Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: arWgckpO06mB2Lm5eCZKICjJecbB8Qt/vmX5oGqszBA=
Subject key identifier: 0E:58:BE:E6:E2:60:98:03:B1:E7:12:F3:F3:ED:24:61:E9:BE:2F:31
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 019CABA1EA9E1B8EC839C9BCB0629330B620
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 093E
Signing time: Sun 01 Mar 2026 23:00:41 +0000
Manifest this update: Sun 01 Mar 2026 23:00:41 +0000
Manifest next update: Mon 02 Mar 2026 23:00:41 +0000
Files and hashes: 1: 3lc1Iu7hC-zHLMQkZNtii7oqg5M.roa (hash: AzZG+4D5GxDUpzfM6ZHMgxfiWGvCIzXIyJrcYsz9Als=)
2: _WqApLTSHnn-QALIm4js6GY_w-E.roa (hash: vRro0DgNa75sk/Unt/zDQwG9CVSw25Sr8T6Yt4LIK54=)
3: e7Z2PR7xiMg2qO87UOgZBfNHWVA.roa (hash: 2MJbHB4+HtGJ4wxkgZ0Dl95e/tJehFc1YChaP86nwFM=)
4: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: 00hnv1OlzFIHX9OSokF7weKiKf4a51sASbP+DZ5smTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:ea:9e:1b:8e:c8:39:c9:bc:b0:62:93:30:b6:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Mar 1 23:00:41 2026 GMT
Not After : Mar 2 23:00:41 2026 GMT
Subject: CN=0e58bee6e2609803b1e712f3f3ed2461e9be2f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:28:e4:0b:37:5c:ab:96:5d:1d:eb:57:55:cf:
83:30:03:7d:e8:90:c5:72:2a:ed:24:a0:bd:cd:0c:
9d:92:f5:16:a2:8b:f2:12:a5:8a:1b:7c:33:54:17:
22:56:54:52:74:b7:f8:24:17:5c:82:50:96:d3:3a:
f8:a8:da:4b:a6:39:1e:64:7d:51:78:2c:03:68:13:
b9:44:c5:f3:10:6a:5f:68:e2:91:6f:98:59:2e:d4:
d0:7e:eb:6a:c5:8f:54:42:12:1c:84:b4:73:45:40:
a1:e4:fe:68:42:f8:89:37:c3:6c:e3:f0:9a:63:39:
50:88:6a:99:51:a8:53:6e:c2:53:f9:26:8b:6b:d4:
e8:88:df:18:42:09:d0:41:c3:a5:d0:4a:ab:ff:e1:
e9:b9:80:78:84:52:15:3d:71:86:50:34:3a:be:96:
cb:02:ce:8e:5b:49:b5:a8:d4:d9:06:c0:30:ee:dd:
03:4f:7c:32:0f:a6:33:0c:75:22:88:a2:d2:05:c7:
da:9e:f0:59:f3:84:a5:c0:db:ae:e5:60:f3:2c:1e:
f5:71:c0:5f:69:1a:b4:50:a2:ac:bc:c1:cd:ea:2d:
ab:a5:96:01:11:a1:ba:a8:14:4c:40:40:f6:0d:03:
63:85:4c:5a:de:d9:6c:d6:02:0f:06:ae:bc:1a:c6:
98:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:58:BE:E6:E2:60:98:03:B1:E7:12:F3:F3:ED:24:61:E9:BE:2F:31
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:9d:d7:90:cf:04:c5:b0:67:20:e0:ad:8d:ed:96:51:bc:68:
16:5d:cf:5d:0b:1f:8a:c3:13:ae:19:05:3e:06:ce:42:89:51:
94:ce:f2:55:34:5f:4b:73:ea:88:9c:e3:ec:73:6a:af:91:8b:
1b:59:ab:80:77:6b:6e:87:c6:4b:82:d9:8a:1e:3e:3f:a8:ae:
ad:71:32:9d:e8:bd:08:4e:e8:a8:f3:29:0d:dc:5b:0f:53:eb:
fb:db:71:68:74:b3:86:7a:3e:21:18:9e:5f:c2:b9:de:f8:32:
b9:6b:17:f6:22:33:be:54:59:20:24:34:22:b0:0d:6a:11:9d:
8b:ea:b8:2d:82:2b:9d:00:1c:bd:87:3c:3a:d3:ec:8e:f0:69:
97:ea:37:8c:f1:68:2a:76:59:b1:b1:63:07:b9:40:ef:16:1d:
26:be:08:8b:08:b8:2d:9b:b0:54:8e:e7:1f:ed:fe:85:ee:75:
4c:5b:d2:2d:e8:f5:49:62:a3:91:66:71:02:2d:23:f4:27:ec:
d9:71:e8:94:c2:5f:ad:45:4c:62:fe:9e:62:52:5f:1b:55:e8:
45:3b:16:67:57:3e:93:1c:70:44:17:59:2a:cf:0c:c5:89:01:
99:71:8b:fb:11:af:ad:29:be:37:b1:31:18:c5:5b:05:e1:65:
b7:fa:09:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:29:48 2026 by rpki-client