Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: dYSVYt4J6j7ICfYVYiEmjZMZnilG55jCHrSe6u8QByU=
Subject key identifier: 31:7D:83:C1:A1:3C:E2:66:10:66:38:EA:55:21:08:5F:6E:98:4B:F9
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 019CAD22F9D3D294DFC245C9968C3F914D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 06:01:16 +0000
Manifest this update: Mon 02 Mar 2026 06:01:16 +0000
Manifest next update: Tue 03 Mar 2026 06:01:16 +0000
Files and hashes: 1: lrT-dpG3LRk20hmeOuSNfVtTTUU.roa (hash: JUdomAkf1Kcn8Ijb1exHH29GRd544m6/vPrvf50qtAQ=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: EvrBIue50KdhObZOuCmHDyqQYGU9Zb0fCoG8UyYqF3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:f9:d3:d2:94:df:c2:45:c9:96:8c:3f:91:4d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Mar 2 06:01:16 2026 GMT
Not After : Mar 3 06:01:16 2026 GMT
Subject: CN=317d83c1a13ce266106638ea5521085f6e984bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d0:4a:fa:41:94:72:ef:42:1e:30:8d:b5:f7:
51:0d:bc:ec:56:dc:33:0b:dc:16:76:4b:e7:59:f1:
ce:51:84:4f:75:47:d5:57:88:c6:41:8a:b9:33:0e:
45:09:82:12:3b:b9:cf:85:c5:f8:c8:a9:0c:2e:f3:
3c:f6:ab:17:24:7a:11:f0:78:1b:a5:16:a7:5f:2b:
0f:b9:d3:d8:28:ef:6e:e0:26:0f:36:82:5e:05:4b:
62:dc:30:77:b1:05:e9:01:72:8f:ad:82:d0:b5:88:
0d:6c:a2:3e:96:f8:4d:a2:dd:cd:11:0d:45:b9:90:
e7:b1:54:75:0e:12:10:b0:f9:b2:20:c1:28:f5:cd:
d6:a1:08:70:69:22:5a:19:63:4b:b8:8d:8b:aa:bc:
e6:87:ae:b9:8e:79:e6:de:46:69:de:22:2f:b4:4f:
9a:a4:02:7d:fb:76:74:cb:71:80:61:d4:09:a7:71:
65:d9:c2:05:41:84:d8:30:42:52:14:f0:82:43:33:
1c:56:16:eb:ee:20:64:12:39:b1:c6:45:83:8a:0d:
22:be:76:09:b4:88:85:c7:40:14:95:c4:55:86:f3:
53:2b:a6:a5:78:c0:1c:f4:3e:0c:d1:f2:76:54:97:
43:52:99:de:4c:4c:70:1c:f5:1f:49:8a:98:2f:2e:
59:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7D:83:C1:A1:3C:E2:66:10:66:38:EA:55:21:08:5F:6E:98:4B:F9
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:b0:c8:97:f2:82:a5:17:80:6a:ba:95:91:78:d7:b1:11:ec:
dc:2d:68:80:bf:8b:a8:7c:50:8a:88:0e:97:15:4d:d5:3d:cd:
b9:40:99:be:f3:40:c4:4d:5a:1e:66:3f:d1:58:45:9a:9c:77:
74:16:c1:87:ce:84:83:8b:63:f2:78:3d:8a:45:49:06:6e:7d:
ac:23:fe:32:76:8f:3c:42:7f:89:6b:62:99:45:0d:61:78:7e:
f4:7b:a7:9e:e2:ba:62:a9:c0:b6:cd:87:c3:9c:98:34:ce:43:
bb:45:31:5d:16:38:28:0b:66:a3:27:55:2c:25:3e:96:0b:04:
4f:5c:84:a0:9d:cc:8b:4c:3a:f3:d4:13:46:be:d1:ad:04:d0:
a8:5d:f2:8b:b0:81:d1:00:ad:a2:31:f4:51:3d:eb:fe:d9:82:
a7:3c:a1:61:5f:29:6d:7b:a2:39:69:5e:d8:d2:d5:ce:af:82:
50:eb:e2:f2:a6:db:9d:c4:af:5f:63:09:ab:c3:11:ae:4d:a9:
19:cc:aa:38:1c:75:13:ac:ea:7d:5a:8a:9b:22:19:da:d5:79:
65:e1:23:11:84:56:18:23:36:43:cc:60:9c:9d:2a:6a:f9:01:
37:eb:10:bf:9c:c6:c4:a5:49:3d:dd:c9:a6:d0:c4:e2:48:c7:
e4:c6:ff:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:22:33 2026 by rpki-client