Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json)
Hash identifier: cOo5VQUIHWrdn9NhFNMNgduo6xof32z+igz5trzlUtg=
Subject key identifier: 90:B7:B8:6C:8E:8B:93:40:32:00:C4:51:91:54:47:38:F0:34:2C:43
Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Certificate serial: 019DA4F899F987DCA300D59B3A70E74D6959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
Manifest number: 0540
Signing time: Sun 19 Apr 2026 09:00:48 +0000
Manifest this update: Sun 19 Apr 2026 09:00:48 +0000
Manifest next update: Mon 20 Apr 2026 09:00:48 +0000
Files and hashes: 1: 0U-rEF9agnpJ5Ty3fMelv62IQ0M.roa (hash: fzpeIGTnD7Q+WUFkK4UZ/gImbOfjt8R2WwapBm5NRmI=)
2: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: zPPk2ZwirK/yTMPMGDJ1jyNq+CwzfRovWfMKwx2eyZM=)
3: pvD38KfkiRiyA2ciIkT3w1-D9ho.roa (hash: d0J3qo9sPsuBsDx9fbtomBKJ9mGpLuYbMo3eWUmo/lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:99:f9:87:dc:a3:00:d5:9b:3a:70:e7:4d:69:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Validity
Not Before: Apr 19 09:00:48 2026 GMT
Not After : Apr 20 09:00:48 2026 GMT
Subject: CN=90b7b86c8e8b93403200c45191544738f0342c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3e:a7:f6:d6:c3:e2:05:f2:60:ae:07:47:6b:
2a:13:e5:cf:87:62:8d:6c:fb:ca:61:16:12:72:6d:
6b:f3:d8:68:d4:0c:56:58:30:c7:77:b9:0d:19:2b:
06:bc:09:82:2c:12:f3:2b:7a:3f:92:40:09:49:76:
4e:52:6d:b1:21:8f:20:b2:4d:bc:26:2c:1d:4c:80:
4b:2a:7b:42:9b:18:f0:ba:d7:2b:0f:ed:36:0c:c7:
57:18:79:f6:38:cb:97:30:b5:07:40:f9:f5:1c:6f:
13:f3:ef:56:39:23:8c:fe:b8:7e:6d:46:42:26:c1:
f0:a7:9d:00:8a:16:d3:6a:e9:e5:52:a9:4d:43:04:
bc:cb:77:7b:64:22:ee:d4:2c:85:7e:81:68:13:50:
c8:e0:15:8f:1a:2a:42:e1:59:49:1f:91:a5:e4:79:
32:a8:c1:39:38:65:85:1c:d8:b7:dc:11:76:bd:47:
fa:27:13:31:fe:4d:43:3d:df:cf:1d:50:fa:3e:d1:
17:c5:94:bf:06:09:b5:82:56:33:66:c1:d8:88:b3:
51:3b:3d:52:f7:51:f5:d3:c7:65:4b:84:a5:4b:18:
f4:dc:61:9b:4a:7a:7b:83:8f:aa:2b:6a:0a:d1:c1:
51:ad:50:9b:65:5f:0c:1c:8a:d2:e1:05:6d:a2:3f:
cc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B7:B8:6C:8E:8B:93:40:32:00:C4:51:91:54:47:38:F0:34:2C:43
X509v3 Authority Key Identifier:
keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:85:d3:cf:b8:70:da:38:e2:ee:a5:66:1d:4d:76:be:8a:8e:
e5:3e:a3:3d:0b:fc:41:6a:16:c2:af:43:80:6d:b2:36:26:7f:
09:db:ed:a7:76:d6:e7:52:34:1e:29:a4:b7:9f:4e:d0:9f:d1:
16:1a:24:53:a0:77:ad:fb:ed:78:26:d6:a8:6a:b5:c0:6f:40:
60:4f:5d:ea:d8:d8:a0:a4:ce:46:5b:96:7e:17:0c:12:3e:a2:
92:0a:7e:ed:36:75:8c:d5:88:63:74:6d:f3:b3:03:f8:0a:33:
14:38:78:26:75:4f:4a:69:04:56:2f:b7:f4:2d:70:41:7e:c8:
45:47:54:61:ce:78:13:b8:51:34:0b:40:fc:f1:1e:11:8f:1d:
47:d9:3e:84:12:72:b1:de:be:ed:74:bd:9e:a9:a5:8f:43:dd:
ca:41:a3:b4:8f:6a:2f:3d:ea:d1:26:02:36:13:8d:38:8f:0d:
2b:b5:6c:ba:92:f3:3c:92:26:93:34:59:df:38:6a:10:c0:de:
47:5c:5d:c8:3f:09:4a:4c:00:bf:3e:06:f9:0c:f0:b5:99:75:
1b:62:1b:ae:85:0b:dc:a0:b1:33:a1:40:3e:93:95:fc:93:b8:
1c:01:a5:ba:14:3e:ac:b2:fc:98:f7:dc:b5:68:5a:7f:33:10:
46:6f:54:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:33:28 2026 by rpki-client