Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: deVZSTbZi+1tOi3xhPFLaXPY/yaHnsV/wJsZVxUFhU4=
Subject key identifier: 48:CC:BD:54:C5:45:0D:F5:EC:F3:16:89:9F:80:15:EF:58:31:56:93
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 019E1D91283C29B65EA1869C0BC7F5B29659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 1923
Signing time: Tue 12 May 2026 19:01:52 +0000
Manifest this update: Tue 12 May 2026 19:01:52 +0000
Manifest next update: Wed 13 May 2026 19:01:52 +0000
Files and hashes: 1: 8TXv8e4Zt8_eQ6NWirkqe9E0W_4.asa (hash: 4wwxHNIkgVcJLmHw8uy0TiaVWMubR0OMs0Q3hfAmuIk=)
2: Bq58wAV24LxCZfTqHikKpc1Pf90.roa (hash: Z38fRBPUaqDEJWZAtaIhWDjBuRq5J5FcYiFjJcjIdC4=)
3: g2mfEORB4KTxQPtrqS9KmJwGt60.roa (hash: ckCX/PTaFOHfPb57/FfMCnl07XdvXwOjflYamRZ+ttU=)
4: im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa (hash: Lno5hcnACQyBSV8jBaTu79StES2mMHGRUyHa5ifNUXg=)
5: kEa8o2UnqelmH_ygtilQKIay4-U.roa (hash: wdOm+SKzMVc+6qYyPwtZWi4vySs728OYrMlkH8naows=)
6: o2zKTEKdkma_CEqLLr3-nWa-bTg.roa (hash: K00xY1oGfH9hHVRaGcI7b3OeCoea9X65r82JQ/DAkQ4=)
7: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: bkm+E/i+UDFxTl961XeypfKSsn596Zv3/mNGJb30Aec=)
8: wDyGi9jWmZMB8lYHVhIMXvPFj4Q.asa (hash: x1KdrUN6ejhw/k+dP4uf7xrYb09HG6a00Ztpj8NCQt8=)
9: yl_8RQWT42NWgczzOlDn0gK7u0w.roa (hash: AZgf7E7lVvGrL5j+ea4NwUOdqabLA6/5isp7lMtBrHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:28:3c:29:b6:5e:a1:86:9c:0b:c7:f5:b2:96:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: May 12 19:01:52 2026 GMT
Not After : May 13 19:01:52 2026 GMT
Subject: CN=48ccbd54c5450df5ecf316899f8015ef58315693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:0d:e1:24:ff:10:96:a3:50:df:3b:bd:99:
a6:8f:5c:a6:16:c7:34:76:01:09:a2:4f:b8:ab:d1:
c9:66:95:19:c6:8e:22:b8:a2:02:37:8e:f8:bf:1a:
17:4b:74:e1:19:57:ae:3a:eb:8b:eb:0c:ff:22:76:
8d:14:b0:d3:65:70:ca:18:c4:90:04:b0:dd:44:0b:
e6:e8:be:0e:20:fa:5a:52:d9:c1:9c:f4:7a:2a:e2:
43:50:54:b4:bf:79:87:fd:89:9d:e6:cf:08:3a:33:
52:34:51:fd:d7:77:82:da:a1:be:d7:ee:e9:79:94:
ad:ac:a6:44:78:b2:12:9f:b6:b5:8f:b9:78:f0:f8:
06:76:23:a9:3d:d6:53:67:c0:7b:e3:21:50:04:d0:
60:8a:c1:2f:d8:11:96:7f:d9:87:ba:86:77:0b:14:
c7:70:ff:f5:36:2b:fe:16:2f:37:06:a3:dd:d3:ec:
d6:60:70:b3:08:97:a9:5b:d9:c9:56:15:47:2c:b9:
a7:54:35:04:4b:96:ea:06:fb:16:56:ae:be:a7:2d:
06:9f:3a:15:bb:3b:85:24:2c:aa:a3:60:ba:f8:e1:
24:b7:02:37:74:03:ac:4f:b9:33:69:60:a9:52:10:
26:80:94:b5:e5:8a:2a:d2:39:42:8f:87:d4:f8:01:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:BD:54:C5:45:0D:F5:EC:F3:16:89:9F:80:15:EF:58:31:56:93
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ef:77:23:a7:f7:73:db:ed:d0:3b:f2:78:9e:d6:81:0f:88:
c5:52:bb:53:70:5f:63:89:a9:6c:74:6f:46:bf:d2:27:f0:87:
51:09:d1:9d:d5:7a:1d:83:5e:7f:ba:de:fb:07:a2:4a:41:e9:
43:d7:92:35:09:4c:57:2f:de:94:2b:4c:81:3b:03:65:c8:ad:
ba:34:38:05:97:8e:79:bf:7d:c2:c6:fd:fa:89:3a:0a:48:53:
ef:91:16:8b:05:d6:67:98:8b:d7:f3:b5:97:15:4f:63:36:aa:
ee:f5:10:5a:cd:69:11:ac:df:dc:70:14:d3:95:d6:4a:8f:6d:
78:18:78:8a:42:3d:d7:de:18:ae:c6:68:76:39:8a:32:cf:f9:
16:62:fe:01:20:2e:e2:b2:29:29:58:6a:05:1e:19:aa:31:45:
31:05:4c:4d:39:76:a1:27:08:ae:e6:b3:55:1e:34:61:c2:e7:
92:68:3c:bb:d3:4c:a4:b2:bd:39:0e:a2:39:c5:33:72:e2:df:
e6:bf:1d:a4:7b:3c:c2:96:ff:66:f2:c6:9b:5c:42:32:74:20:
ae:f3:ad:d3:ba:a5:b8:1a:26:d4:71:e2:f4:8c:47:12:70:b8:
02:52:b5:7f:de:5f:a7:6a:35:7c:e3:82:f9:64:ac:2e:c4:cc:
13:e9:4e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:55:19 2026 by rpki-client