Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: Qosp1+aGOtsFhRhIS2xrlh6hqRc/LN+o/n8eEKQ1wfw=
Subject key identifier: 2D:B2:9D:CB:0A:75:97:01:08:F8:F6:03:30:35:6E:A0:1D:8F:19:EE
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 019DCE631278E576A1EE60B10275E1045D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0FC3
Signing time: Mon 27 Apr 2026 10:01:32 +0000
Manifest this update: Mon 27 Apr 2026 10:01:32 +0000
Manifest next update: Tue 28 Apr 2026 10:01:32 +0000
Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: qdH0xVQOPxbDkMxjEpf8VUIQYueMjg6+K8MzGbIrXbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 10:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:12:78:e5:76:a1:ee:60:b1:02:75:e1:04:5d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Apr 27 10:01:32 2026 GMT
Not After : Apr 28 10:01:32 2026 GMT
Subject: CN=2db29dcb0a75970108f8f60330356ea01d8f19ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e3:e6:aa:ce:92:43:cb:cd:fb:f3:65:bc:c4:
44:bf:03:7c:4a:e8:f1:89:e4:72:41:1e:3e:c0:38:
68:b2:4d:6f:86:25:ea:a9:46:d5:2a:99:8f:57:bc:
80:70:1c:a1:44:bb:6f:0f:98:c5:a1:9e:df:ee:a2:
e5:69:ab:50:ef:32:08:22:74:e1:9f:f4:f2:95:06:
50:fe:e3:db:98:9e:ea:5d:fa:dc:86:1c:2a:97:57:
25:ea:e9:69:ee:6d:a4:2e:7c:b2:8f:6d:76:fe:7f:
5e:0f:3d:04:67:96:a0:5b:94:b0:44:94:8b:c4:7c:
a8:5b:02:70:fa:15:90:04:b4:4d:90:e4:96:55:51:
f3:bc:7a:ae:65:50:15:02:35:69:a1:9a:fa:59:d8:
ea:fa:f8:e3:48:cb:47:60:96:61:7c:1a:b8:d9:45:
e4:9e:ab:9f:4e:7d:5c:e3:95:75:d9:15:cf:63:d3:
4c:31:b6:15:0a:a1:96:e2:dd:05:c6:4c:f5:4e:fd:
0b:dd:42:0a:c4:09:a1:87:1a:0c:2e:c5:3b:b2:e9:
5b:ee:eb:e2:d4:4b:5c:ec:76:8e:e1:5a:d0:80:ee:
78:8b:d4:b5:f6:e5:aa:ab:f3:20:91:e1:f5:06:1a:
18:64:cd:94:8b:93:55:ca:64:d1:fd:fc:7a:29:c5:
f7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B2:9D:CB:0A:75:97:01:08:F8:F6:03:30:35:6E:A0:1D:8F:19:EE
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:bb:75:0a:a4:11:78:b7:a8:08:f2:ac:4b:b2:cd:0a:1e:7b:
ff:fb:4a:a6:c1:c3:81:60:82:80:16:7d:d1:82:fb:e8:88:05:
8d:56:09:50:f1:0f:f6:07:33:b7:e4:6f:cd:86:09:15:8d:dc:
c2:5c:0a:00:1d:e1:14:c8:c3:2e:e6:76:a6:75:7b:99:ce:d5:
9d:22:63:8a:a4:b8:d8:8e:19:2a:eb:6e:0d:2d:9b:88:a4:12:
7b:ab:1f:b6:a2:18:d4:1c:a9:bc:51:36:a4:42:ff:4d:7f:ba:
c3:d3:ba:5c:b2:f4:e1:fe:10:8f:89:97:ab:3d:ae:91:5a:d3:
66:84:c8:68:04:2e:22:b4:f2:21:6c:46:52:2a:d5:b0:9d:35:
4d:9e:4f:7b:95:9b:64:d3:a6:9f:fa:ec:5b:5e:22:87:84:fc:
36:18:8a:ad:8a:53:29:fc:03:03:73:0e:05:bf:0d:ab:9f:d2:
47:3b:1d:a0:ba:39:3f:2e:8f:c8:2c:e0:f8:a3:71:f3:43:cd:
2e:e8:db:d4:3c:9f:a7:3a:3b:67:c5:b0:f3:d5:04:ce:00:11:
51:8e:a5:13:32:cb:a0:66:c3:55:06:7d:e6:22:54:88:0b:df:
28:80:41:15:4f:3b:df:8e:bc:ee:6f:fd:1b:a6:19:dd:9c:a9:
5d:ec:82:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:29:25 2026 by rpki-client