Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: trTHDfy/ezgXGS1gTtiB3tL4eCybUX1OlXCXzb8S0x0=
Subject key identifier: 3E:2F:D6:EB:37:B9:50:77:81:F6:83:E4:69:41:46:C1:86:86:54:31
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 019D9AABFAAFF6905E98B399ABA15C544B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 09:00:55 +0000
Manifest this update: Fri 17 Apr 2026 09:00:55 +0000
Manifest next update: Sat 18 Apr 2026 09:00:55 +0000
Files and hashes: 1: lrT-dpG3LRk20hmeOuSNfVtTTUU.roa (hash: JUdomAkf1Kcn8Ijb1exHH29GRd544m6/vPrvf50qtAQ=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: 3eEB/T65WB5HBBUxj3EXmT/2Q4uTuNisWWHShfBJv5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:fa:af:f6:90:5e:98:b3:99:ab:a1:5c:54:4b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Apr 17 09:00:55 2026 GMT
Not After : Apr 18 09:00:55 2026 GMT
Subject: CN=3e2fd6eb37b9507781f683e4694146c186865431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9e:f0:3a:77:92:c0:5c:3a:b3:eb:be:e2:00:
af:47:88:99:25:8c:44:26:75:f1:c5:1a:6c:c2:f6:
14:97:59:36:c6:0b:9c:60:1f:54:cc:de:95:1c:4e:
72:f6:0b:68:aa:5c:bd:3f:d6:01:79:e7:5f:a2:51:
2b:68:38:be:b9:85:3b:64:6f:76:d7:6e:51:44:3c:
2c:09:b1:3e:e4:ac:6a:a5:39:90:f0:a2:3d:d0:eb:
17:2d:a8:be:44:33:58:8d:08:f5:77:ba:1e:f5:0c:
4d:93:9e:3b:87:48:b9:0a:c5:e0:72:0b:1a:1a:e3:
99:22:54:1a:7e:49:a3:02:c6:d3:a2:50:51:be:2b:
76:63:af:bb:e1:f0:f1:9f:71:b7:48:11:42:6a:fb:
07:03:15:1a:6c:e9:1c:d6:bf:49:11:8e:10:9a:fd:
72:21:d3:81:d8:e1:05:29:42:2a:86:cb:c3:b9:2a:
ad:88:44:b1:0a:5f:f3:6f:00:10:e2:f6:33:d0:3c:
3a:c1:e0:b3:68:c3:18:5d:3d:38:ca:9f:7f:f8:ca:
62:af:01:2e:db:03:c8:b3:d5:6f:9a:8d:bb:35:eb:
43:96:c5:54:4e:de:f2:ad:31:3e:76:a7:cf:dc:4a:
03:e5:b7:c3:60:65:2a:2d:54:65:5c:60:e8:6f:14:
ca:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2F:D6:EB:37:B9:50:77:81:F6:83:E4:69:41:46:C1:86:86:54:31
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2a:48:2c:cd:f3:ef:35:72:ee:39:6a:46:a5:05:6e:25:4d:
3a:6c:69:05:cc:68:a0:78:78:0c:82:ed:7e:ee:17:9a:ce:f0:
e3:f3:10:51:2b:95:d0:c3:cf:35:67:a1:00:b3:77:bc:3b:82:
37:8c:64:01:a7:7a:7d:df:f6:12:32:62:36:ca:0c:de:7a:da:
f0:d1:ea:fd:06:4d:77:7a:32:a2:75:8a:9a:ad:89:d2:70:0c:
d9:fd:1f:81:72:e1:b6:3c:09:be:18:f7:e2:dc:94:22:40:f2:
4d:01:a5:8e:70:62:34:82:e6:1c:85:95:0e:e7:cf:ee:10:f3:
00:9b:37:bd:d1:e3:d6:b2:5f:9e:4f:02:a6:b7:6d:04:32:77:
ad:f8:f7:4a:c1:11:5e:df:a4:21:81:17:1d:42:41:fe:78:52:
c9:84:d7:16:4b:e5:93:96:08:e2:d1:0b:5e:b5:9a:46:77:35:
f8:66:08:5d:da:95:eb:9b:89:0a:f9:c1:a7:34:51:bf:a3:fa:
1b:62:60:29:17:89:06:04:ce:ae:32:2a:e2:18:38:ed:ca:74:
1a:95:6e:c5:dc:b8:62:9a:ae:8a:6d:20:b4:77:c9:88:25:79:
bb:73:90:13:09:01:35:ad:39:12:cb:b0:85:cd:77:50:1f:e5:
c8:00:b2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:43:32 2026 by rpki-client