Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
File: rmRaywIXx0oP004XpT297lbwEeU.mft (raw, json)
Hash identifier: OxLDljgbWU0TyIJWyLeUfOvKCpJ3zjF2jox/eo2vNjA=
Subject key identifier: 4E:4F:F7:20:C4:84:C7:D9:D3:15:CC:0B:46:C0:32:B6:B9:45:75:59
Authority key identifier: AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
Certificate issuer: /CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Certificate serial: 019D27DF59B4AD2933A30CA5BCF265818F39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
Manifest number: 127F
Signing time: Thu 26 Mar 2026 02:00:41 +0000
Manifest this update: Thu 26 Mar 2026 02:00:41 +0000
Manifest next update: Fri 27 Mar 2026 02:00:41 +0000
Files and hashes: 1: 6i6ktqVxfMyBeyrlkS73upvx9Ho.roa (hash: BlC62l60c6T9hNk8muoKRRCAtq61HWPcoGQIb8d33sU=)
2: rmRaywIXx0oP004XpT297lbwEeU.crl (hash: HnZn44NLiyqk+uPz8A4r5W08jdq77CMgCPf1NPCWeGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:59:b4:ad:29:33:a3:0c:a5:bc:f2:65:81:8f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Validity
Not Before: Mar 26 02:00:41 2026 GMT
Not After : Mar 27 02:00:41 2026 GMT
Subject: CN=4e4ff720c484c7d9d315cc0b46c032b6b9457559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:1d:a4:ee:54:e0:b3:20:af:32:08:f4:2e:
d0:85:50:28:35:b7:e3:59:77:67:21:ac:bb:6a:4f:
6b:37:ae:f7:47:01:a3:74:53:04:de:4f:fd:cd:4a:
6a:c7:7c:e5:5c:a6:d4:15:08:d4:44:0b:a3:9b:ba:
cd:05:bb:8e:7c:43:0d:04:e8:dc:c3:91:72:5e:e1:
a1:69:74:8f:26:07:0b:9c:2d:b4:8d:3f:b2:32:77:
24:a8:65:e2:1a:a2:db:eb:47:83:4b:70:51:1c:e5:
d2:ad:aa:1a:0e:d7:24:a3:6c:f9:22:fe:d1:f8:87:
50:64:be:af:90:82:70:3f:5c:7e:89:f1:6b:a9:19:
a0:d6:1a:db:d9:2d:f2:1b:c2:bb:4a:8b:36:5f:c4:
53:e1:90:99:fa:13:54:31:ad:f1:36:93:cf:f6:0e:
9c:c1:0d:75:ea:af:5d:22:04:96:11:6e:ad:7a:ac:
98:c7:dd:6a:7b:de:6f:d5:82:a6:44:b0:dd:72:9b:
c8:9b:e3:be:df:eb:70:02:24:0a:dd:31:7c:7d:3e:
fc:ae:bd:e6:80:82:b9:1e:fb:43:df:99:dd:65:97:
b5:9c:de:6a:32:37:7c:82:ab:08:97:18:46:21:0e:
1f:20:29:cc:21:50:5e:08:43:46:99:8c:c2:b6:23:
eb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4F:F7:20:C4:84:C7:D9:D3:15:CC:0B:46:C0:32:B6:B9:45:75:59
X509v3 Authority Key Identifier:
keyid:AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ba:d0:25:26:13:2a:5e:6b:b3:8f:3d:03:30:82:2a:93:9f:
65:0a:44:5f:68:9e:c7:8c:46:90:2b:aa:99:c6:2b:bf:99:fa:
ee:d4:29:44:98:42:a8:2c:a0:9e:08:bb:47:98:da:1d:7b:6a:
05:73:44:0c:3d:09:2b:66:25:eb:40:5d:88:3e:93:2c:24:0f:
97:b9:49:74:67:71:4b:70:d6:44:5b:43:80:6a:b7:7f:37:ff:
3d:89:78:9b:33:19:8b:8f:4d:70:e3:89:88:82:b4:b4:b4:ed:
f6:41:af:64:53:15:01:01:bf:5d:cd:52:38:de:a2:b0:5d:13:
c2:12:fc:e0:a6:00:fb:bb:4e:f9:8a:93:ad:0b:5d:62:29:b3:
1f:dd:60:34:37:ec:73:23:1c:ea:bd:fa:93:a1:ba:e9:68:bc:
0c:88:1b:68:c2:93:02:85:bd:94:f3:a8:17:b6:30:f6:e6:4c:
59:0a:c0:94:63:fe:c9:0c:c1:ef:5a:3c:c8:11:2f:ad:eb:b5:
60:cf:bf:97:9d:c4:5d:9e:0a:99:29:a3:d9:6d:91:73:8a:80:
b1:2e:db:a1:cb:27:62:84:40:ec:6e:4d:9a:88:e5:d9:a6:0a:
51:9c:fa:ff:59:ee:2f:18:f7:61:98:98:4a:1f:98:05:cf:8d:
c4:6e:c2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:19 2026 by rpki-client