Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json)
Hash identifier: jDbQOypcdeeeBgTSFWFfqF5K26Wzq3dezXkflcZoiZE=
Subject key identifier: 99:0C:39:2E:45:C8:D4:60:90:0D:84:20:41:4B:02:BB:A5:B8:8A:5B
Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244
Certificate serial: 019E1D5935FD4D8495FFF3E6E4D8D57DDB61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
Manifest number: 0832
Signing time: Tue 12 May 2026 18:00:46 +0000
Manifest this update: Tue 12 May 2026 18:00:46 +0000
Manifest next update: Wed 13 May 2026 18:00:46 +0000
Files and hashes: 1: 6bYFArU-m22v_2LMnKGfPfQ5d_U.roa (hash: T50wLh+t9t04GFvV8DA2eC2Fd5ixjDyLVmolPRcQuvk=)
2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: Ho9dNj9HcK7UNFipOwtP/sYV4RxuzJ0xi2hbnBYyPQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:35:fd:4d:84:95:ff:f3:e6:e4:d8:d5:7d:db:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244
Validity
Not Before: May 12 18:00:46 2026 GMT
Not After : May 13 18:00:46 2026 GMT
Subject: CN=990c392e45c8d460900d8420414b02bba5b88a5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:dd:c5:23:bc:79:be:3a:a2:8d:b0:ad:77:0c:
c3:84:26:97:80:61:0a:56:b6:ea:d4:27:37:81:e1:
e0:4d:fd:8d:cc:6c:6c:82:d7:92:9a:57:e9:6f:72:
8f:81:c2:ad:03:78:52:2b:6f:bd:31:2b:0c:f9:44:
a6:7f:4e:c2:8b:be:89:f2:3f:a5:c2:e8:27:f3:ec:
c5:14:4a:24:f6:ab:4a:d0:af:d8:c4:a9:ac:8a:50:
a9:86:6c:ee:82:12:a4:1f:ad:1e:b8:d9:35:e1:88:
db:19:e0:aa:92:90:41:75:98:b7:cd:c4:2d:fb:b2:
4d:c0:6a:3d:c8:6d:6d:62:fa:67:c4:61:7c:1f:2a:
6e:d8:40:cd:93:c8:59:35:66:65:d1:9e:48:94:10:
54:a7:4d:b0:42:dd:65:04:d2:3a:de:3e:80:47:d1:
11:6c:e3:15:cb:9f:e4:7d:21:dd:49:82:6e:f6:b9:
16:c1:ff:06:15:7d:9b:e0:d2:43:be:0b:00:ab:07:
c9:86:13:f4:66:f1:76:8a:18:14:52:1d:b9:26:47:
96:b3:74:9c:44:10:7f:5d:3c:fe:e0:4f:36:19:e8:
de:d2:80:b2:c7:03:21:92:b9:a7:e4:80:ce:14:95:
11:db:b8:34:3b:de:5b:1e:77:08:29:c4:90:34:82:
7e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0C:39:2E:45:C8:D4:60:90:0D:84:20:41:4B:02:BB:A5:B8:8A:5B
X509v3 Authority Key Identifier:
keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:5c:dd:9d:b7:5d:27:5e:3e:0c:af:6f:d0:7d:cb:8b:77:82:
d4:c4:87:8f:71:6e:b1:6d:53:94:f7:64:08:60:09:c8:8e:bf:
bf:6f:a0:29:ef:d2:1a:fa:e8:3f:01:d5:1b:5a:7f:87:80:b9:
6d:40:a0:47:d4:4c:d1:66:12:80:6c:60:73:d8:ab:dc:92:a2:
9e:e6:6e:f9:4b:5e:5e:93:2a:2c:70:17:df:09:94:ee:a0:9d:
82:09:13:92:a6:89:9c:d5:31:99:bb:e2:be:aa:e7:f4:76:72:
25:9e:4b:02:51:d0:a6:7e:f9:81:9a:91:49:69:59:c7:11:d9:
40:72:9a:42:10:63:3f:98:b7:22:f5:f1:96:f2:09:0f:6d:74:
56:16:6c:d4:5b:cb:b5:c1:9b:54:92:81:a3:54:b4:4e:fb:21:
99:6a:31:c5:49:cc:4f:be:1c:d5:44:57:a6:3b:de:b9:0c:f9:
d4:ae:71:e5:aa:47:d2:22:d4:e5:92:29:35:24:2c:0c:28:07:
a2:4f:49:4f:c1:f7:0c:96:a9:07:24:38:9f:a4:af:15:f6:91:
31:85:4e:d2:b1:13:2d:76:8c:a5:30:48:f6:fa:84:29:7a:ac:
25:b4:05:69:c5:e8:24:f4:fd:2e:09:50:a6:7e:87:02:33:ec:
90:2f:d8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:29:10 2026 by rpki-client