:
06:dc:33:50:90:5b:e8:a9:78:8f:d6:3d:53:1b:48:
9d:f7:ec:74:16:a1:50:9c:9b:71:f5:a1:38:69:79:
16:7f:4a:5d:10:95:d7:4c:6b:0e:c9:eb:58:77:4a:
c7:02:c0:41:b0:a5:20:e6:a2:39:52:8f:50:db:51:
ab:7b:dd:b3:05:88:65:43:48:72:a6:3d:97:f4:28:
2f:c1:d5:d2:e5:8e:b0:f3:4d:f5:26:d5:6e:7b:66:
39:2b:67:c3:23:d1:28:f0:a3:ef:63:04:c6:ca:be:
d0:b2:44:0f:8b:c5:ce:68:64:e6:db:d4:76:60:4c:
50:4b:0d:c7:3e:31:6b:7d:20:30:c7:d2:94:d6:a8:
dd:76:20:56:85:4a:af:48:51:f9:44:37:89:04:54:
40:18:70:bc:2d:37:37:22:12:8f:cf:19:ac:2b:f2:
33:4a:03:88:65:88:b4:be:18:13:2e:39:95:5f:4a:
8f:fa:79:a5:4c:70:b9:a2:97:0d:72:6f:75:6e:d9:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1A:E0:37:81:0C:A1:08:CB:BC:75:04:A1:23:CE:1E:59:48:D3:03
X509v3 Authority Key Identifier:
keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:89:69:2e:3f:13:9b:93:7d:20:e7:75:a6:fd:01:c4:31:bc:
29:4a:3e:88:0e:a8:99:24:bf:95:47:02:2d:1e:42:f4:a2:38:
2f:ab:a8:59:58:d1:47:65:0f:a0:79:9b:31:8e:a1:30:fe:7e:
6f:59:d0:33:02:d7:31:2c:30:23:76:22:d0:90:ab:84:44:9e:
dd:c8:c7:44:a6:d9:41:03:7e:f7:66:40:d7:30:8e:5d:15:f7:
70:e1:ee:e5:42:40:47:b4:34:5e:16:b4:19:06:5b:20:cf:6d:
04:03:71:50:01:7d:02:45:f0:20:1a:de:26:c8:a1:94:14:7d:
e9:50:ee:ef:e8:c4:8d:2d:36:1e:98:a0:05:7c:0f:da:34:9c:
21:19:c7:8d:19:3c:64:e5:69:09:e0:41:4c:cd:6c:26:11:82:
b8:95:96:d8:a5:1a:a1:78:93:56:4c:a2:16:02:b8:b5:ad:b9:
93:27:3a:b7:17:82:2b:28:01:90:50:4e:9f:60:06:3a:a5:7a:
de:24:aa:cc:48:f3:a4:36:29:f7:77:00:7d:2e:30:4e:2c:9e:
85:dd:be:7e:35:ab:41:0f:3b:f5:5e:96:d9:d1:aa:c7:2e:34:
c8:3b:f2:24:8f:62:b5:13:9a:7a:d9:a0:5d:9a:aa:68:5a:e9:
ca:91:68:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:28 2026 by rpki-client