Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
File: mlCFOiSox2IjTokTpKWymFwzHa0.mft (raw, json)
Hash identifier: 4smk8MSFxRjCTE+JSRxk+4rQRwQ2nlxxrRyCnD7S/b4=
Subject key identifier: 34:2A:78:8C:52:39:32:7E:72:D9:A9:8E:80:D9:A3:34:9C:E8:B5:4A
Authority key identifier: 9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
Certificate issuer: /CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Certificate serial: 019E32617F56DC728C187DD2BC08AE440AE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
Manifest number: 16D1
Signing time: Sat 16 May 2026 20:01:50 +0000
Manifest this update: Sat 16 May 2026 20:01:50 +0000
Manifest next update: Sun 17 May 2026 20:01:50 +0000
Files and hashes: 1: 8fdsNHAoxPgGvUJ1-IIbNzs4kR8.roa (hash: oToJ7/CBn32SApKsPhftng2rCZIvh8kkblOHjghDJj8=)
2: mlCFOiSox2IjTokTpKWymFwzHa0.crl (hash: ZN3EHuW2VI/H3r29Q8z37G0bTBvXNMkIpxz8CKvnifc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 20:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:7f:56:dc:72:8c:18:7d:d2:bc:08:ae:44:0a:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Validity
Not Before: May 16 20:01:50 2026 GMT
Not After : May 17 20:01:50 2026 GMT
Subject: CN=342a788c5239327e72d9a98e80d9a3349ce8b54a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6a:42:14:bc:78:82:7e:be:b0:dd:dd:01:49:
6b:cd:82:28:06:45:01:b4:36:12:8c:66:18:0b:95:
78:b0:92:7b:66:00:13:46:b8:64:21:89:59:ff:90:
c4:8d:75:cf:24:47:76:c4:1a:89:9f:6f:cd:1c:c0:
e4:da:de:2c:95:f2:2e:4f:77:3f:ca:ec:6c:73:e4:
59:51:c8:62:9f:63:d0:17:9f:30:d2:c7:05:b1:50:
68:8f:d9:f2:b8:8e:bd:a2:ec:db:08:e0:7d:a8:e4:
0c:4b:0e:72:ed:57:55:f6:46:19:45:44:37:9b:a6:
65:8f:2e:1d:21:93:0d:c6:62:4f:cf:1d:a7:a3:17:
f4:8b:0c:94:00:76:77:57:0e:c0:fb:fa:de:83:be:
8b:60:24:0e:95:6d:c5:60:2b:a0:83:29:af:f5:cd:
d2:25:4f:7d:b5:df:07:65:d4:97:01:39:fb:4d:d9:
fd:8f:74:7d:bc:e2:a7:05:4d:4b:f1:33:d5:9d:50:
83:9d:3d:fd:c6:36:2b:ee:cb:c3:df:d7:3f:ec:b7:
92:c7:f5:79:1e:31:a5:03:75:f8:b5:1d:cb:9a:ab:
7b:d2:e3:0d:57:44:14:b8:26:32:73:82:78:04:fc:
97:27:b3:5e:5c:d5:81:05:55:8c:ae:7f:7e:b3:4e:
f5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2A:78:8C:52:39:32:7E:72:D9:A9:8E:80:D9:A3:34:9C:E8:B5:4A
X509v3 Authority Key Identifier:
keyid:9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:74:3f:71:74:6d:0d:83:f3:59:78:2e:a2:86:5a:f8:f2:6c:
cc:8e:c7:cf:d9:dd:99:b7:9d:e1:e8:d2:fb:81:30:fd:18:8f:
5e:79:b8:ab:e4:82:62:18:c9:0d:e9:5a:65:74:41:09:fa:5c:
81:42:49:2d:1d:66:7a:49:c7:a8:a1:20:7a:95:d5:db:89:a3:
46:25:fd:02:22:9f:1d:e2:13:8d:83:6e:98:9c:be:0b:89:2b:
75:07:86:97:4a:91:f0:30:fa:7e:56:52:25:94:da:36:56:7f:
fa:d9:ec:51:da:c9:ed:25:d8:dd:3a:bd:cd:1c:3b:a0:10:19:
4c:8c:55:3c:e3:00:80:b2:0b:28:e2:8d:85:c5:93:c5:33:46:
3b:85:12:3f:cb:0d:61:97:7f:68:80:b7:1b:29:8d:9b:2c:87:
90:0d:b7:6d:60:1e:96:07:76:dd:d3:3d:44:e9:8d:23:38:31:
bc:f1:60:42:56:6f:5a:97:ce:0a:d8:24:8c:91:30:70:a4:c6:
cf:06:0c:c5:89:e8:33:f2:59:d8:9a:81:99:7b:43:b2:5f:27:
ee:ea:9a:f8:78:0f:3c:fb:61:30:7e:27:66:61:e9:e2:a4:75:
e4:82:5d:0d:cc:ca:c5:80:eb:a7:a0:b9:0b:04:f1:54:11:f7:
f9:54:1a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 06:17:50 2026 by rpki-client