Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: h6ipXsjbGaqkvJ+po92HIKxt1N8ei70pnb8dml/hyU8=
Subject key identifier: A4:53:28:31:E4:DF:09:1D:59:60:DD:59:94:7F:9C:BE:AF:E1:7E:AC
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 019CE4B5EF9C3604C63488C9BA837FB7D27A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0F4A
Signing time: Fri 13 Mar 2026 01:00:54 +0000
Manifest this update: Fri 13 Mar 2026 01:00:54 +0000
Manifest next update: Sat 14 Mar 2026 01:00:54 +0000
Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: ylNqrCHN/1dgpYB8RuPmaqEajKjHs4IhiMDHrbuxq3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:ef:9c:36:04:c6:34:88:c9:ba:83:7f:b7:d2:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Mar 13 01:00:54 2026 GMT
Not After : Mar 14 01:00:54 2026 GMT
Subject: CN=a4532831e4df091d5960dd59947f9cbeafe17eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:29:33:fb:94:0e:6d:e9:36:88:30:9f:68:dd:
90:df:24:60:34:ed:76:24:d8:09:b4:7e:06:3c:0b:
e0:b0:c0:ee:b7:c6:3e:01:fc:0f:e2:c0:15:21:75:
3e:5e:1d:0b:31:1d:d3:dd:8f:63:f2:e7:98:3c:2a:
6c:5b:70:02:66:dc:b6:dc:15:48:47:61:08:15:1d:
5f:60:69:ba:d8:fb:b5:e1:3e:57:85:b8:e2:90:5c:
ff:e8:37:68:40:3b:55:b3:9e:17:55:41:b7:4f:c7:
67:ff:02:60:82:50:d2:1b:f7:49:aa:e5:5b:c1:2f:
d4:b9:d6:ac:68:03:a5:50:6e:df:87:6a:e7:49:42:
1b:3d:ff:f7:cd:84:1a:b6:06:06:a9:13:c1:23:87:
37:41:a3:ef:cf:42:2d:a9:38:35:a3:1c:57:12:5f:
33:da:21:13:ad:74:a8:0a:47:57:fd:23:31:c7:4e:
62:e7:32:26:f2:90:05:18:9c:d4:c2:b6:b9:bd:72:
0e:ed:90:7d:87:74:c5:8a:06:e5:8d:6c:cb:9c:65:
22:1d:36:df:ff:26:61:ad:f1:26:36:fd:ce:c9:b6:
73:a2:6c:fb:ca:80:f4:0d:50:e4:5c:c0:b6:bd:07:
7c:c7:6d:93:42:f2:08:b0:ab:53:19:1e:88:f8:1f:
50:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:53:28:31:E4:DF:09:1D:59:60:DD:59:94:7F:9C:BE:AF:E1:7E:AC
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:89:c6:67:92:8e:cf:42:e8:22:20:9f:4b:62:47:b3:04:56:
f7:e4:0f:5c:56:eb:4c:34:d1:04:94:1f:51:ae:25:b9:3a:47:
b6:21:38:1a:ff:e0:4a:11:27:42:e2:ec:ce:b1:b6:44:2d:22:
ec:06:e3:6f:3d:43:92:19:ec:ca:90:5d:4e:92:5c:c8:0d:00:
a0:95:d7:4a:ac:2a:49:d7:9e:4f:46:c6:f5:69:57:bc:8d:dc:
72:de:c0:76:ec:9b:98:9f:bc:de:13:aa:1b:4a:ab:6e:df:72:
00:7a:2b:c6:2a:9d:9a:90:d1:22:c1:6b:9a:2d:00:3e:ce:f5:
f1:ee:9d:5e:3e:db:b3:f5:f8:38:69:bb:89:bc:c6:e9:2d:2c:
88:5b:25:a5:ff:91:26:ca:bc:48:47:32:10:f8:79:15:91:ef:
e6:74:cb:07:62:18:10:77:37:ef:6d:8e:b2:a2:cc:e8:e0:21:
6d:03:10:60:10:fc:01:02:f7:a1:52:52:49:a1:4b:07:45:fb:
77:f6:c5:9e:8a:ca:72:be:73:c1:a1:5f:04:40:59:36:ba:80:
1e:43:18:ec:db:eb:a0:ed:51:e0:03:74:7e:0c:4d:c5:b4:b0:
96:df:75:63:66:04:4c:dc:12:99:01:ec:61:95:75:89:0f:2f:
73:34:c3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:59:48 2026 by rpki-client