Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: x+WzZ75WKDAQE/fB9HNZ0DJF3uvB8PVAc3NJDMOmF4g=
Subject key identifier: 07:B6:B4:F9:8F:EB:26:C4:4F:87:5E:F2:66:47:D1:02:3C:8D:6C:5B
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 019D284E069B119308D0EA1162CEA876E3EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0F6D
Signing time: Thu 26 Mar 2026 04:01:35 +0000
Manifest this update: Thu 26 Mar 2026 04:01:35 +0000
Manifest next update: Fri 27 Mar 2026 04:01:35 +0000
Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: nlFm21Ka9ajmKy5CG1kEsC2VKqlPW7pA+m5WrOEG1mQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:06:9b:11:93:08:d0:ea:11:62:ce:a8:76:e3:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Mar 26 04:01:35 2026 GMT
Not After : Mar 27 04:01:35 2026 GMT
Subject: CN=07b6b4f98feb26c44f875ef26647d1023c8d6c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6b:2b:f5:0b:b0:55:3f:f8:37:83:13:49:ba:
45:46:05:9b:29:63:b1:a6:a3:92:e7:aa:2b:99:7f:
ca:e3:a7:1d:6a:f7:07:14:85:fb:cd:18:04:ad:1d:
ad:a7:f2:d1:c2:bd:89:41:5d:36:35:ec:00:66:13:
15:2c:4a:1a:40:60:4d:0d:8a:a0:d6:5a:65:a7:50:
37:62:5e:db:6c:a2:6e:e3:32:ca:f6:fd:7c:35:d4:
0a:6e:a5:9a:ed:d0:91:db:04:d3:01:25:02:cf:24:
27:7c:e9:82:cc:5d:87:e5:8d:f9:df:a5:99:12:b1:
7c:4c:66:d5:ce:11:82:7e:93:cc:46:3c:66:ce:90:
3d:73:6b:80:44:af:04:04:09:9f:e0:6a:d7:75:b7:
e8:fb:65:ee:ba:84:db:da:2d:8e:0f:ee:63:68:2f:
3e:a4:55:1b:a0:67:9f:17:2d:77:10:e9:42:c2:fe:
51:ce:72:67:ef:55:19:c8:a3:df:8f:9b:a4:a0:ca:
4e:26:0f:5f:69:70:89:ac:2a:c9:54:38:dc:7c:57:
28:34:9e:01:3f:65:a1:e0:08:5f:30:24:72:00:c2:
9f:9c:69:18:57:b2:96:39:65:63:cb:b2:69:e3:6e:
cf:8c:c8:0c:2c:ed:05:34:1a:28:52:d7:f2:1e:aa:
2c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B6:B4:F9:8F:EB:26:C4:4F:87:5E:F2:66:47:D1:02:3C:8D:6C:5B
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:24:33:2d:77:7a:ab:35:71:aa:2d:3b:61:1b:7d:c2:2b:14:
fc:c9:b1:78:5a:d8:dc:9a:9c:26:c6:be:19:bc:fe:24:d0:02:
5c:7c:9d:e4:04:a9:6f:8e:4c:eb:ee:a3:d7:75:ba:5f:53:9d:
9a:67:1f:24:75:f4:ef:f4:4e:e3:d6:7b:ca:07:a7:ab:5e:21:
a7:73:7c:f2:b9:a3:e3:dd:14:b3:ef:56:7f:3e:81:68:e4:55:
2b:d2:48:ae:eb:46:3c:95:c5:ac:2f:0c:11:fa:42:d0:b1:8f:
fa:fc:45:ef:57:c5:41:45:05:de:f6:69:8b:49:a9:aa:ab:94:
b5:21:1d:98:cb:a0:67:e7:ac:a5:22:ce:1c:ed:f3:2b:18:42:
82:1d:e1:02:23:71:89:33:87:a2:0f:ea:c5:aa:18:85:fd:73:
6d:96:0d:c2:32:f9:bb:1d:ef:0a:65:67:50:28:45:74:8b:b5:
b3:be:bc:42:48:4a:49:91:39:0c:46:dd:ef:c9:57:7c:20:1c:
88:09:61:6b:81:4f:bc:ba:8c:6f:c9:18:65:39:9c:a6:6c:27:
bf:99:48:cb:2b:61:60:81:32:5c:a9:14:e8:22:d1:e9:f6:b8:
d2:c2:99:4c:9e:52:1c:bd:b2:61:4c:f9:d1:83:84:cc:c9:e9:
5e:f9:61:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:54 2026 by rpki-client