Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: 4SvBvwr0wrjtgIfhiK9aJfiYFYcXhzZux5wWRrcNi3k=
Subject key identifier: 79:8A:08:2F:53:E1:1A:52:CF:52:C8:25:7F:29:16:BD:7A:C1:55:C2
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 019E1D9030EB283CEBFCA3250652D84B450F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0FEC
Signing time: Tue 12 May 2026 19:00:49 +0000
Manifest this update: Tue 12 May 2026 19:00:49 +0000
Manifest next update: Wed 13 May 2026 19:00:49 +0000
Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: bgj1RnjTqQeNtbqhs3bJMLrMmOPgTd37cSO9g9IsqCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:30:eb:28:3c:eb:fc:a3:25:06:52:d8:4b:45:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: May 12 19:00:49 2026 GMT
Not After : May 13 19:00:49 2026 GMT
Subject: CN=798a082f53e11a52cf52c8257f2916bd7ac155c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:a2:ae:66:09:3a:67:4c:57:87:51:f0:c7:
80:1e:1c:94:e4:fd:31:4f:97:a2:ca:57:0d:5a:21:
4f:be:59:e3:56:55:00:df:1a:c3:98:4f:9d:c0:32:
e7:5d:9a:f7:bd:46:e2:1f:9a:7f:58:cd:b6:8e:f2:
1a:ae:9b:ce:b0:25:b4:f3:5b:c9:35:f4:c7:5c:e8:
f7:eb:70:06:00:1a:9e:12:26:54:97:16:a9:ca:84:
46:0e:42:f2:4d:20:9f:f5:b9:fc:ad:5c:9c:a0:cc:
a7:87:25:10:26:6d:7b:f9:5a:36:50:ca:fa:e6:81:
67:48:03:40:e5:16:6a:6f:2f:82:62:1c:00:39:d7:
f6:e9:84:7e:0a:6c:2f:56:55:05:c8:c2:55:26:60:
8e:f9:3d:a0:fe:7a:64:5a:82:99:e3:cd:0e:e9:15:
85:be:bd:9e:7d:68:0f:4a:5f:03:cf:3b:97:b3:cb:
ff:e4:00:51:e8:c2:c4:14:66:82:9d:a6:64:a6:31:
1f:8d:37:a4:73:a9:48:93:e8:79:27:c7:ba:42:7c:
8a:33:8e:0d:4a:33:92:c3:10:c7:c4:07:7d:ce:bc:
c7:64:c3:85:ca:fe:54:09:91:f2:4d:e6:42:2c:09:
d6:23:10:2c:e9:3c:b3:40:54:4f:ee:09:3b:3c:fc:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8A:08:2F:53:E1:1A:52:CF:52:C8:25:7F:29:16:BD:7A:C1:55:C2
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:79:e6:c7:7c:13:0a:88:49:ed:ed:9f:86:31:42:49:9a:10:
fd:a4:9a:e2:a3:5a:3a:8e:11:73:23:13:3f:24:62:e1:f2:5f:
a1:52:db:7a:0f:9c:18:f9:76:32:ed:f7:a2:f6:f6:1e:57:cd:
ed:c3:30:94:54:48:d2:7e:43:59:cf:f8:4d:1b:17:a3:a2:de:
01:89:14:ca:b7:a2:3c:ce:42:df:b6:ea:95:a6:79:7f:47:38:
04:ac:86:87:2f:2a:10:ad:e5:d3:a2:ec:71:8a:da:ea:30:df:
e5:72:3c:c7:ac:11:ef:e4:8d:84:27:15:a9:08:37:04:e5:7a:
1e:7d:dd:e0:75:85:e7:a5:dd:6a:e8:2d:92:2d:2b:63:6a:c3:
89:2f:13:8d:80:da:d4:91:7c:72:2b:64:12:a4:a0:a5:ca:bd:
f5:d7:80:75:85:dd:80:04:f8:a1:12:6b:64:a0:4f:a3:c9:ca:
7d:10:f4:49:08:e7:bf:79:b4:a8:dd:11:ea:2c:55:41:8c:8e:
a1:97:c8:03:7b:a8:5b:23:e1:1a:81:24:ec:f9:f3:4e:17:42:
66:0f:e8:61:78:c5:5b:6d:1b:45:48:cf:e3:dd:cd:b6:9c:9b:
8e:c4:5b:7f:ab:c0:db:62:8a:55:a7:a7:b6:6a:30:1f:12:c9:
0b:cd:d4:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkDDrKDzr/KMlBlLYS0UPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5
ZDg1NGQwHhcNMjYwNTEyMTkwMDQ5WhcNMjYwNTEzMTkwMDQ5WjAzMTEwLwYDVQQD
Eyg3OThhMDgyZjUzZTExYTUyY2Y1MmM4MjU3ZjI5MTZiZDdhYzE1NWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoKirmYJOmdMV4dR8MeAHhyU5P0x
T5eiylcNWiFPvlnjVlUA3xrDmE+dwDLnXZr3vUbiH5p/WM22jvIarpvOsCW081vJ
NfTHXOj363AGABqeEiZUlxapyoRGDkLyTSCf9bn8rVycoMynhyUQJm17+Vo2UMr6
5oFnSANA5RZqby+CYhwAOdf26YR+CmwvVlUFyMJVJmCO+T2g/npkWoKZ480O6RWF
vr2efWgPSl8DzzuXs8v/5ABR6MLEFGaCnaZkpjEfjTekc6lIk+h5J8e6QnyKM44N
SjOSwxDHxAd9zrzHZMOFyv5UCZHyTeZCLAnWIxAs6TyzQFRP7gk7PPzVoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHmKCC9T4RpSz1LIJX8pFr16wVXCMB8GA1UdIwQY
MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt
MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx
LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQHnmx3wT
CohJ7e2fhjFCSZoQ/aSa4qNaOo4RcyMTPyRi4fJfoVLbeg+cGPl2Mu33ovb2HlfN
7cMwlFRI0n5DWc/4TRsXo6LeAYkUyreiPM5C37bqlaZ5f0c4BKyGhy8qEK3l06Ls
cYra6jDf5XI8x6wR7+SNhCcVqQg3BOV6Hn3d4HWF56Xdaugtki0rY2rDiS8TjYDa
1JF8citkEqSgpcq99deAdYXdgAT4oRJrZKBPo8nKfRD0SQjnv3m0qN0R6ixVQYyO
oZfIA3uoWyPhGoEk7PnzThdCZg/oYXjFW20bRUjP493NtpybjsRbf6vA22KKVaen
tmowHxLJC83UDw==
-----END CERTIFICATE-----
Generated at Wed May 13 04:06:55 2026 by rpki-client